From ed67164da21ff9a7e6c5d74f57203839c00bc8c1 Mon Sep 17 00:00:00 2001
From: Nightriff <66378309+Nightriff@users.noreply.github.com>
Date: Mon, 23 Oct 2023 03:43:55 -0700
Subject: [PATCH] Require `https`, expect Roblox issuer to be secure

---
 lib/jwt_http_client.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/lib/jwt_http_client.py b/lib/jwt_http_client.py
index 1cf42b4..5b59049 100644
--- a/lib/jwt_http_client.py
+++ b/lib/jwt_http_client.py
@@ -49,7 +49,7 @@ async def get_json(self, url: str):
         :return: The JSON data as a dictionary.
         :raise JWTHTTPFetchError: If there's a problem fetching or decoding the data.
         """
-        if not (url.startswith("https://") or url.startswith("http://")):
+        if not url.startswith("https://"):
             raise JWTHTTPFetchError("Unsupported protocol in 'iss'")
 
         try: