OAuth2AuthorisationServerConnector: Fix _checkCustomTokenPolicy call places

This method raises the same error as jwt's claim validator, as it was intended to be called from the same exception handling block. So move it from "else" blocks into the corresponding "try" block.

OAuth2AuthorisationServerConnector: Fix _checkCustomTokenPolicy call places
This method raises the same error as jwt's claim validator, as it was intended to be called from the same exception handling block. So move it from "else" blocks into the corresponding "try" block.
b9afc22d · Vincent Pelletier · Kazuhiko Shiozaki · 31a4aa7a · b9afc22d
Commit b9afc22d authored Nov 28, 2023 by Vincent Pelletier Committed by Kazuhiko Shiozaki Jul 11, 2024
Showing with 4 additions and 4 deletions

bt5/erp5_oauth2_authorisation/DocumentTemplateItem/portal_components/document.erp5.OAuth2AuthorisationServerConnector.py ...nents/document.erp5.OAuth2AuthorisationServerConnector.py +4 -4

No files found.
--- a/bt5/erp5_oauth2_authorisation/DocumentTemplateItem/portal_components/document.erp5.OAuth2AuthorisationServerConnector.py
+++ b/bt5/erp5_oauth2_authorisation/DocumentTemplateItem/portal_components/document.erp5.OAuth2AuthorisationServerConnector.py
@@ -1271,10 +1271,10 @@ class OAuth2AuthorisationServerConnector(XMLObject):
            'verify_signature': True,
          },
        )
+        self._checkCustomTokenPolicy(token_dict, request)
      except jwt.InvalidTokenError:
        continue
      else:
-        self._checkCustomTokenPolicy(token_dict, request)
        token_dict[JWT_PAYLOAD_KEY] = decodeAccessTokenPayload(
          token_dict[JWT_PAYLOAD_KEY].encode('ascii'),
        )
@@ -1296,10 +1296,10 @@ class OAuth2AuthorisationServerConnector(XMLObject):
            'verify_signature': True,
          },
        )
+        self._checkCustomTokenPolicy(token_dict, request)
      except jwt.InvalidTokenError:
        continue
      else:
-        self._checkCustomTokenPolicy(token_dict, request)
        return token_dict
    raise

@@ -1356,10 +1356,10 @@ class OAuth2AuthorisationServerConnector(XMLObject):
            'verify_signature': True,
          },
        )
+        self._checkCustomTokenPolicy(token_dict, request)
      except jwt.InvalidTokenError:
        continue
      else:
-        self._checkCustomTokenPolicy(token_dict, request)
        return token_dict['iss']
    raise

@@ -1382,10 +1382,10 @@ class OAuth2AuthorisationServerConnector(XMLObject):
            'verify_signature': True,
          },
        )
+        self._checkCustomTokenPolicy(token_dict, request)
      except jwt.InvalidTokenError:
        continue
      else:
-        self._checkCustomTokenPolicy(token_dict, request)
        return token_dict['iss']
    raise