dan/jose
1
0
Fork 0
mirror of https://github.com/danbulant/jose synced 2026-05-21 21:39:04 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
391 commits 10 branches 160 tags 9.9 MiB
Commit graph

47 commits

Author SHA1 Message Date
Filip Skokan
2b1fadfd42 docs: improve EmbeddedX5C 2020-05-19 08:51:29 +02:00
Filip Skokan
7c1cab196e feat: add opt-in objects to verify using embedded JWS Header public keys 2020-05-04 22:37:11 +02:00
Filip Skokan
8c0a8a950e feat: update JWT Profile for OAuth 2.0 Access Tokens to latest draft 
BREAKING CHANGE: `at+JWT` JWT draft profile - in the draft's Section 2.2
the claims `iat` and `jti` are now REQUIRED (was RECOMMENDED).
 2020-04-16 12:09:08 +02:00
Max Ivanov
75e331d28a
docs: fix typo 2020-04-04 13:12:40 +02:00
Filip Skokan
c1d503bdda chore: update readme 2020-03-19 11:08:29 +01:00
Filip Skokan
fc08426466 feat: add JWT.verify "typ" option for checking JWT Type Header parameter 2020-02-24 09:12:27 +01:00
Filip Skokan
3a7e49a782 docs: add note on decrypt 2020-02-20 10:26:24 +01:00
Filip Skokan
a9f6f71350 feat: keystore filtering by JWK Key thumbprint 2020-01-26 19:31:55 +01:00
Filip Skokan
3a6d17fdd1 feat: add opt-in support for Unsecured JWS algorithm "none" 2020-01-23 18:38:00 +01:00
Filip Skokan
a0c0c7ad70
feat: add JWTExpired error and JWTClaimInvalid claim and reason props 
Resolves #62
 2020-01-16 08:49:37 +01:00
Filip Skokan
b1864e319d feat: exposed shorthands for JWT verification profiles 2020-01-12 16:40:51 +01:00
Filip Skokan
3035b8a4f1 docs: fix flattened encrypt docs 2020-01-04 23:19:20 +01:00
Filip Skokan
7bb5c953a9 feat: add JWT validation profiles for Access Tokens and Logout Tokens 2019-12-31 14:20:52 +01:00
Filip Skokan
0ed5025de3 fix: skip validating iat is in the past when exp is present 
validating that iat is in the past is common sense but actually nowhere
defined, in most applications tokens will contain `exp` and for those
it seems requiring a few second leeway just to satisfy `iat` seems
inappropriate
 2019-12-17 20:40:23 +01:00
Filip Skokan
5128d3f7f6 docs: update docs/README.md and README.md 2019-12-17 17:22:59 +01:00
Filip Skokan
40cc05241e docs: add JWK.asKey DER public key type values 2019-12-10 14:01:12 +01:00
Filip Skokan
ce77388254 fix: default JWT.sign kid option value is false for HMAC signatures 2019-11-27 22:04:15 +01:00
Filip Skokan
5e1009a63e feat: allow JWK.asKey inputs for sign/verify/encrypt/decrypt operations 2019-11-27 22:04:14 +01:00
Filip Skokan
ea60338ca6 feat: allow JWKS.KeyStore .all and .get to filter for key curves 2019-11-26 16:01:49 +01:00
Filip Skokan
c3eb8450b9 feat: return the CEK from JWE.decrypt operation with { complete: true } 2019-11-23 12:06:15 +01:00
Filip Skokan
6bb66d4f0b feat: add JWS.verify encoding and parsing options 2019-11-05 20:09:34 +01:00
Filip Skokan
8ea968312e feat: expose crypto.KeyObject instances in supported runtimes 2019-11-03 17:27:44 +01:00
Filip Skokan
aaa4197877 docs: update sponsor link 2019-10-17 14:55:12 +02:00
Filip Skokan
26f4cf25aa feat: rename package 2019-10-01 17:13:18 +02:00
Filip Skokan
88d3170cc1 chore: update docs/README.md 2019-09-19 16:36:56 +02:00
Filip Skokan
81abdfabc5 fix: keystore.toJWKS(true) does not throw on public keys 
closes #42
 2019-09-16 14:46:38 +02:00
Filip Skokan
78398d3cdf feat: allow JWKS.asKeyStore to swallow errors 2019-08-24 22:03:37 +02:00
Filip Skokan
28d7cf8c78 feat: add RSA-OAEP-256 support (when a node version supports it) 
resolves #29
 2019-08-20 19:22:42 +02:00
Filip Skokan
6c98b61597 feat: validate JWTs according to a JWT profile - ID Token 
It is now possible to pass a profile to `JWT.verify` and have the JWT
validated according to it. This makes sure you pass all the right
options and that required claims are present, prohibited claims are
missing and that the right JWT typ is used.

