tsai
/
openiddict-core
mirror of https://github.com/openiddict/openiddict-core.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

Update the client to refresh the server configuration on SecurityTokenSignatureKeyNotFoundException

pull/1466/head
Kévin Chalet 4 years ago
parent
2e968f36a6
commit
7f85e5af9f
1 changed files with 8 additions and 0 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 8
      src/OpenIddict.Client/OpenIddictClientHandlers.Protection.cs

8
src/OpenIddict.Client/OpenIddictClientHandlers.Protection.cs
View File

@ -251,6 +251,14 @@ public static partial class OpenIddictClientHandlers
var result = await context.SecurityTokenHandler.ValidateTokenAsync(context.Token, context.TokenValidationParameters); var result = await context.SecurityTokenHandler.ValidateTokenAsync(context.Token, context.TokenValidationParameters);
if (!result.IsValid) if (!result.IsValid)
{ {
// If validation failed because of an unrecognized key identifier and a client
// registration is available, inform the configuration manager that the configuration
// MAY have be refreshed by sending a new discovery request to the authorization server.
if (context.Registration is not null && result.Exception is SecurityTokenSignatureKeyNotFoundException)
{
context.Registration.ConfigurationManager.RequestRefresh();
}
context.Logger.LogTrace(result.Exception, SR.GetResourceString(SR.ID6000), context.Token); context.Logger.LogTrace(result.Exception, SR.GetResourceString(SR.ID6000), context.Token);
context.Reject( context.Reject(

Write Preview
Loading…
Cancel
Save