Verify alg

Author: rohe

doc/jws.rst

@@ -63,8 +63,10 @@ Or slightly different::
 
     >>> key = SYMKey(key=b'My hollow echo chamber', alg="HS512")
     >>> _verifier = factory(_jwt)
+    >>> _verifier.verify_alg('HS512')
+    True
     >>> print(_verifier.verify_compact(_jwt, [key]))
-
+    "Please take a moment to register today"
 
 
 

src/cryptojwt/jws/jws.py

@@ -399,8 +399,8 @@ def verify_alg(self, alg):
             return False
 
 
-def factory(token):
-    _jw = JWS()
+def factory(token, **kwargs):
+    _jw = JWS(**kwargs)
     if _jw.is_jws(token):
         return _jw
     else:

tests/test_06_jws.py

@@ -819,3 +819,15 @@ def test_extra_headers_3():
     sjwt = _jws.sign_compact(keys, abc=123)
     _jwt = factory(sjwt)
     assert set(_jwt.jwt.headers.keys()) == {'alg', 'foo', 'abc'}
+
+
+def test_factory_verify_alg():
+    pkey = import_private_rsa_key_from_file(full_path("./size2048.key"))
+    payload = "Please take a moment to register today"
+    keys = [RSAKey(priv_key=pkey)]
+    _signer = JWS(payload, alg='RS256')
+    _signer.set_header_claim('foo', 'bar')
+    _jws = _signer.sign_compact(keys, abc=123)
+    _verifier = factory(_jws, alg='RS512')
+    with pytest.raises(SignerAlgError):
+        _verifier.verify_compact(_jws, keys)