krombel/oauth2
1
0
Fork 0
forked from remote/oauth2
Code Pull Requests 1 Activity

golang.org/x/oauth2/jwt: Set kid to KeyID of private key

Browse Source 
Set the KeyID hint in the token header. This allows remote servers to
identify the key used to sign the message.

Fixes #18307

Change-Id: Ib95398079833aad6b390650b465d7b09b5f53fda
Reviewed-on: https://go-review.googlesource.com/34320
Reviewed-by: Jaana Burcu Dogan <jbd@google.com>
This commit is contained in:
Tristan Colgate
2016-12-14 09:25:55 +00:00
committed by Jaana Burcu Dogan
parent 96382aa079
commit 314dd2c0bf
2 changed files with 60 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
jwt/jwt.go
View File

@@ -105,7 +105,9 @@ func (js jwtSource) Token() (*oauth2.Token, error) {
if t := js.conf.Expires; t > 0 {
claimSet.Exp = time.Now().Add(t).Unix()
}
payload, err := jws.Encode(defaultHeader, claimSet, pk)
h := *defaultHeader
h.KeyID = js.conf.PrivateKeyID
payload, err := jws.Encode(&h, claimSet, pk)
if err != nil {
return nil, err
}