Ensure OAuth expiry is numeric and can be compared (#7191)

holoviz · Aug 27, 2024 · 4907011 · 4907011
1 parent 1f81c71
commit 4907011
Showing 1 changed file with 6 additions and 0 deletions.
diff --git a/panel/auth.py b/panel/auth.py
@@ -1026,6 +1026,12 @@ async def get_user(handler):
             except Exception:
                 pass
 
+            # Try casting expiry to float as it may be stored as bytes
+            try:
+                expiry = float(expiry)
+            except Exception:
+                expiry = None
+
             if expiry is None:
                 expiry = handler.get_secure_cookie('oauth_expiry', max_age_days=config.oauth_expiry)
                 if expiry is None: