Fix Errors

Author: Qup42

docs/oidc.rst

@@ -160,7 +160,7 @@ This feature has to be enabled separately as it is an extension to the core stan
        # OIDC has to be enabled to use RP-Initiated Logout
        "OIDC_ENABLED": True,
        # Enable and configure RP-Initiated Logout
-       "OIDC_RP_INITIATED_LOGOUT": True,
+       "OIDC_RP_INITIATED_LOGOUT_ENABLED": True,
        "OIDC_RP_INITIATED_LOGOUT_ALWAYS_PROMPT": True,
        # ... any other settings you want
    }

oauth2_provider/views/oidc.py

@@ -9,6 +9,7 @@
 from django.views.generic import FormView, View
 from jwcrypto import jwk, jwt
 from jwcrypto.common import JWException
+from jwcrypto.jws import InvalidJWSObject
 from jwcrypto.jwt import JWTExpired
 from oauthlib.common import add_params_to_uri
 
@@ -158,7 +159,13 @@ def _load_id_token(token):
     IDToken = get_id_token_model()
     validator = oauth2_settings.OAUTH2_VALIDATOR_CLASS()
 
-    key = validator._get_key_for_token(token)
+    try:
+        key = validator._get_key_for_token(token)
+    except InvalidJWSObject:
+        # Failed to deserialize the key.
+        return None, None
+
+    # Could not identify key from the ID Token.
     if not key:
         return None, None
 

tests/test_oidc_views.py

@@ -265,6 +265,10 @@ def test_validate_logout_request(oidc_tokens, public_application, other_user, rp
         )
 
 
+def test__load_id_token():
+    assert _load_id_token("Not a Valid ID Token.") == (None, None)
+
+
 def is_logged_in(client):
     return get_user(client).is_authenticated