github-starred/better-auth
2
0
Fork 0
mirror of https://github.com/better-auth/better-auth.git synced 2026-05-27 09:32:20 -05:00
Code Issues 2.5k Packages Projects Releases 112 Wiki Activity

fix(jwt): improve private key decryption error handling

Browse Source
This commit is contained in:
Bereket Engida
2025-03-06 00:50:38 +03:00
parent 5c94ceee9f
commit 4d5bc02151
1 changed files with 5 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
packages/better-auth/src/plugins/jwt/index.ts
View File

@@ -15,6 +15,7 @@ import {
} from "../../api";
import { symmetricDecrypt, symmetricEncrypt } from "../../crypto";
import { mergeSchema } from "../../db/schema";
import { BetterAuthError } from "../../error";
type JWKOptions =
| {
@@ -147,6 +148,10 @@ export async function getJwtToken(
? await symmetricDecrypt({
key: ctx.context.secret,
data: JSON.parse(key.privateKey),
}).catch(() => {
throw new BetterAuthError(
"Failed to decrypt private private key. Make sure the secret currently in use is the same as the one used to encrypt the private key. If you are using a different secret, either cleanup your jwks or disable private key encryption.",
);
})
: key.privateKey;