Merge pull request #62 from bl4ckh0l3z/main

Fix for JWT token generation and validation
2021-03-25 09:46:28 +01:00 · 2021-03-25 09:46:28 +01:00 · f1250a00ba
commit f1250a00ba
parent a98679a923 36833e1c6b
2 changed files with 3 additions and 3 deletions
--- a/server/backend/app/decorators.py
+++ b/server/backend/app/decorators.py
@ -42,7 +42,7 @@ def require_header_token(f):
    def decorated(*args, **kwargs):
        try:
            token = request.headers['X-Token']
-            jwt.decode(token, app.config["SECRET_KEY"])
+            jwt.decode(token, app.config["SECRET_KEY"], "HS256")
            return f(*args, **kwargs)
        except:
            return jsonify({"message": "JWT verification failed"})
@ -58,7 +58,7 @@ def require_get_token(f):
    def decorated(*args, **kwargs):
        try:
            token = request.args.get("token")
-            jwt.decode(token, app.config["SECRET_KEY"])
+            jwt.decode(token, app.config["SECRET_KEY"], "HS256")
            return f(*args, **kwargs)
        except:
            return jsonify({"message": "JWT verification failed"})
--- a/server/backend/main.py
+++ b/server/backend/main.py
@ -34,7 +34,7 @@ def get_token():
    """
    token = jwt.encode({"exp": datetime.datetime.now() +
                        datetime.timedelta(hours=24)}, app.config["SECRET_KEY"])
-    return jsonify({"token": token.decode("utf8")})
+    return jsonify({"token": token})


@app.route("/<p>/<path:path>", methods=["GET"])