Merge pull request #99 from SananGuliyev/patch-1

Convert `exp` header to int if it is valid IntDate
author: David Lord <davidism@gmail.com> 2018-09-21 12:10:23 -0700
committer: GitHub <noreply@github.com> 2018-09-21 12:10:23 -0700
commit: 66121f486520c26114ae209e8e0ea4b6ab67a147 (patch)
tree: a4dd765df285b8829b631575f11c6f3bc65ae3fc
parent: 5ceb29aa41cfbc2c28f37b3f09250ce42230a5a5 (diff)
parent: e8da1da26b4c1627229a1144fa310673ac2649ef (diff)
download: itsdangerous-66121f486520c26114ae209e8e0ea4b6ab67a147.tar.gz
1 files changed, 5 insertions, 0 deletions
diff --git a/itsdangerous.py b/itsdangerous.py
index cdd2329..f618038 100644
--- a/itsdangerous.py
+++ b/itsdangerous.py
@@ -825,6 +825,11 @@ class TimedJSONWebSignatureSerializer(JSONWebSignatureSerializer):
         if 'exp' not in header:
             raise BadSignature('Missing expiry date', payload=payload)
 
+        try:
+            header['exp'] = int(header['exp'])
+        except ValueError:
+            raise BadHeader('Expiry date is not valid timestamp', payload=payload)
+
         if not (isinstance(header['exp'], number_types)
                 and header['exp'] > 0):
             raise BadSignature('expiry date is not an IntDate',
author	David Lord <davidism@gmail.com>	2018-09-21 12:10:23 -0700
committer	GitHub <noreply@github.com>	2018-09-21 12:10:23 -0700
commit	66121f486520c26114ae209e8e0ea4b6ab67a147 (patch)
tree	a4dd765df285b8829b631575f11c6f3bc65ae3fc
parent	5ceb29aa41cfbc2c28f37b3f09250ce42230a5a5 (diff)
parent	e8da1da26b4c1627229a1144fa310673ac2649ef (diff)
download	itsdangerous-66121f486520c26114ae209e8e0ea4b6ab67a147.tar.gz