graphql: T4574: add specific error message if token has expired

Catch expiration error and return error-specific message instead of general 'not authenticated'.
author: John Estabrook <jestabro@vyos.io> 2022-11-21 14:06:23 -0600
committer: John Estabrook <jestabro@vyos.io> 2022-11-21 16:06:09 -0600
commit: 05b60b2dc6bd2187501b2583cdaa27a90c45b1d5 (patch)
tree: c1659a48884715c72341d857464c5b13e0a4faa5 /src/services/api/graphql/libs
parent: d70350f356c8a0df79600f8863addce104b0eba4 (diff)
download: vyos-1x-05b60b2dc6bd2187501b2583cdaa27a90c45b1d5.tar.gz
vyos-1x-05b60b2dc6bd2187501b2583cdaa27a90c45b1d5.zip
1 files changed, 3 insertions, 0 deletions
diff --git a/src/services/api/graphql/libs/token_auth.py b/src/services/api/graphql/libs/token_auth.py
index 3ecd8b855..2100eba7f 100644
--- a/src/services/api/graphql/libs/token_auth.py
+++ b/src/services/api/graphql/libs/token_auth.py
@@ -54,6 +54,9 @@ def get_user_context(request):
             user_id: str = payload.get('sub')
             if user_id is None:
                 return context
+        except jwt.exceptions.ExpiredSignatureError:
+            context['error'] = 'expired token'
+            return context
         except jwt.PyJWTError:
             return context
         try:
author	John Estabrook <jestabro@vyos.io>	2022-11-21 14:06:23 -0600
committer	John Estabrook <jestabro@vyos.io>	2022-11-21 16:06:09 -0600
commit	05b60b2dc6bd2187501b2583cdaa27a90c45b1d5 (patch)
tree	c1659a48884715c72341d857464c5b13e0a4faa5 /src/services/api/graphql/libs
parent	d70350f356c8a0df79600f8863addce104b0eba4 (diff)
download	vyos-1x-05b60b2dc6bd2187501b2583cdaa27a90c45b1d5.tar.gz vyos-1x-05b60b2dc6bd2187501b2583cdaa27a90c45b1d5.zip