You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
While building the userInfo response the provider fetches the client keys and then merely picks the first with a non-empty kid, without checking it's intended usage.
If the client exposes 2 keys, one for signing and one for encryption, the provider by picking the first will either:
pick the right one (by luck) just because it is the first in the list
pick the wrong one and use the sig key against it's intended usage
While building the userInfo response the provider fetches the client keys and then merely picks the first with a non-empty
kid
, without checking it's intended usage.If the client exposes 2 keys, one for signing and one for encryption, the provider by picking the first will either:
sig
key against it's intended usagespid-cie-oidc-django/spid_cie_oidc/provider/views/userinfo_endpoint.py
Line 95 in 2b0c2ef
The text was updated successfully, but these errors were encountered: