fix: jwt regex validation error during skip-jwt-bearer-tokens flow (#2888)

--------- Co-authored-by: Jan Larwig <jan@larwig.com>
2025-06-15 00:15:00 +02:00 · 2025-01-15 09:06:21 +01:00
parent fafb47e45a
commit f31e02cebd
3 changed files with 9 additions and 1 deletions
--- a/pkg/middleware/jwt_session.go
+++ b/pkg/middleware/jwt_session.go
@ -13,7 +13,7 @@ import (
 	k8serrors "k8s.io/apimachinery/pkg/util/errors"
 )

-const jwtRegexFormat = `^ey[IJ][a-zA-Z0-9_-]*\.ey[IJ][a-zA-Z0-9_-]*\.[a-zA-Z0-9_-]+$`
+const jwtRegexFormat = `^ey[a-zA-Z0-9_-]*\.ey[a-zA-Z0-9_-]*\.[a-zA-Z0-9_-]+$`

 func NewJwtSessionLoader(sessionLoaders []middlewareapi.TokenToSessionFunc) alice.Constructor {
 	js := &jwtSessionLoader{