From 54439cfa0f2ecb47386ca7764fe18969dcca5e2c Mon Sep 17 00:00:00 2001 From: Vishal Egbert Date: Mon, 3 Mar 2025 10:45:35 +1100 Subject: [PATCH 1/2] Log unexpected issuer --- src/main/java/com/uid2/shared/attest/JwtService.java | 11 +++++++++++ 1 file changed, 11 insertions(+) diff --git a/src/main/java/com/uid2/shared/attest/JwtService.java b/src/main/java/com/uid2/shared/attest/JwtService.java index b27105ea..8fd4a249 100644 --- a/src/main/java/com/uid2/shared/attest/JwtService.java +++ b/src/main/java/com/uid2/shared/attest/JwtService.java @@ -62,6 +62,17 @@ public JwtValidationResponse validateJwt(String jwt, String audience, String iss Exception lastException = null; + try { + var testVerifier = TokenVerifier.newBuilder().build(); + var testSignature = testVerifier.verify(jwt); + + if (testSignature.getPayload().getIssuer() != issuer) { + LOGGER.error("Unexpected JWT issuer, received JWT issuer: {}, expected JWT issuer: {}", testSignature.getPayload().getIssuer(), issuer); + } + } catch (Exception e) { + LOGGER.error("Test JWT logging failed", e); + } + for (PublicKey key : this.publicKeys) { var tokenVerifier = TokenVerifier.newBuilder() .setPublicKey(key) From 92660df0ab22448d1f66e45546e4772cd84b9b9d Mon Sep 17 00:00:00 2001 From: Release Workflow Date: Sun, 2 Mar 2025 23:51:36 +0000 Subject: [PATCH 2/2] [CI Pipeline] Released Snapshot version: 8.1.23-alpha-200-SNAPSHOT --- pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pom.xml b/pom.xml index ffb0106a..7781b9f2 100644 --- a/pom.xml +++ b/pom.xml @@ -5,7 +5,7 @@ com.uid2 uid2-shared - 8.1.22 + 8.1.23-alpha-200-SNAPSHOT ${project.groupId}:${project.artifactId} Library for all the shared uid2 operations https://github.com/IABTechLab/uid2docs