summaryrefslogtreecommitdiffstats
path: root/services/auth/source/oauth2/token.go
diff options
context:
space:
mode:
Diffstat (limited to 'services/auth/source/oauth2/token.go')
-rw-r--r--services/auth/source/oauth2/token.go5
1 files changed, 4 insertions, 1 deletions
diff --git a/services/auth/source/oauth2/token.go b/services/auth/source/oauth2/token.go
index 612c9db8cf..3405619d3f 100644
--- a/services/auth/source/oauth2/token.go
+++ b/services/auth/source/oauth2/token.go
@@ -9,7 +9,7 @@ import (
"code.gitea.io/gitea/modules/timeutil"
- "github.com/golang-jwt/jwt/v4"
+ "github.com/golang-jwt/jwt/v5"
)
// ___________ __
@@ -50,6 +50,9 @@ func ParseToken(jwtToken string, signingKey JWTSigningKey) (*Token, error) {
if err != nil {
return nil, err
}
+ if !parsedToken.Valid {
+ return nil, fmt.Errorf("invalid token")
+ }
var token *Token
var ok bool
if token, ok = parsedToken.Claims.(*Token); !ok || !parsedToken.Valid {
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-29 20:36:29 +0000