Tolerate ID token time errors

AzureAD · Jan 29, 2024 · 386ea2e · 386ea2e
1 parent ba3cec0
commit 386ea2e
Show file tree

Hide file tree

Showing 3 changed files with 13 additions and 4 deletions.
diff --git a/docs/index.rst b/docs/index.rst
@@ -148,3 +148,12 @@ New in MSAL Python 1.26
 
    .. automethod:: __init__
 
+
+Exceptions
+----------
+These are exceptions that MSAL Python may raise.
+You should not need to create them directly.
+You may want to catch them to provide a better error message to your end users.
+
+.. autoclass:: msal.IdTokenError
+
diff --git a/msal/__init__.py b/msal/__init__.py
@@ -31,7 +31,6 @@
     ConfidentialClientApplication,
     PublicClientApplication,
     )
-from .oauth2cli.oidc import Prompt
+from .oauth2cli.oidc import Prompt, IdTokenError
 from .token_cache import TokenCache, SerializableTokenCache
 from .auth_scheme import PopAuthScheme
-
diff --git a/tests/test_oidc.py b/tests/test_oidc.py
@@ -1,6 +1,7 @@
 from tests import unittest
 
-import oauth2cli
+import msal
+from msal import oauth2cli
 
 
 class TestIdToken(unittest.TestCase):
@@ -16,6 +17,6 @@ def test_id_token_should_tolerate_time_error(self):
             }, "id_token is decoded correctly, without raising exception")
 
     def test_id_token_should_error_out_on_client_id_error(self):
-        with self.assertRaises(oauth2cli.IdTokenError):
+        with self.assertRaises(msal.IdTokenError):
             oauth2cli.oidc.decode_id_token(self.EXPIRED_ID_TOKEN, client_id="not foo")