-
- [x] Figure out the `audience` properly (especially in init of the authorization code flow) (https://github.com/DIRACGrid/diracx/pull/219)
- [x] Encrypt the state (https://github.com/DIRACGrid/dirac…
chaen updated
6 months ago
-
**Why have you chosen OAuth 1.0a instead of OAuth 2.0 ([RFC 6749](https://tools.ietf.org/html/rfc6749))?** OAuth 1.0a is a futureless specification.
Many specifications have been standardized based o…
-
### Auth Response Format
```js
{
header: {
typ: "JWT",
alg: "ES256K"
},
payload: {
jti: '0b42722b-e781-434a-805d-c09c476e86b9',
iat: 1482268876495,
exp: 148226887…
-
### 一. JWT(JSON Web Token)
> JSON Web Tokens are an open, industry standard RFC 7519 method for representing claims securely between two parties.
JWT 是一个基于 JSON 的开放标准(RFC 7519),用于创建访问 token。
…
-
Currently `JwtClaims` only support String objects when passing a map of additional claims. This limitation prevent applications that need more sophisticated JWT payloads to use the library.
Accordi…
-
Hi,
We'd like to accept multiple audiences, but `jwt.decode()` does not support an iterable. This is supported in [PyJWT](https://github.com/jpadilla/pyjwt/blob/master/jwt/api_jwt.py#L81), and the …
-
### Omschrijving
In paragraaf 4.2 staat het volgende:
“Protected resources MUST interpret access tokens using either JWT, token introspection, or a combination of the two.
The protected resour…
-
Quite a few JSON formats represent times as the number of seconds since 1970. It would be useful to be able to bind these to a java.time.Instant.
JSON-B offers [JsonbDateFormat.TIME_IN_MILLIS](http…
-
Thank you for this well designed and rational library. My IdP setup, PingID + Azure AD, issues access_tokens with the 'sub' claim. For example, I receive:
```json
{
"scope": [
"openid",
…
-
### What would you like to see added?
Hello, current API seems to support only JWS in JWS Compact Serialization format (pls check https://datatracker.ietf.org/doc/html/rfc7515#section-7.1), any supp…