BUG/MINOR: jwt: don't try to load files with HMAC algorithm
When trying to use a HMAC algorithm (HS256, HS384, HS512) the
sample_conv_jwt_verify_check() function of the converter tries to load a
file even if it is only supposed to contain a secret instead of a path.
When using lua, the check function is called at runtime so it even tries
to load file at each call... This fixes the issue for HMAC algorithm
but this is still a problem with the other algorithms, since we don't
have a way of pre-loading files before the call.
Another solution must be found to prevent disk IO with lua using other
algorithms.
Must be backported as far as 2.6.
(cherry picked from commit 883f1bdbcec7882a2e4a257e93f92be604467319)
Signed-off-by: Christopher Faulet <cfaulet@haproxy.com>
(cherry picked from commit 639d800694dc679364ddfc563353b0464a0ee32c)
Signed-off-by: Willy Tarreau <w@1wt.eu>
(cherry picked from commit 20410db1c52a4ad19b3483070ffedd9587f5b9df)
Signed-off-by: Willy Tarreau <w@1wt.eu>
1 file changed