Skip to content

Release v0.5.0 #153

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 16 commits into from
Apr 15, 2022
Merged

Release v0.5.0 #153

Changes from 1 commit
Commits
Show all changes
16 commits
Select commit Hold shift + click to select a range
6f4c18a
Fix the filter code snippet
henrikwirth Aug 27, 2020
f86c679
Fix incorrect error message on invalid secret
markspolakovs Feb 26, 2021
1addb37
Added the action graphql_jwt_auth_before_authenticate and the filter …
clopez-logica May 9, 2021
ce631f3
Set a 400+ status when throwing WP_Errors
pcraciunoiu Jul 14, 2021
d81b24d
Link to issue w comment
pcraciunoiu Jul 14, 2021
3bf4572
Allow multiple iss domains
fjobeir Oct 6, 2021
413c09d
Merge pull request #137 from UpliftAgency/jwt-wperror-400-status
jasonbahl Apr 15, 2022
4412c3f
Merge branch 'develop' into develop
jasonbahl Apr 15, 2022
89d897c
Merge pull request #141 from fjobeir/develop
jasonbahl Apr 15, 2022
38ed240
Merge pull request #135 from spiralni/develop
jasonbahl Apr 15, 2022
e09174b
Merge pull request #126 from markspolakovs/patch-1
jasonbahl Apr 15, 2022
2736333
- updating composer dependencies
jasonbahl Apr 15, 2022
f451835
- update config
jasonbahl Apr 15, 2022
44f7e1d
- update firebase/php-jwt to v6.1.0
jasonbahl Apr 15, 2022
3db9287
- update version for release
jasonbahl Apr 15, 2022
51ca240
Merge commit '7905ab9e3658e6e79be510070b9e7aaf26d47009' into release/…
jasonbahl Apr 15, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
Allow multiple iss domains 
Allow multiple domains to be used as token iss value and make your token valid over several domains
  • Loading branch information
@fjobeir
fjobeir committed Oct 6, 2021
commit 3bf4572aefb083ec99b86aed739116bdec0e6b8b
12 changes: 11 additions & 1 deletion src/Auth.php
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -582,10 +582,20 @@ public static function validate_token( $token = null, $refresh = false ) {
return $token;
}

/**
* Allow multiple domains to be used as token iss value
* This is useful if you want to make your token valid over several domains
* Default value is the current site url
* Used along with the 'graphql_jwt_auth_token_before_sign' filter
*/

$allowed_domains = array(get_bloginfo('url'));
$allowed_domains = apply_filters('graphql_jwt_auth_iss_allowed_domains', $allowed_domains);

/**
* The Token is decoded now validate the iss
*/
if ( ! isset( $token->iss ) || get_bloginfo( 'url' ) !== $token->iss ) {
if ( ! isset( $token->iss ) || !in_array($token->iss, $allowed_domains) ) {
return new \WP_Error( 'invalid-jwt', __( 'The iss do not match with this server', 'wp-graphql-jwt-authentication' ) );
}

Expand Down