Skip to content

Commit

Permalink
Raise error when token has expired
Browse files Browse the repository at this point in the history
This gives a better response to the user
  • Loading branch information
anarute committed Jan 4, 2024
1 parent d1565b5 commit fdedd5a
Showing 1 changed file with 6 additions and 1 deletion.
7 changes: 6 additions & 1 deletion api/auth/auth_handler.py
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,8 @@
from jwt import PyJWKClient
from datetime import datetime, timedelta
from decouple import config
from fastapi import HTTPException


JWT_SECRET = config("JWT_SECRET")
JWT_ALGORITHM = config("JWT_ALGORITHM")
Expand All @@ -23,7 +25,10 @@ def decode_token(token: str) -> dict:
jwks_client = PyJWKClient(OIDC_CERTS_URL)
test = jwks_client.get_signing_key_from_jwt(token)
signing_key = test.key
decoded_token = jwt.decode(token, signing_key, audience=JWT_AUDIENCE, algorithms=[JWT_ALGORITHM])
try:
decoded_token = jwt.decode(token, signing_key, audience=JWT_AUDIENCE, algorithms=[JWT_ALGORITHM])
except jwt.exceptions.ExpiredSignatureError:
raise HTTPException(status_code=401, detail="Token expired. Please authenticate again.")
return decoded_token if decoded_token["exp"] >= time.time() else None


Expand Down

0 comments on commit fdedd5a

Please sign in to comment.