Skip to content

Fix type error when header is not a JSON object #715

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
304 wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Fix type error when header is not a JSON object #715

304 wants to merge 1 commit into from
+17 −1

Conversation

@304
Copy link
Contributor

@304 304 commented Feb 2, 2026
edited
Loading

Description

Prevent TypeError when decoding tokens with non-hash headers (e.g., arrays).

Fixes a TypeError where malformed tokens with array headers caused "no implicit conversion of String into Integer" error instead of raising the expected JWT::DecodeError.

Checklist

Before the PR can be merged be sure the following are checked:

  • There are tests for the fix or feature added/changed
  • A description of the changes and a reference to the PR has been added to CHANGELOG.md. More details in the CONTRIBUTING.md

@304 304 force-pushed the fix_type_error_2_segment_token_header branch from 7e4fd1d to 94b8a43 Compare February 2, 2026 14:02
@304
Fix type error when header is not a JSON object
aaa77a6 
Prevent TypeError when decoding tokens with non-hash headers (e.g.,
arrays).

Fixes a TypeError where malformed tokens with array headers caused "no
implicit conversion of String into Integer" error instead of raising the
expected JWT::DecodeError.
@304 304 force-pushed the fix_type_error_2_segment_token_header branch from 94b8a43 to aaa77a6 Compare February 2, 2026 14:17
anakinj
anakinj reviewed Feb 3, 2026
View reviewed changes
spec/jwt/jwt_spec.rb
it 'should raise JWT::DecodeError' do
expect do
JWT.decode data[:invalid_2_segment_header_token]
end.to raise_error JWT::DecodeError
Copy link
Member

@anakinj anakinj Feb 3, 2026
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Could we check that the error message or that a part of it is the expected message? The JWT::DecodeError could basically be any of the errors raised.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@anakinj anakinj anakinj left review comments

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@304 @anakinj