From caaf2c38dc51209d7adc493029f416c61759b1b1 Mon Sep 17 00:00:00 2001
From: Giulio Malventi <giulio.malventi@gmail.com>
Date: Wed, 10 Aug 2022 11:01:50 +0200
Subject: [PATCH] refactor: consume some base64url decode errors (#436)

---
 src/jwe/flattened/decrypt.ts | 2 +-
 src/jws/flattened/verify.ts  | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/jwe/flattened/decrypt.ts b/src/jwe/flattened/decrypt.ts
index d20d997702..777e9e5756 100644
--- a/src/jwe/flattened/decrypt.ts
+++ b/src/jwe/flattened/decrypt.ts
@@ -118,8 +118,8 @@ export async function flattenedDecrypt(
 
   let parsedProt!: JWEHeaderParameters
   if (jwe.protected) {
-    const protectedHeader = base64url(jwe.protected)
     try {
+      const protectedHeader = base64url(jwe.protected)
       parsedProt = JSON.parse(decoder.decode(protectedHeader))
     } catch {
       throw new JWEInvalid('JWE Protected Header is invalid')
diff --git a/src/jws/flattened/verify.ts b/src/jws/flattened/verify.ts
index a59d019526..4d72f5825e 100644
--- a/src/jws/flattened/verify.ts
+++ b/src/jws/flattened/verify.ts
@@ -100,8 +100,8 @@ export async function flattenedVerify(
 
   let parsedProt: JWSHeaderParameters = {}
   if (jws.protected) {
-    const protectedHeader = base64url(jws.protected)
     try {
+      const protectedHeader = base64url(jws.protected)
       parsedProt = JSON.parse(decoder.decode(protectedHeader))
     } catch {
       throw new JWSInvalid('JWS Protected Header is invalid')