latch-asgi 1.0.4__tar.gz → 1.0.5__tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (19) hide show
  1. {latch_asgi-1.0.4 → latch_asgi-1.0.5}/PKG-INFO +1 -1
  2. {latch_asgi-1.0.4 → latch_asgi-1.0.5}/latch_asgi/auth.py +3 -3
  3. {latch_asgi-1.0.4 → latch_asgi-1.0.5}/pyproject.toml +1 -1
  4. {latch_asgi-1.0.4 → latch_asgi-1.0.5}/COPYING +0 -0
  5. {latch_asgi-1.0.4 → latch_asgi-1.0.5}/README.md +0 -0
  6. {latch_asgi-1.0.4 → latch_asgi-1.0.5}/latch_asgi/__init__.py +0 -0
  7. {latch_asgi-1.0.4 → latch_asgi-1.0.5}/latch_asgi/asgi_iface.py +0 -0
  8. {latch_asgi-1.0.4 → latch_asgi-1.0.5}/latch_asgi/config.py +0 -0
  9. {latch_asgi-1.0.4 → latch_asgi-1.0.5}/latch_asgi/context/__init__.py +0 -0
  10. {latch_asgi-1.0.4 → latch_asgi-1.0.5}/latch_asgi/context/common.py +0 -0
  11. {latch_asgi-1.0.4 → latch_asgi-1.0.5}/latch_asgi/context/http.py +0 -0
  12. {latch_asgi-1.0.4 → latch_asgi-1.0.5}/latch_asgi/context/websocket.py +0 -0
  13. {latch_asgi-1.0.4 → latch_asgi-1.0.5}/latch_asgi/datadog_propagator.py +0 -0
  14. {latch_asgi-1.0.4 → latch_asgi-1.0.5}/latch_asgi/framework/__init__.py +0 -0
  15. {latch_asgi-1.0.4 → latch_asgi-1.0.5}/latch_asgi/framework/common.py +0 -0
  16. {latch_asgi-1.0.4 → latch_asgi-1.0.5}/latch_asgi/framework/http.py +0 -0
  17. {latch_asgi-1.0.4 → latch_asgi-1.0.5}/latch_asgi/framework/websocket.py +0 -0
  18. {latch_asgi-1.0.4 → latch_asgi-1.0.5}/latch_asgi/py.typed +0 -0
  19. {latch_asgi-1.0.4 → latch_asgi-1.0.5}/latch_asgi/server.py +0 -0
{latch_asgi-1.0.4 → latch_asgi-1.0.5}/PKG-INFO RENAMED
@@ -1,6 +1,6 @@
1
1
  Metadata-Version: 2.1
2
2
  Name: latch-asgi
3
- Version: 1.0.4
3
+ Version: 1.0.5
4
4
  Summary: ASGI python server
5
5
  Author-Email: Max Smolin <max@latch.bio>
6
6
  License: CC0-1.0
{latch_asgi-1.0.4 → latch_asgi-1.0.5}/latch_asgi/auth.py RENAMED
@@ -147,15 +147,15 @@ def get_signer_sub(auth_header: str) -> Authorization:
147
147
  # ) from e
148
148
 
149
149
  with app_tracer.start_as_current_span("decode jwt"):
150
+ audience = config.audience if jwt_key != config.self_signed_jwk else None
150
151
  try:
151
152
  jwt_data: dict[str, str] = jwt.decode(
152
153
  oauth_token,
153
154
  key=jwt_key,
154
155
  algorithms=["RS256", "HS256"],
155
156
  # fixme(maximsmol): gut this abomination
156
- audience=(
157
- config.audience if jwt_key != config.self_signed_jwk else None
158
- ),
157
+ audience=audience,
158
+ options={"verify_aud": audience is not None},
159
159
  )
160
160
  except jwt.exceptions.InvalidTokenError as e:
161
161
  # todo(maximsmol): filter out scope failures and include the correct error code
{latch_asgi-1.0.4 → latch_asgi-1.0.5}/pyproject.toml RENAMED
@@ -1,6 +1,6 @@
1
1
  [project]
2
2
  name = "latch-asgi"
3
- version = "1.0.4"
3
+ version = "1.0.5"
4
4
  description = "ASGI python server"
5
5
  authors = [
6
6
  { name = "Max Smolin", email = "max@latch.bio" },
{latch_asgi-1.0.4 → latch_asgi-1.0.5}/COPYING RENAMED
File without changes
{latch_asgi-1.0.4 → latch_asgi-1.0.5}/README.md RENAMED
File without changes