Open Policy Agent
How to make policy fail when bad jwt token value is given to io.jwt.decode_verify ? #497
Replies: 1 comment 1 reply
-
|
You could add another deny["provided token not a JWT"] {
not io.jwt.decode(input.message)
} |
Beta Was this translation helpful? Give feedback.
1 reply
-
|
Awesome, that was it ! Thank you so much ! |
Beta Was this translation helpful? Give feedback.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
I managed to make it work with a valid JWT token value 👌
But when not giving a valid JWT token like "not.a.jwt" to io.jwt.decode_verify() I don't have any idea how to make a denial :/
https://play.openpolicyagent.org/p/gZ8hF22hIF
Thank you for your suggestions 🙏
Beta Was this translation helpful? Give feedback.
All reactions