changes per vimalloc

Author: acrossen

flask_jwt_extended/__init__.py

@@ -11,4 +11,4 @@
     unset_jwt_cookies, unset_refresh_cookies
 )
 
-__version__ = '3.14.0'
+__version__ = '3.13.1'

flask_jwt_extended/jwt_manager.py

@@ -391,10 +391,9 @@ def decode_key_loader(self, callback):
         The default implementation returns the decode key specified by
         `JWT_SECRET_KEY` or `JWT_PUBLIC_KEY`, depending on the signing algorithm.
 
-        *HINT*: The callback function should preferably be a function that takes
+        *HINT*: The callback function should be a function that takes
         **two** arguments, which are the unverified claims and headers of the jwt
-        (dictionaries), but may take one argument (just the claims) for backwards
-        compatability. The function must return a *string* which is the decode key
+        (dictionaries). The function must return a *string* which is the decode key
         in PEM format to verify the token.
         """
         self._decode_key_callback = callback

flask_jwt_extended/tokens.py

@@ -131,7 +131,7 @@ def decode_jwt(encoded_token, secret, algorithm, identity_claim_key,
 
     # Make sure that any custom claims we expect in the token are present
     if 'jti' not in data:
-        data['jti'] = _create_csrf_token()
+        data['jti'] = None
     if identity_claim_key not in data:
         raise JWTDecodeError("Missing claim: {}".format(identity_claim_key))
     if 'type' not in data:

tests/test_decode_tokens.py

@@ -73,7 +73,7 @@ def test_default_decode_token_values(app, default_access_token):
     with app.test_request_context():
         decoded = decode_token(token)
         assert decoded['type'] == 'access'
-        assert 'jti' in decoded
+        assert decoded['jti'] is None
         assert decoded['fresh'] is False