Rename exceptions that don't have Error in their name

...but keep the old names around as deprecated aliases for backward
compatibility.

Author: wbolster-eiq

README.md

@@ -122,14 +122,14 @@ jwt.encode({'exp': datetime.utcnow()}, 'secret')
 ```
 
 Expiration time is automatically verified in `jwt.decode()` and raises
-`jwt.ExpiredSignature` if the expiration time is in the past:
+`jwt.ExpiredSignatureError` if the expiration time is in the past:
 
 ```python
 import jwt
 
 try:
     jwt.decode('JWT_STRING', 'secret')
-except jwt.ExpiredSignature:
+except jwt.ExpiredSignatureError:
     # Signature has expired
 ```
 

jwt/__init__.py

@@ -28,8 +28,21 @@
 
 __version__ = '0.4.0'
 __all__ = [
-    'encode', 'decode', 'InvalidTokenError', 'DecodeError',
-    'ExpiredSignature', 'InvalidAudience', 'InvalidIssuer'
+    # Functions
+    'encode',
+    'decode',
+
+    # Exceptions
+    'InvalidTokenError',
+    'DecodeError',
+    'ExpiredSignatureError',
+    'InvalidAudienceError',
+    'InvalidIssuerError'
+
+    # Deprecated aliases
+    'ExpiredSignature',
+    'InvalidAudience',
+    'InvalidIssuer',
 ]
 
 
@@ -41,18 +54,23 @@ class DecodeError(InvalidTokenError):
     pass
 
 
-class ExpiredSignature(InvalidTokenError):
+class ExpiredSignatureError(InvalidTokenError):
     pass
 
 
-class InvalidAudience(InvalidTokenError):
+class InvalidAudienceError(InvalidTokenError):
     pass
 
 
-class InvalidIssuer(InvalidTokenError):
+class InvalidIssuerError(InvalidTokenError):
     pass
 
 
+# Compatibility aliases (deprecated)
+ExpiredSignature = ExpiredSignatureError
+InvalidAudience = InvalidAudienceError
+InvalidIssuer = InvalidIssuerError
+
 signing_methods = {
     'none': lambda msg, key: b'',
     'HS256': lambda msg, key: hmac.new(key, msg, hashlib.sha256).digest(),
@@ -399,13 +417,13 @@ def verify_signature(payload, signing_input, header, signature, key='',
         utc_timestamp = timegm(datetime.utcnow().utctimetuple())
 
         if payload['nbf'] > (utc_timestamp + leeway):
-            raise ExpiredSignature('Signature not yet valid')
+            raise ExpiredSignatureError('Signature not yet valid')
 
     if 'exp' in payload and verify_expiration:
         utc_timestamp = timegm(datetime.utcnow().utctimetuple())
 
         if payload['exp'] < (utc_timestamp - leeway):
-            raise ExpiredSignature('Signature has expired')
+            raise ExpiredSignatureError('Signature has expired')
 
     if audience is not None:
         if isinstance(audience, list):
@@ -414,8 +432,8 @@ def verify_signature(payload, signing_input, header, signature, key='',
             audiences = [audience]
 
         if payload.get('aud') not in audiences:
-            raise InvalidAudience('Invalid audience')
+            raise InvalidAudienceError('Invalid audience')
 
     if issuer is not None:
         if payload.get('iss') != issuer:
-            raise InvalidIssuer('Invalid issuer')
+            raise InvalidIssuerError('Invalid issuer')

tests/test_jwt.py

@@ -357,13 +357,13 @@ def test_decode_with_expiration(self):
         jwt_message = jwt.encode(self.payload, secret)
 
         self.assertRaises(
-            jwt.ExpiredSignature,
+            jwt.ExpiredSignatureError,
             lambda: jwt.decode(jwt_message, secret))
 
         decoded_payload, signing, header, signature = jwt.load(jwt_message)
 
         self.assertRaises(
-            jwt.ExpiredSignature,
+            jwt.ExpiredSignatureError,
             lambda: jwt.verify_signature(
                 decoded_payload, signing, header, signature, secret))
 
@@ -373,13 +373,13 @@ def test_decode_with_notbefore(self):
         jwt_message = jwt.encode(self.payload, secret)
 
         self.assertRaises(
