Merge pull request #29 from benoh-sap/main

estira · web-flow · commit ed7460be58b0 · 2023-07-26T13:27:15.000+03:00
Fix iss jwt validation
diff --git a/auth/src/main/java/com/gigya/auth/GSAuthRequestUtils.java b/auth/src/main/java/com/gigya/auth/GSAuthRequestUtils.java
@@ -22,7 +22,7 @@
 
 public class GSAuthRequestUtils {
 
-    public static final String VERSION = "java_auth_1.0.0";
+    public static final String VERSION = "java_auth_1.0.1";
 
     public static GSLogger logger = new GSLogger();
 
@@ -300,7 +300,7 @@ static String verifyJwt(String jwt, String apiKey, PublicKey key) {
 
             // #2 - Verify JWT provided api key with input api key.
             final String issuer = claimsJws.getBody().getIssuer();
-            final String validIssuer = "https://fidm.gigya.com/jwt/" + apiKey;
+            final String validIssuer = "https://fidm.gigya.com/jwt/" + apiKey + "/";
             if (issuer != null && !issuer.equals(validIssuer)) {
                 logger.write("JWT verification failed - apiKey does not match");
                 return null;
diff --git a/build.gradle b/build.gradle
@@ -1,7 +1,7 @@
 buildscript {
     ext {
         sdk_library_version = '3.3.1'
-        auth_library_version = '1.0.0'
+        auth_library_version = '1.0.1'
     }
 
     repositories {
