Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix: ensure that LTI 1.3 launches work #527

Merged
merged 3 commits into from
Jan 15, 2025
Merged

fix: ensure that LTI 1.3 launches work #527

merged 3 commits into from
Jan 15, 2025

Conversation

alangsto
Copy link
Contributor

COSMO-629

Changes introduced in v9.13.0 caused LTI 1.3 launches to not function. This was because the kid field was missing from both the JWT header sent to the tool, and from the public keyset endpoint.

This PR adds the kid to the JWT header and ensures that the kid is also available in the public keyset endpoint. I've also removed some pyjwkest related code that is no longer needed.

alangsto
alangsto commented Jan 15, 2025
View reviewed changes
lti_consumer/lti_1p3/key_handlers.py
@@ -86,13 +86,6 @@ def _get_keyset(self, kid=None):
raise exceptions.NoSuitableKeys() from err
keyset.extend(keys.keys)

if self.public_key and kid:
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I removed this as the _get_keyset function was never being called with a non-none kid value. The comment also suggests this was related to pyjwkest verification, but verification is passing using pyjwt

@alangsto alangsto force-pushed the alangsto/fix_lti_1p3 branch from 170d375 to bcdb683 Compare January 15, 2025 15:49
schenedx
schenedx approved these changes Jan 15, 2025
View reviewed changes
Copy link
Contributor

@schenedx schenedx left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

👍

MichaelRoytman
MichaelRoytman approved these changes Jan 15, 2025
View reviewed changes
CHANGELOG.rst Outdated
@@ -16,6 +16,10 @@ Please See the `releases tab <https://github.com/openedx/xblock-lti-consumer/rel
Unreleased
~~~~~~~~~~

9.13.1 - 2025-01-15
-------------------
* Fix broken LTI 1.3 launch
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Could you make this a little more descriptive, so that it's clear what the bug was/what was fixed, please?

@alangsto alangsto merged commit beab598 into master Jan 15, 2025
6 checks passed
@alangsto alangsto deleted the alangsto/fix_lti_1p3 branch January 15, 2025 17:32
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@schenedx schenedx schenedx approved these changes

@MichaelRoytman MichaelRoytman MichaelRoytman approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@alangsto @MichaelRoytman @schenedx