diff options
author | David Lord <davidism@gmail.com> | 2018-09-21 12:10:23 -0700 |
---|---|---|
committer | GitHub <noreply@github.com> | 2018-09-21 12:10:23 -0700 |
commit | 66121f486520c26114ae209e8e0ea4b6ab67a147 (patch) | |
tree | a4dd765df285b8829b631575f11c6f3bc65ae3fc | |
parent | 5ceb29aa41cfbc2c28f37b3f09250ce42230a5a5 (diff) | |
parent | e8da1da26b4c1627229a1144fa310673ac2649ef (diff) | |
download | itsdangerous-66121f486520c26114ae209e8e0ea4b6ab67a147.tar.gz |
Merge pull request #99 from SananGuliyev/patch-1
Convert `exp` header to int if it is valid IntDate
-rw-r--r-- | itsdangerous.py | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/itsdangerous.py b/itsdangerous.py index cdd2329..f618038 100644 --- a/itsdangerous.py +++ b/itsdangerous.py @@ -825,6 +825,11 @@ class TimedJSONWebSignatureSerializer(JSONWebSignatureSerializer): if 'exp' not in header: raise BadSignature('Missing expiry date', payload=payload) + try: + header['exp'] = int(header['exp']) + except ValueError: + raise BadHeader('Expiry date is not valid timestamp', payload=payload) + if not (isinstance(header['exp'], number_types) and header['exp'] > 0): raise BadSignature('expiry date is not an IntDate', |