Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Decode without Secret #7

Open
mrenvoize opened this issue Nov 17, 2014 · 1 comment
Open

Decode without Secret #7

mrenvoize opened this issue Nov 17, 2014 · 1 comment

Comments

@mrenvoize
Copy link

It is my understanding that one should be able to decode the token without needing the secret, and use the secret only for verification of the contents thereafter. Unless I'm misunderstanding something regarding the way JWT is meant to work?

Is there any way to support this workflow within your module already that I'm missing, or would you support a pull request if I attempted to implement it myself?
@mrenvoize
Copy link
Author

OK, having now read the code to see how I would go about implementing such a workflow, I now see that you can pass a is_varify flag to decode to do exactly the workflow I wanted.

Feel free to ignore my babbling now ;)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@mrenvoize