Compare ⋅ lestrrat-go/jwx

No flags found

Use flags to group coverage reports by test type, project and/or folders.
Then setup custom commit statuses and notifications for each flag.

e.g., #unittest #integration

#production #enterprise

#frontend #backend

Learn more about Codecov Flags here.

Showing 1 of 2 files from the diff.

76.19% 71.43% -0.31%

jwt/jwt.go changed.

Other files ignored by Codecov

jwt/jwt_test.go has changed.

@@ -263,29 +263,22 @@

Loading

	}

	if ctx.inferAlgorithm {
		// Okay, we couldn't deterministically find the single key to use.
		// fallback to heuristics.
		for i := 0; i < ks.Len(); i++ {
			key, _ := ks.Get(i)
			algs, err := jws.AlgorithmsForKey(key)
			if err != nil {
				return nil, _JwsVerifyInvalid, errors.Wrapf(err, `failed to get a list of signature methods for key type %s`, key.KeyType())
			}

			for _, alg := range algs {
				// bail out if the JWT has a `alg` field, and it doesn't match
				if tokAlg := headers.Algorithm(); tokAlg != "" {
					if tokAlg != alg {
						continue
					}
				}
		// Check whether the JWT headers specify a valid
		// algorithm, use it if it's compatible.
		algs, err := jws.AlgorithmsForKey(key)
		if err != nil {
			return nil, _JwsVerifyInvalid, errors.Wrapf(err, `failed to get a list of signature methods for key type %s`, key.KeyType())
		}

				// Yippeeeeeee! we found a key that matches both kid and alg!
				v, state, err := verifyJWSWithParams(ctx, payload, alg, key)
				if err == nil {
					return v, state, nil
		for _, alg := range algs {
			// bail out if the JWT has a `alg` field, and it doesn't match
			if tokAlg := headers.Algorithm(); tokAlg != "" {
				if tokAlg != alg {
					continue
				}
			}

			return verifyJWSWithParams(ctx, payload, alg, key)
		}
	}


Learn more Showing 2 files with coverage changes found.

Changes in jwk/ecdsa_gen.go

-1

→

+1

Loading file...

Changes in jwk/set.go

-1

→

+2

Loading file...

72.75% 71.43% +0.02%

jwt: only infer algorithm on the already-selected key

imirkin

#523 3b7a676

CI Passed

Hiding 2 contexual commits

-3

-1

-2

72.73% ø ø

Update Changes

lestrrat

de7d9bc

CI Passed

Files		•	•	•	Coverage
internal	ø	ø	ø	ø	80.92%
jwa	ø	ø	ø	ø	100.00%
jwe	ø	ø	ø	ø	64.22%
jwk	ø	+3	-1	-2	^0.08% 73.28%
jws	ø	ø	ø	ø	75.99%
jwt	-3	-3	ø	ø	^-0.04% 74.56%
cmd/jwx/jwx.go	ø	ø	ø	ø	100.00%
format.go	ø	ø	ø	ø	84.62%
formatkind_string_gen.go	ø	ø	ø	ø	100.00%
options.go	ø	ø	ø	ø	66.67%
x25519/x25519.go	ø	ø	ø	ø	82.35%
Project Totals (83 files)	9,465	6,886	814	1,765	72.75%

263	263		}
264	264
265	265		if ctx.inferAlgorithm {
266		-	// Okay, we couldn't deterministically find the single key to use.
267		-	// fallback to heuristics.
268		-	for i := 0; i < ks.Len(); i++ {
269		-	key, _ := ks.Get(i)
270		-	algs, err := jws.AlgorithmsForKey(key)
271		-	if err != nil {
272		-	return nil, _JwsVerifyInvalid, errors.Wrapf(err, `failed to get a list of signature methods for key type %s`, key.KeyType())
273		-	}
274		-
275		-	for _, alg := range algs {
276		-	// bail out if the JWT has a `alg` field, and it doesn't match
277		-	if tokAlg := headers.Algorithm(); tokAlg != "" {
278		-	if tokAlg != alg {
279		-	continue
280		-	}
281		-	}
	266	+	// Check whether the JWT headers specify a valid
	267	+	// algorithm, use it if it's compatible.
	268	+	algs, err := jws.AlgorithmsForKey(key)
	269	+	if err != nil {
	270	+	return nil, _JwsVerifyInvalid, errors.Wrapf(err, `failed to get a list of signature methods for key type %s`, key.KeyType())
	271	+	}
282	272
283		-	// Yippeeeeeee! we found a key that matches both kid and alg!
284		-	v, state, err := verifyJWSWithParams(ctx, payload, alg, key)
285		-	if err == nil {
286		-	return v, state, nil
	273	+	for _, alg := range algs {
	274	+	// bail out if the JWT has a `alg` field, and it doesn't match
	275	+	if tokAlg := headers.Algorithm(); tokAlg != "" {
	276	+	if tokAlg != alg {
	277	+	continue
287	278		}
288	279		}
	280	+
	281	+	return verifyJWSWithParams(ctx, payload, alg, key)
289	282		}
290	283		}
291	284

Navigation	Overlay
`t` Navigate files	`h` Toggle hits
`y` Change url to tip of branch	`m` Toggle misses
`b / v` Jump to prev/next hit line	`p` Toggle partial
`z / x` Jump to prev/next missed or partial line	`1..9` Toggle flags
`shift + o` Open current page in GitHub	`a` Toggle all on
`/ or ?` Show keyboard shortcuts dialog	`c` Toggle context lines or commits

Compare `de7d9bc ... +2 ... 3b7a676`

No flags found

Show failed CI and contexual commits `c`

4 Commits

Compare de7d9bc ... +2 ... 3b7a676

No flags found

Show failed CI and contexual commits c 4 Commits

Compare `de7d9bc ... +2 ... 3b7a676`

Show failed CI and contexual commits `c`

4 Commits