def _get_jwt_from_headers(self, auth: str) -> "AuthJWT":
"""
Get token from the headers
:param auth: value from HeaderName
"""
header_name, header_type = self._header_name, self._header_type
parts = auth.split()
# Make sure the header is in a valid format that we are expecting, ie
if not header_type:
# <HeaderName>: <JWT>
if len(parts) != 1:
msg = "Bad {} header. Expected value '<JWT>'".format(
header_name)
raise InvalidHeaderError(status_code=422, message=msg)
self._token = parts[0]
else:
# <HeaderName>: <HeaderType> <JWT>
if not re.match(r"{}\s".format(header_type),
auth) or len(parts) != 2:
msg = "Bad {} header. Expected value '{} <JWT>'".format(
header_name, header_type)
raise InvalidHeaderError(status_code=422, message=msg)
self._token = parts[1]
def _verified_token(self,encoded_token: str, issuer: Optional[str] = None) -> Dict[str,Union[str,int,bool]]:
"""
Verified token and catch all error from jwt package and return decode token
:param encoded_token: token hash
:param issuer: expected issuer in the JWT
:return: raw data from the hash token in the form of a dictionary
"""
algorithms = self._decode_algorithms or [self._algorithm]
try:
unverified_headers = self.get_unverified_jwt_headers(encoded_token)
except Exception as err:
raise InvalidHeaderError(status_code=422,message=str(err))
try:
secret_key = self._get_secret_key(unverified_headers['alg'],"decode")
except Exception:
raise
try:
return jwt.decode(
encoded_token,
secret_key,
issuer=issuer,
audience=self._decode_audience,
leeway=self._decode_leeway,
algorithms=algorithms
)
except Exception as err:
raise JWTDecodeError(status_code=422,message=str(err))