Add a jwt command to decode an access token locally#270
Open
jongio wants to merge 1 commit into
Open
Conversation
Adds an 'azd rest jwt <token>' subcommand that decodes a JWT locally and prints its claims. Text output shows the identity summary (tenant, object ID, app ID, audience, username, scopes, roles, expiry); --format json prints the full decoded claims. No signature verification, no network call, and the raw token is never written to output. Reuses the local decode path that whoami already uses. Co-authored-by: Copilot App <[email protected]>
Contributor
|
🚀 Website Preview Your PR preview is ready! 📎 Preview URL: https://jongio.github.io/azd-rest/pr/270/ This preview will be automatically cleaned up when the PR is closed. |
Contributor
🚀 Test This PRA preview build ( One-Line Install (Recommended)PowerShell (Windows): iex "& { $(irm https://raw.githubusercontent.com/jongio/azd-rest/main/scripts/install-pr.ps1) } -PrNumber 270 -Version 0.5.0-pr270"Bash (macOS/Linux): curl -fsSL https://raw.githubusercontent.com/jongio/azd-rest/main/scripts/install-pr.sh | bash -s 270 0.5.0-pr270UninstallPowerShell (Windows): iex "& { $(irm https://raw.githubusercontent.com/jongio/azd-rest/main/scripts/uninstall-pr.ps1) } -PrNumber 270"Bash (macOS/Linux): curl -fsSL https://raw.githubusercontent.com/jongio/azd-rest/main/scripts/uninstall-pr.sh | bash -s 270Build Info:
|
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Adds an
azd rest jwt <token>subcommand that decodes a JWT access token locally and prints its claims.What it does
azd rest jwt <token>prints the identity summary: tenant, object ID, app ID, audience, username, scopes, roles, and expiry.--format jsonprints the full set of decoded claims as JSON.whoamialready uses, so there is no new token-handling code.Useful for inspecting a token from
az account get-access-token, an Authorization header, or a teammate.Tests
Table-driven unit tests cover text output, JSON claims output, malformed tokens, argument validation, and the guarantee that the raw token never appears in output.
Closes #268