From ad27bd1a7e6b5a1f7993b582b7bb5dc4b16f745c Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 16 Sep 2024 02:09:50 +0000
Subject: [PATCH] chore(deps): bump github.com/MicahParks/keyfunc/v3 from 3.3.3
 to 3.3.5

Bumps [github.com/MicahParks/keyfunc/v3](https://github.com/MicahParks/keyfunc) from 3.3.3 to 3.3.5.
- [Release notes](https://github.com/MicahParks/keyfunc/releases)
- [Commits](https://github.com/MicahParks/keyfunc/compare/v3.3.3...v3.3.5)

---
updated-dependencies:
- dependency-name: github.com/MicahParks/keyfunc/v3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 go.mod                                     | 4 ++--
 go.sum                                     | 8 ++++----
 vendor/github.com/MicahParks/jwkset/jwk.go | 5 +++--
 vendor/modules.txt                         | 4 ++--
 4 files changed, 11 insertions(+), 10 deletions(-)

diff --git a/go.mod b/go.mod
index 90279fc5..60103814 100644
--- a/go.mod
+++ b/go.mod
@@ -9,7 +9,7 @@ require github.com/go-chi/chi/v5 v5.1.0
 require github.com/auth0/go-jwt-middleware/v2 v2.2.2
 
 require (
-	github.com/MicahParks/keyfunc/v3 v3.3.3
+	github.com/MicahParks/keyfunc/v3 v3.3.5
 	github.com/getsentry/sentry-go v0.28.1
 	github.com/gin-gonic/gin v1.9.1
 	github.com/golang-jwt/jwt/v5 v5.2.1
@@ -25,7 +25,7 @@ require (
 
 require (
 	github.com/KyleBanks/depth v1.2.1 // indirect
-	github.com/MicahParks/jwkset v0.5.18 // indirect
+	github.com/MicahParks/jwkset v0.5.19 // indirect
 	github.com/beorn7/perks v1.0.1 // indirect
 	github.com/bytedance/sonic v1.11.5 // indirect
 	github.com/bytedance/sonic/loader v0.1.0 // indirect
diff --git a/go.sum b/go.sum
index cdfed97a..3cee479a 100644
--- a/go.sum
+++ b/go.sum
@@ -1,9 +1,9 @@
 github.com/KyleBanks/depth v1.2.1 h1:5h8fQADFrWtarTdtDudMmGsC7GPbOAu6RVB3ffsVFHc=
 github.com/KyleBanks/depth v1.2.1/go.mod h1:jzSb9d0L43HxTQfT+oSA1EEp2q+ne2uh6XgeJcm8brE=
-github.com/MicahParks/jwkset v0.5.18 h1:WLdyMngF7rCrnstQxA7mpRoxeaWqGzPM/0z40PJUK4w=
-github.com/MicahParks/jwkset v0.5.18/go.mod h1:q8ptTGn/Z9c4MwbcfeCDssADeVQb3Pk7PnVxrvi+2QY=
-github.com/MicahParks/keyfunc/v3 v3.3.3 h1:c6j9oSu1YUo0k//KwF1miIQlEMtqNlj7XBFLB8jtEmY=
-github.com/MicahParks/keyfunc/v3 v3.3.3/go.mod h1:f/UMyXdKfkZzmBeBFUeYk+zu066J1Fcl48f7Wnl5Z48=
+github.com/MicahParks/jwkset v0.5.19 h1:XZCsgJv05DBCvxEHYEHlSafqiuVn5ESG0VRB331Fxhw=
+github.com/MicahParks/jwkset v0.5.19/go.mod h1:q8ptTGn/Z9c4MwbcfeCDssADeVQb3Pk7PnVxrvi+2QY=
+github.com/MicahParks/keyfunc/v3 v3.3.5 h1:7ceAJLUAldnoueHDNzF8Bx06oVcQ5CfJnYwNt1U3YYo=
+github.com/MicahParks/keyfunc/v3 v3.3.5/go.mod h1:SdCCyMJn/bYqWDvARspC6nCT8Sk74MjuAY22C7dCST8=
 github.com/auth0/go-jwt-middleware/v2 v2.2.2 h1:vrvkFZf72r3Qbt45KLjBG3/6Xq2r3NTixWKu2e8de9I=
 github.com/auth0/go-jwt-middleware/v2 v2.2.2/go.mod h1:4vwxpVtu/Kl4c4HskT+gFLjq0dra8F1joxzamrje6J0=
 github.com/beorn7/perks v1.0.1 h1:VlbKKnNfV8bJzeqoa4cOKqO6bYr3WgKZxO8Z16+hsOM=
diff --git a/vendor/github.com/MicahParks/jwkset/jwk.go b/vendor/github.com/MicahParks/jwkset/jwk.go
index ebde1e8f..9fd55580 100644
--- a/vendor/github.com/MicahParks/jwkset/jwk.go
+++ b/vendor/github.com/MicahParks/jwkset/jwk.go
@@ -317,10 +317,11 @@ func (j JWK) Validate() error {
 		marshalled.X5TS256 = ""
 	}
 
-	if j.marshal.X5T != marshalled.X5T {
+	canComputeThumbprint := len(j.marshal.X5C) > 0
+	if j.marshal.X5T != marshalled.X5T && canComputeThumbprint {
 		return fmt.Errorf("%w: X5T in marshal does not match X5T in marshalled", ErrJWKValidation)
 	}
-	if j.marshal.X5TS256 != marshalled.X5TS256 {
+	if j.marshal.X5TS256 != marshalled.X5TS256 && canComputeThumbprint {
 		return fmt.Errorf("%w: X5TS256 in marshal does not match X5TS256 in marshalled", ErrJWKValidation)
 	}
 	if j.marshal.CRV != marshalled.CRV {
diff --git a/vendor/modules.txt b/vendor/modules.txt
index a1aa8d19..a5bc508a 100644
--- a/vendor/modules.txt
+++ b/vendor/modules.txt
@@ -1,10 +1,10 @@
 # github.com/KyleBanks/depth v1.2.1
 ## explicit
 github.com/KyleBanks/depth
-# github.com/MicahParks/jwkset v0.5.18
+# github.com/MicahParks/jwkset v0.5.19
 ## explicit; go 1.21
 github.com/MicahParks/jwkset
-# github.com/MicahParks/keyfunc/v3 v3.3.3
+# github.com/MicahParks/keyfunc/v3 v3.3.5
 ## explicit; go 1.21
 github.com/MicahParks/keyfunc/v3
 # github.com/auth0/go-jwt-middleware/v2 v2.2.2