From c898b54cde3d7b4d4bc3e419e78b6ced06014f2f Mon Sep 17 00:00:00 2001 From: cho Date: Thu, 22 Jan 2026 17:26:46 +0900 Subject: [PATCH] =?UTF-8?q?JWT=ED=86=A0=ED=81=B0=20verify=20=EC=A4=91?= =?UTF-8?q?=EC=97=90=20Unsupported=20JWS=20algorithm=20=EC=97=90=EB=9F=AC?= =?UTF-8?q?=EC=8B=9C,=20=EC=9E=98=EB=AA=BB=EB=90=9C=20=ED=86=A0=ED=81=B0?= =?UTF-8?q?=EC=9D=B4=EB=AF=80=EB=A1=9C=20=EB=98=91=EA=B0=99=EC=9D=B4=20inv?= =?UTF-8?q?aild=20=EC=98=88=EC=99=B8=EC=B2=98=EB=A6=AC.?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- .../eai/adapter/http/dynamic/filter/ApiAuthFilter.java | 10 +++++++--- 1 file changed, 7 insertions(+), 3 deletions(-) diff --git a/src/main/java/com/eactive/eai/adapter/http/dynamic/filter/ApiAuthFilter.java b/src/main/java/com/eactive/eai/adapter/http/dynamic/filter/ApiAuthFilter.java index 7358ba4..c41ee8a 100644 --- a/src/main/java/com/eactive/eai/adapter/http/dynamic/filter/ApiAuthFilter.java +++ b/src/main/java/com/eactive/eai/adapter/http/dynamic/filter/ApiAuthFilter.java @@ -123,10 +123,14 @@ public class ApiAuthFilter implements HttpAdapterFilter { } else if (new Date().after(signedJWT.getJWTClaimsSet().getExpirationTime())) { throw new JwtAuthException(ERROR_TOKEN_EXPIRED, "Access token expired"); } - - if (!signedJWT.verify(jwsVerifier)) { - throw new JwtAuthException(ERROR_AUTHENTICATION_FAIL, "Token invalid"); + try { + if (!signedJWT.verify(jwsVerifier)) { + throw new JwtAuthException(ERROR_AUTHENTICATION_FAIL, "Token invalid"); + } + }catch (Exception e) { + throw new JwtAuthException(ERROR_AUTHENTICATION_FAIL, "Token invalid", e); } + OAuth2Manager manager = OAuth2Manager.getInstance(); HashSet scopeSet = manager.getApiScopeMap().get(apiId);