fix: add missing kid to JWT header #585

dbarrosop · 2024-11-19T12:32:23Z

Bug fix

Added a kid field to the JWTGetter struct to include the Key ID in the JWT header.
Initialized the kid field in the NewJWTGetter function using the jwtSecret.KeyID.
Modified the GetToken method to include the kid in the JWT header if it is not empty.

Relevant files

Bug fix

jwt.go Add missing `kid` to JWT header in `JWTGetter` go/controller/jwt.go Added `kid` field to `JWTGetter` struct. Initialized `kid` field in `NewJWTGetter` function. Included `kid` in JWT header if present in `GetToken` method.	+5/-0

💡 PR-Agent usage: Comment /help "your question" on any pull request to receive relevant information

github-actions · 2024-11-19T12:33:06Z

PR Reviewer Guide 🔍

Here are some key observations to aid the review process:

⏱️ Estimated effort to review: 2 🔵🔵⚪⚪⚪
🧪 No relevant tests
🔒 No security concerns identified
⚡ Recommended focus areas for review Possible Bug Ensure that the `kid` field is correctly populated and used in the JWT header. Verify that `jwtSecret.KeyID` is always set and valid, as an empty or incorrect `kid` could lead to token validation issues. Code Smell Consider adding unit tests to validate the inclusion of the `kid` field in the JWT header. This will help ensure that the new functionality works as expected and prevent future regressions.

github-actions · 2024-11-19T12:33:11Z

fix: add missing kid to JWT header

e33a77b

onehassan approved these changes Nov 19, 2024

View reviewed changes

github-actions bot added the Review effort [1-5]: 2 label Nov 19, 2024

dbarrosop merged commit ff724cd into main Nov 19, 2024
7 checks passed

dbarrosop deleted the missing-kid branch November 19, 2024 12:37