4004090b45
- Use python-jose (already in dependencies) instead of PyJWT for JWT decoding - Make unknown Supabase key roles fail fast per alpha principles - Skip all JWT validations (not just signature) when checking role - Update tests to expect failure for unknown roles Fixes: - No need to add PyJWT dependency - python-jose provides JWT functionality - Unknown key types now raise ConfigurationError instead of warning - JWT decode properly skips all validations to only check role claim |
||
|---|---|---|
| .. | ||
| src | ||
| tests | ||
| .dockerignore | ||
| .gitignore | ||
| Dockerfile.agents | ||
| Dockerfile.mcp | ||
| Dockerfile.server | ||
| package-lock.json | ||
| pyproject.toml | ||
| pyrightconfig.json | ||
| pytest.ini | ||
| requirements.agents.txt | ||
| requirements.mcp.txt | ||
| requirements.server.txt | ||
| uv.lock | ||