From 12453be99f2bf21842a9e488ecf72c06a06625f0 Mon Sep 17 00:00:00 2001
From: Frederick Muriuki Muriithi
Date: Fri, 19 Jul 2024 12:24:04 -0500
Subject: Fetch a client's JWKs from a URI

---
 gn_auth/auth/authentication/oauth2/grants/jwt_bearer_grant.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'gn_auth/auth/authentication/oauth2/grants')

diff --git a/gn_auth/auth/authentication/oauth2/grants/jwt_bearer_grant.py b/gn_auth/auth/authentication/oauth2/grants/jwt_bearer_grant.py
index b0f2cc7..1f53186 100644
--- a/gn_auth/auth/authentication/oauth2/grants/jwt_bearer_grant.py
+++ b/gn_auth/auth/authentication/oauth2/grants/jwt_bearer_grant.py
@@ -74,7 +74,7 @@ class JWTBearerGrant(_JWTBearerGrant):
 
     def resolve_client_key(self, client, headers, payload):
         """Resolve client key to decode assertion data."""
-        return app.config["SSL_PUBLIC_KEYS"].get(headers["kid"])
+        return client.jwks().find_by_kid(headers["kid"])
 
 
     def authenticate_user(self, subject):
-- 
cgit v1.2.3