djkato/saleor-app-sdk-REDIS_APL
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Fixing JWKS remove key resolving logic

Browse source
This commit is contained in:
Tomasz Magulski 2022-07-07 13:17:19 +02:00
parent 8d75699f45
commit 0e1eb8f1e1
2 changed files with 6 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
package.json
View file

@ -41,6 +41,11 @@
"import": "./middleware.mjs", "import": "./middleware.mjs",
"require": "./middleware.js" "require": "./middleware.js"
}, },
"./urls": {
"types": "./urls.d.ts",
"import": "./urls.mjs",
"require": "./urls.js"
},
".": { ".": {
"types": "./index.d.ts", "types": "./index.d.ts",
"import": "./index.mjs", "import": "./index.mjs",

2
src/middleware.ts
View file

@ -97,7 +97,7 @@ export const withWebhookSignatureVerified = (
const jwksKey = await jose.createRemoteJWKSet( const jwksKey = await jose.createRemoteJWKSet(
new URL(jwksUrl(saleorDomain)) new URL(jwksUrl(saleorDomain))
)(header, payloadSignature); )(jose.decodeProtectedHeader(payloadSignature), jws);
try { try {
await jose.flattenedVerify(jws, jwksKey); await jose.flattenedVerify(jws, jwksKey);