Update JwtVerifyMiddleware.java

syntheshad · web-flow · commit f81f052bcdd6 · 2025-07-01T14:47:50.000+08:00
Added VerificationException as one of the handled exception for cases such as no kid or kid mismatch between jwt and jwk.
diff --git a/src/main/java/com/networknt/aws/lambda/handler/middleware/security/JwtVerifyMiddleware.java b/src/main/java/com/networknt/aws/lambda/handler/middleware/security/JwtVerifyMiddleware.java
@@ -210,9 +210,20 @@ public Status handleJwt(LightLambdaExchange exchange, String pathPrefix, String
 
                     } catch (MalformedClaimException e) {
                         LOG.error("MalformedClaimException", e);
+                        
                         if (LOG.isDebugEnabled())
                             LOG.debug("JwtVerifyHandler.execute ends with an error.");
+                        
                         return new Status(STATUS_INVALID_AUTH_TOKEN);
+                    
+                    } catch (VerificationException e) {
+                        LOG.error("VerificationException", e);
+                        
+                        if (LOG.isDebugEnabled())
+                            LOG.debug("JwtVerifyHandler.execute ends with an error.");
+                        
+                        return new Status(STATUS_INVALID_AUTH_TOKEN);
+                    
                     }
                 } else {
                     if (LOG.isDebugEnabled())