-            jwt.ExpiredSignature,
+            jwt.ExpiredSignatureError,
             lambda: jwt.decode(jwt_message, secret))
 
         decoded_payload, signing, header, signature = jwt.load(jwt_message)
 
         self.assertRaises(
-            jwt.ExpiredSignature,
+            jwt.ExpiredSignatureError,
             lambda: jwt.verify_signature(
                 decoded_payload, signing, header, signature, secret))
 
@@ -422,11 +422,11 @@ def test_decode_with_expiration_with_leeway(self):
         # With 1 seconds, should fail
         for leeway in (1, timedelta(seconds=1)):
             self.assertRaises(
-                jwt.ExpiredSignature,
+                jwt.ExpiredSignatureError,
                 lambda: jwt.decode(jwt_message, secret, leeway=leeway))
 
             self.assertRaises(
-                jwt.ExpiredSignature,
+                jwt.ExpiredSignatureError,
                 lambda: jwt.verify_signature(decoded_payload, signing,
                                              header, signature, secret,
                                              leeway=leeway))
@@ -446,11 +446,11 @@ def test_decode_with_notbefore_with_leeway(self):
 
         # With 1 seconds, should fail
         self.assertRaises(
-            jwt.ExpiredSignature,
+            jwt.ExpiredSignatureError,
             lambda: jwt.decode(jwt_message, secret, leeway=1))
 
         self.assertRaises(
-            jwt.ExpiredSignature,
+            jwt.ExpiredSignatureError,
             lambda: jwt.verify_signature(decoded_payload, signing,
                                          header, signature, secret, leeway=1))
 
@@ -737,7 +737,7 @@ def test_raise_exception_invalid_audience(self):
         token = jwt.encode(payload, 'secret')
 
         self.assertRaises(
-            jwt.InvalidAudience,
+            jwt.InvalidAudienceError,
             lambda: jwt.decode(token, 'secret', audience=audience))
 
     def test_raise_exception_invalid_audience_in_array(self):
@@ -751,7 +751,7 @@ def test_raise_exception_invalid_audience_in_array(self):
         token = jwt.encode(payload, 'secret')
 
         self.assertRaises(
-            jwt.InvalidAudience,
+            jwt.InvalidAudienceError,
             lambda: jwt.decode(token, 'secret', audience=audience))
 
     def test_raise_exception_token_without_audience(self):
@@ -764,7 +764,7 @@ def test_raise_exception_token_without_audience(self):
         token = jwt.encode(payload, 'secret')
 
         self.assertRaises(
-            jwt.InvalidAudience,
+            jwt.InvalidAudienceError,
             lambda: jwt.decode(token, 'secret', audience=audience))
 
     def test_raise_exception_token_without_audience_in_array(self):
@@ -777,7 +777,7 @@ def test_raise_exception_token_without_audience_in_array(self):
         token = jwt.encode(payload, 'secret')
 
         self.assertRaises(
-            jwt.InvalidAudience,
+            jwt.InvalidAudienceError,
             lambda: jwt.decode(token, 'secret', audience=audience))
 
     def test_check_issuer(self):
@@ -804,7 +804,7 @@ def test_raise_exception_invalid_issuer(self):
         token = jwt.encode(payload, 'secret')
 
         self.assertRaises(
-            jwt.InvalidIssuer,
+            jwt.InvalidIssuerError,
             lambda: jwt.decode(token, 'secret', issuer=issuer))
 
     def test_raise_exception_token_without_issuer(self):
@@ -817,7 +817,7 @@ def test_raise_exception_token_without_issuer(self):
         token = jwt.encode(payload, 'secret')
 
         self.assertRaises(
-            jwt.InvalidIssuer,
+            jwt.InvalidIssuerError,
             lambda: jwt.decode(token, 'secret', issuer=issuer))
 
     def test_custom_json_encoder(self):