You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@oltu.apache.org by "Thomas Meyer (JIRA)" <ji...@apache.org> on 2015/04/22 11:23:58 UTC
[jira] [Created] (OLTU-172) Handle invalid JWT exp field more
gracefully
Thomas Meyer created OLTU-172:
---------------------------------
Summary: Handle invalid JWT exp field more gracefully
Key: OLTU-172
URL: https://issues.apache.org/jira/browse/OLTU-172
Project: Apache Oltu
Issue Type: Bug
Components: oauth2-jwt
Reporter: Thomas Meyer
Priority: Minor
Hi,
Sadly WSO2 create invalid JW tokens with an "exp" field with millisecond resolution. According to the spec the field "exp" should only contain second resolution.
When JWTReader tries to parse the exp field a ClassCastException will occur, becaue a Long object is returned and not an Integer.
Attached patch casts to the super class method to cover Long and Integer values correctly.
What do you think about this patch? Okay to go in?
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)