More profiles will be added in the future.
 2019-07-23 14:50:16 +02:00
Filip Skokan
c77c7945ab chore: update sponsor links 2019-07-18 19:37:36 +03:00
Filip Skokan
8dac7a18fe docs: update docs, link to pending node issues 2019-07-06 20:00:53 +02:00
Filip Skokan
5b53cb0155 fix: limit calculation of missing RSA private components 
- this deprecates the use of `JWK.importKey` in favor of
`JWK.asKey`
- this deprecates the use of `JWKS.KeyStore.fromJWKS` in favor of
`JWKS.asKeyStore`

Both `JWK.importKey` and `JWKS.KeyStore.fromJWKS` could have resulted
in the process getting blocked when large bitsize RSA private keys
were missing their components and could also result in an endless
calculation loop when the private key's private exponent was outright
invalid or tampered with.

The new methods still allow to import private RSA keys with these
optimization key parameters missing but its disabled by default and one
should choose to enable it when working with keys from trusted sources

It is recommended not to use @panva/jose versions with this feature in
its original on-by-default form - v1.1.0 and v1.2.0 These will
 2019-06-20 23:32:13 +02:00
Filip Skokan
d4258beaf3 docs: update docs/README.md 
[skip ci]
 2019-05-26 15:44:20 +02:00
Filip Skokan
9d46c48fd5 feat: add support for JWK x5c, x5t and x5t#S256 2019-05-25 22:34:28 +02:00
Filip Skokan
6b7c92ab69 chore: add sponsor placement 
[skip ci]
 2019-05-23 07:38:21 +02:00
Filip Skokan
dafeced271 docs: fix readme typos 2019-04-23 14:30:51 +02:00
Filip Skokan
23b874cc20 feat: add JWK key_ops support, fix .algorithms() op returns 
BREAKING CHANGE: key.algorithms(op) un+wrapKey was split into correct
wrapKey/unwrapKey/deriveKey returns

BREAKING CHANGE: keystore.all and keystore.get `operation` option was
removed, `key_ops: string[]` supersedes it
 2019-04-23 14:30:51 +02:00
Filip Skokan
1159b0df4e feat: add key.toPEM() export function with optional encryption 2019-04-23 14:30:50 +02:00
Filip Skokan
2dbd3ed43a feat: add OKP Key and EdDSA sign/verify support 
BREAKING CHANGE: node.js minimal version is now v12.0.0 due to its
added EdDSA support (crypto.sign, crypto.verify and eddsa key objects)

resolves #12
 2019-04-23 14:30:49 +02:00
Filip Skokan
65db7e0ddd feat: add key.thumbprint always returning the JWK Thumbprint (RFC7638) 2019-04-04 11:04:06 +02:00
Filip Skokan
2dd7053a4a feat: add key.secret<boolean> and key.type<string> for completeness 2019-04-01 20:26:47 +02:00
Filip Skokan
3854431380 docs: cleanup docs/readme.md 
[skip ci]
 2019-03-27 15:12:21 +01:00
Filip Skokan
d349ba96d7 feat: keystore .all and .get operation option 2019-03-11 22:15:34 +01:00
Filip Skokan
b9908e8a1e docs: vertical bar to &vert; 2019-03-04 09:55:19 +01:00
Filip Skokan
1355016884 docs: fix typo 2019-03-02 10:43:43 +01:00
Filip Skokan
dba1abdaf3 feat: add JWT.sign/verify/decode 2019-02-27 22:38:30 +01:00
Filip Skokan
b656702276 docs: documentation, README, .github files, getting ready to publish 2019-02-26 23:46:58 +01:00