Skip to content

Support JWKs with no algorithm

Pre-release
Pre-release
Compare
Choose a tag to compare
@tanner0101 tanner0101 released this 29 Jul 18:06
4.0.0-rc.2
ee44e77
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
This patch was authored and released by @tanner0101.

Adds support for JSON Web Keys that do not specify an algorithm (#34).

JWKs are now stored directly in JWTSigners via the use(jwk:) method. When a request to verify a JWT is received that matches a JWK, both the JWT and the JWK's algorithm header is checked. A signer is then created on the fly to handle the request.

Assets 2
Loading