Update verify token

bcgov · Oct 3, 2024 · 0f710f4 · 0f710f4
1 parent 0e4d598
commit 0f710f4
Showing 1 changed file with 9 additions and 1 deletion.
diff --git a/handlers/authorizer/index.js b/handlers/authorizer/index.js
@@ -94,8 +94,11 @@ async function batchQueryWrapper(tableName, key, values) {
 }
 
 function validateToken(token) {
+  console.log("validateToken");
   const headers = jwt.decode(token, { complete: true }).header;
+  console.log(headers);
   const kid = headers.kid;
+  console.log(kid);
 
   // search for the kid in the downloaded public keys
   let keyIndex = -1;
@@ -105,22 +108,27 @@ function validateToken(token) {
       break;
     }
   }
+  console.log(keyIndex);
 
   if (keyIndex === -1) {
     console.log('Public key not found in jwks.json');
     throw 'Public key not found in jwks.json';
   }
 
   // construct the public key
+  console.log(keys[keyIndex]);
   const publicKey = jwkToPem(keys[keyIndex]);
 
+  console.log(publicKey);
+
   // get the last two sections of the token,
   // message and signature (encoded in base64)
   const [message, encodedSignature] = token.split('.').slice(0, 2);
-
+  console.log(message);
   // decode the signature
   const decodedSignature = Buffer.from(encodedSignature, 'base64');
 
+  console.log(decodedSignature);
   // verify the signature
   const verify = crypto.createVerify('SHA256');
   verify.update(message);