-
The header informations can be separated in protected and not protected parts. Defined in [RFC7515 Section 3.2](https://tools.ietf.org/html/rfc7515#section-3.2).
-
Introduce standalone JOSE support module with JWT/JWK/etc.
Support for JWK encoding/decoding can also be used afterwards in providers other than WebCrypto.
Full list of RFCs:
- JWS: https://datat…
-
There seem to be several mechanisms for issuer key validation (section 3.5).
Two mechanisms define fetching of keys (issuer metadata, DID), and one can be embedded or referenced (x509).
Would it…
-
### Description
The x5t value generated by the APIM resident key manager in the JWT token due to an additional hexify step[1]. This hexify process is not in line with the specification[2].
Please …
-
**Section Number** 3.71.4.2.2.1
**Issue**
It is unclear whether JWT shall be or may be signed.
The profile says _JWT token shall be signed as specified in JSON Web Signature [RFC7515]_, which wou…
-
[RFC7515](https://www.rfc-editor.org/rfc/rfc7515) section 7.1 specifies a compact (b64 encoded) serialization. I think this could probably be handled with`Jws::{from_compact, to_compact}` functions
-
### Documentation related to component
What's the difference between `JsonWebTokenHandler` vs `JwtSecurityTokenHandler`
From the code comments:
`JsonWebTokenHandler`:
```
A designed for …
-
### What would you like to see added?
Hello, current API seems to support only JWS in JWS Compact Serialization format (pls check https://datatracker.ietf.org/doc/html/rfc7515#section-7.1), any supp…
-
**Is your feature request related to a problem? Please describe.**
The `kid` header seems to be required in the current implementation, although it's an optional item as per https://tools.ietf.org/…
-
As defined in [RFC7515, section 4.1](https://www.rfc-editor.org/rfc/rfc7515#section-4.1), tokens can include several more header claims than just `typ` and `alg` as allowed from this.
I have tried …
73VW updated
2 months ago