Handle aud not being a sequence

Closes #110
2019-11-28 19:27:08 +01:00 · 2019-11-28 19:27:08 +01:00 · bfcfc1d341
parent 499b439cb0
commit bfcfc1d341
2 changed files with 35 additions and 5 deletions
--- a/Cargo.toml
+++ b/Cargo.toml
@ -1,6 +1,6 @@
 [package]
 name = "jsonwebtoken"
-version = "7.0.0-alpha.1"
+version = "7.0.0-alpha.2"
 authors = ["Vincent Prouillet <hello@vincentprouillet.com>"]
 license = "MIT"
 readme = "README.md"
--- a/src/validation.rs
+++ b/src/validation.rs
@ -147,10 +147,20 @@ pub fn validate(claims: &Map<String, Value>, options: &Validation) -> Result<()>

    if let Some(ref correct_aud) = options.aud {
        if let Some(aud) = claims.get("aud") {
-            let provided_aud: HashSet<String> = from_value(aud.clone())?;
-            if provided_aud.intersection(correct_aud).count() == 0 {
-                return Err(new_error(ErrorKind::InvalidAudience));
-            }
+            match aud {
+                Value::String(aud_found) => {
+                    if !correct_aud.contains(aud_found) {
+                        return Err(new_error(ErrorKind::InvalidAudience));
+                    }
+                }
+                Value::Array(_) => {
+                    let provided_aud: HashSet<String> = from_value(aud.clone())?;
+                    if provided_aud.intersection(correct_aud).count() == 0 {
+                        return Err(new_error(ErrorKind::InvalidAudience));
+                    }
+                }
+                _ => return Err(new_error(ErrorKind::InvalidAudience))
+            };
        } else {
            return Err(new_error(ErrorKind::InvalidAudience));
        }
@ -432,4 +442,24 @@ mod tests {
            }
        };
    }
+
+    // https://github.com/Keats/jsonwebtoken/issues/110
+    #[test]
+    fn aud_use_validation_struct() {
+        let mut claims = Map::new();
+        claims.insert("aud".to_string(), to_value("my-googleclientid1234.apps.googleusercontent.com").unwrap());
+
+        let aud = "my-googleclientid1234.apps.googleusercontent.com".to_string();
+        let mut aud_hashset = std::collections::HashSet::new();
+        aud_hashset.insert(aud);
+
+        let validation = Validation {
+            aud: Some(aud_hashset),
+            validate_exp: false,
+            ..Validation::default()
+        };
+        let res = validate(&claims, &validation);
+        println!("{:?}", res);
+        assert!(res.is_ok());
+    }
 }