dan/jose
1
0
Fork 0
mirror of https://github.com/danbulant/jose synced 2026-05-25 13:01:49 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
541 commits 10 branches 160 tags 9.9 MiB
Commit graph

78 commits

Author SHA1 Message Date
Filip Skokan
c60953fe64 docs: generate keylike hint 2021-01-22 17:03:42 +01:00
Filip Skokan
3dcee918e8 docs: update readme.md 2020-12-29 10:11:20 +01:00
Filip Skokan
9369f73d6c docs: include new features 2020-12-17 12:27:35 +01:00
Filip Skokan
4e1ede4dbb docs: include new features 2020-12-16 18:43:35 +01:00
Filip Skokan
e4bf481ba1
docs: one more FAQ 2020-12-13 10:20:30 +01:00
Filip Skokan
98a68449a1 docs: update readme 2020-11-30 11:08:12 +01:00
Filip Skokan
6e1f089803 docs: update readme 2020-11-22 12:44:27 +01:00
Filip Skokan
7a8418eadd feat: added "KeyLike to JWK" module 
resolves #109
 2020-11-22 12:44:27 +01:00
Filip Skokan
357fe0b964 feat: Revised API, No dependencies, Browser Support, Promises 
BREAKING CHANGE: Revised, Promise-based API
BREAKING CHANGE: No dependencies
BREAKING CHANGE: Browser support (using [Web Cryptography API](https://www.w3.org/TR/WebCryptoAPI/))
BREAKING CHANGE: Support for verification using a remote JWKS endpoint
BREAKING CHANGE: Experimental Node.js libuv thread pool based runtime (non-blocking 🎉)
 2020-11-14 18:26:46 +01:00
Filip Skokan
b6916946ac chore: remove sponsorship campaign 2020-09-23 18:33:30 +02:00
Filip Skokan
87c1562537 docs: add dpop profiles link 2020-09-08 14:12:04 +02:00
Filip Skokan
98a9f45f0a docs: update jwt profiles table 2020-09-08 14:12:04 +02:00
Filip Skokan
fd69d7f509 refactor: move JWT profile specifics outside of generic JWT 
BREAKING CHANGE: the `JWT.verify` profile option was removed, use e.g.
`JWT.IdToken.verify` instead.

BREAKING CHANGE: removed the `maxAuthAge` `JWT.verify` option, this
option is now only present at the specific JWT profile APIs where the
`auth_time` property applies.

BREAKING CHANGE: removed the `nonce` `JWT.verify` option, this
option is now only present at the specific JWT profile APIs where the
`nonce` property applies.

BREAKING CHANGE: the `acr`, `amr`, `nonce` and `azp` claim value types
will only be checked when verifying a specific JWT profile using its
dedicated API.

BREAKING CHANGE: using the draft implementing APIs will emit a one-time
warning per process using `process.emitWarning`
 2020-09-08 14:12:04 +02:00
Filip Skokan
338c604f29 docs: update secp256k1 link to point to rfc8812 2020-08-18 15:26:11 +02:00
Filip Skokan
b50d69544b docs: update readme.md X25519 ECDH support caveat 2020-05-26 16:35:07 +02:00
Filip Skokan
7389bee2ff docs: update readme.md 2020-04-23 13:58:36 +02:00
Filip Skokan
c821bad8b6 docs: remove chacha plugin from the list 2020-04-22 10:40:07 +02:00
Filip Skokan
044caa5c33 docs: update readme.md 2020-04-16 12:16:18 +02:00
Filip Skokan
8c0a8a950e feat: update JWT Profile for OAuth 2.0 Access Tokens to latest draft 
BREAKING CHANGE: `at+JWT` JWT draft profile - in the draft's Section 2.2
the claims `iat` and `jti` are now REQUIRED (was RECOMMENDED).
 2020-04-16 12:09:08 +02:00
Filip Skokan
c1d503bdda chore: update readme 2020-03-19 11:08:29 +01:00
Filip Skokan
17fdaa95bf chore: update github issue templates 2 2020-03-19 11:05:11 +01:00
Filip Skokan
38369ea3d7 feat: add ECDH-ES with X25519 and X448 OKP keys 2020-02-13 16:26:09 +01:00
Filip Skokan
7477f0831b feat: add RSA-OAEP-384 and RSA-OAEP-512 JWE Key Management Algorithms 
These are registered for JOSE by W3C Web Cryptography Working Group in
[Web Cryptography API](https://www.w3.org/TR/WebCryptoAPI/)
 2020-02-13 15:24:37 +01:00
Filip Skokan
955171701f docs: update README.md 2020-01-29 16:45:54 +01:00
Filip Skokan
21e0ea5357 docs: update secp256k1 draft version link 2020-01-27 09:00:39 +01:00
Filip Skokan
33308234d2
docs: update README.md 2020-01-24 08:25:02 +01:00
Filip Skokan
3a6d17fdd1 feat: add opt-in support for Unsecured JWS algorithm "none" 2020-01-23 18:38:00 +01:00
Filip Skokan
b1864e319d feat: exposed shorthands for JWT verification profiles 2020-01-12 16:40:51 +01:00
Filip Skokan
7bb5c953a9 feat: add JWT validation profiles for Access Tokens and Logout Tokens 2019-12-31 14:20:52 +01:00
Filip Skokan
5128d3f7f6 docs: update docs/README.md and README.md 2019-12-17 17:22:59 +01:00
Filip Skokan
2bd3d3c9ba docs: fix X449 -> X448 2019-12-04 18:15:40 +01:00
Filip Skokan
5b27c97ac8 feat: two official jose plugins/extensions for those living on the edge 
https://github.com/panva/jose-chacha
https://github.com/panva/jose-x25519-ecdh

