From c0479fb79a6115a57562374f2e45e33a95459c7f Mon Sep 17 00:00:00 2001 From: muhammad-ammar Date: Thu, 10 Dec 2015 11:56:50 +0500 Subject: [PATCH] use users anonymous id for subject field in JWT --- openedx/core/lib/tests/test_token_utils.py | 3 ++- openedx/core/lib/token_utils.py | 4 ++-- 2 files changed, 4 insertions(+), 3 deletions(-) diff --git a/openedx/core/lib/tests/test_token_utils.py b/openedx/core/lib/tests/test_token_utils.py index bcb6a9fc6e..c2f5ce77f7 100644 --- a/openedx/core/lib/tests/test_token_utils.py +++ b/openedx/core/lib/tests/test_token_utils.py @@ -12,6 +12,7 @@ from oauth2_provider.tests.factories import ClientFactory from provider.constants import CONFIDENTIAL from openedx.core.lib.token_utils import get_id_token +from student.models import anonymous_id_for_user from student.tests.factories import UserFactory, UserProfileFactory @@ -53,7 +54,7 @@ class TestIdTokenGeneration(TestCase): 'exp': calendar.timegm(expiration.utctimetuple()), 'iat': calendar.timegm(now.utctimetuple()), 'aud': self.oauth2_client.client_id, - 'sub': self.user.id, # pylint: disable=no-member + 'sub': anonymous_id_for_user(self.user, None), } self.assertEqual(payload, expected_payload) diff --git a/openedx/core/lib/token_utils.py b/openedx/core/lib/token_utils.py index 5aecfbacd5..2e845c61fd 100644 --- a/openedx/core/lib/token_utils.py +++ b/openedx/core/lib/token_utils.py @@ -6,7 +6,7 @@ from django.core.exceptions import ImproperlyConfigured import jwt from provider.oauth2.models import Client -from student.models import UserProfile +from student.models import UserProfile, anonymous_id_for_user def get_id_token(user, client_name): @@ -54,7 +54,7 @@ def get_id_token(user, client_name): 'exp': now + datetime.timedelta(seconds=expires_in), 'iat': now, 'aud': client.client_id, - 'sub': user.id, + 'sub': anonymous_id_for_user(user, None), } return jwt.encode(payload, client.client_secret)