-
http://bugs.python.org/issue26229
-
Decoded JWT token header looks like this:
``` javascript
{
"alg": "RS256",
"typ": "JWT",
"kid": null
}
```
Is there any reason to include this parameter at all if the value is not prov…
-
We've started discussing this topic in pull request #254, which introduces an HMAC signing of Webhook POST payloads using a shared secret as a way for the POST recipient to verify that the POST is com…
-
Using dropwizard-auth-jwt version 0.8.1-1 and dropwizard 0.8.1.
According to the form on http://jwt.io/ this here is a perfectly valid header:
```
eyJ0eXBlIjoiSldUIiwiYWxnIjoiSFM1MTIifQ==.eyJzdWJqZWN…
-
I was testing if your ECDSA JWT validation works correctly, but couldn't get it to work.
This is the example I used:
``` php
use Lcobucci\JWT\Builder;
use Lcobucci\JWT\Signer\Keychain; // just to ma…
-
You cannot use the `private_key.dsa_sign_asn1` output directly as signature. The JWS signature consists of the concatenated R and S integers. [RFC7515 appendix A.3.1](http://tools.ietf.org/html/rfc751…