diff options
Diffstat (limited to 'pyasn1_modules/rfc8226.py')
-rw-r--r-- | pyasn1_modules/rfc8226.py | 16 |
1 files changed, 11 insertions, 5 deletions
diff --git a/pyasn1_modules/rfc8226.py b/pyasn1_modules/rfc8226.py index 0c3dc21..e7fe946 100644 --- a/pyasn1_modules/rfc8226.py +++ b/pyasn1_modules/rfc8226.py @@ -18,6 +18,7 @@ from pyasn1.type import namedtype from pyasn1.type import tag from pyasn1.type import univ +from pyasn1_modules import rfc5280 MAX = float('inf') @@ -74,8 +75,12 @@ JWTClaimConstraints.componentType = namedtype.NamedTypes( tag.tagFormatSimple, 1))) ) - -JWTClaimConstraints.sizeSpec = univ.Sequence.sizeSpec + constraint.ValueSizeConstraint(1, 2) +JWTClaimConstraints.subtypeSpec = constraint.ConstraintsUnion( + constraint.WithComponentsConstraint( + ('mustInclude', constraint.ComponentPresentConstraint())), + constraint.WithComponentsConstraint( + ('permittedValues', constraint.ComponentPresentConstraint())) +) id_pe_JWTClaimConstraints = _OID(1, 3, 6, 1, 5, 5, 7, 1, 27) @@ -133,11 +138,12 @@ id_pe_TNAuthList = _OID(1, 3, 6, 1, 5, 5, 7, 1, 26) id_ad_stirTNList = _OID(1, 3, 6, 1, 5, 5, 7, 48, 14) -# Map of Certificate Extension OIDs to Extensions -# To be added to the ones that are in rfc5280.py +# Map of Certificate Extension OIDs to Extensions added to the +# ones that are in rfc5280.py -certificateExtensionsMapUpdate = { +_certificateExtensionsMapUpdate = { id_pe_TNAuthList: TNAuthorizationList(), id_pe_JWTClaimConstraints: JWTClaimConstraints(), } +rfc5280.certificateExtensionsMap.update(_certificateExtensionsMapUpdate) |