make jwt payload parsing less strict

fern-api · Oct 9, 2024 · ce724eb · ce724eb
1 parent 922320e
commit ce724eb
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/packages/ui/docs-bundle/src/server/auth/FernJWT.ts b/packages/ui/docs-bundle/src/server/auth/FernJWT.ts
@@ -17,7 +17,8 @@ export async function verifyFernJWT(token: string, secret?: string, issuer?: str
     const verified = await jwtVerify(token, getJwtTokenSecret(secret), {
         issuer: issuer ?? "https://buildwithfern.com",
     });
-    return FernUserSchema.parse(verified.payload.fern);
+    // if the token is undefined, FernUser will be an empty object
+    return FernUserSchema.optional().parse(verified.payload.fern) ?? {};
 }
 
 export async function verifyFernJWTConfig(token: string, authConfig: AuthEdgeConfig | undefined): Promise<FernUser> {