See the docs of each if you need them.

Closes #56
 2019-12-04 15:45:49 +01:00
Filip Skokan
d45f845c45 refactor: backwards compatibility for node < 12 2019-11-27 22:04:15 +01:00
Filip Skokan
c3eb8450b9 feat: return the CEK from JWE.decrypt operation with { complete: true } 2019-11-23 12:06:15 +01:00
Filip Skokan
3bf1f945a2 ci: enable electron 7 in CI 2019-10-24 19:27:15 +02:00
Filip Skokan
e2f3c9be63 docs: remove badges 2019-10-23 16:56:46 +02:00
Filip Skokan
c11a9d32de docs: update sponsor link 2019-10-18 12:15:43 +02:00
Filip Skokan
26f4cf25aa feat: rename package 2019-10-01 17:13:18 +02:00
Alexsey
88400695f0 docs: fix typo JWK.KeyStore -> JWKS.KeyStore (#46) 2019-09-26 17:15:44 +02:00
Filip Skokan
fae3e7943f style: upgrade standard linter and fix lint issues 2019-08-22 20:46:00 +02:00
Filip Skokan
67a8601b09 feat: added Node.js lts/dubnium support for runtime supported features 2019-08-22 20:40:02 +02:00
Filip Skokan
28d7cf8c78 feat: add RSA-OAEP-256 support (when a node version supports it) 
resolves #29
 2019-08-20 19:22:42 +02:00
Filip Skokan
d157d23b26 chore: update sponsor links 2019-08-19 20:50:26 +02:00
Filip Skokan
e7d0641956 docs: add official github badge 2019-08-19 20:49:10 +02:00
Filip Skokan
807e4ac78d chore: remove bugged badge 2019-08-16 09:58:49 +02:00
Filip Skokan
eeb4ab56a1 ci: disable travis, flip badge 2019-08-15 21:02:57 +02:00
Filip Skokan
e7ad82cbbc feat: electron v6.x support 2019-07-27 21:19:14 +02:00
Filip Skokan
6c98b61597 feat: validate JWTs according to a JWT profile - ID Token 
It is now possible to pass a profile to `JWT.verify` and have the JWT
validated according to it. This makes sure you pass all the right
options and that required claims are present, prohibited claims are
missing and that the right JWT typ is used.

More profiles will be added in the future.
 2019-07-23 14:50:16 +02:00
Filip Skokan
c77c7945ab chore: update sponsor links 2019-07-18 19:37:36 +03:00
Filip Skokan
211d7af5db feat: add secp256k1 EC Key curve and ES256K 
This is as per
- https://tools.ietf.org/html/draft-ietf-cose-webauthn-algorithms-01
- https://mailarchive.ietf.org/arch/msg/cose/91MouVA43DefbpQOB7l5daCEeIc
 2019-07-08 22:04:29 +02:00