Closed robotdan closed 4 months ago
ES512
It is possible that when using the ES512 algorithm to sign a JWT, the signature may not be valid.
1.48.0
>= 1.4.0. We introduced Elliptic Curve support in version 1.4.0.
>= 1.4.0
1.4.0
In testing, one out of every 1-2k signatures may be invalid.
All issues filed in this repository must abide by the FusionAuth community guidelines.
Add any other context about the problem here.
Internal:
Need to update to fusionauth-jwt version 5.3.2 from 5.2.4 to pick up this fix.
fusionauth-jwt
5.3.2
5.2.4
A JWT configured to be signed using the
ES512
algorithm may have an invalid signatureDescription
It is possible that when using the
ES512
algorithm to sign a JWT, the signature may not be valid.Observed versions
1.48.0
Affects versions
>= 1.4.0
. We introduced Elliptic Curve support in version1.4.0
.Steps to reproduce
In testing, one out of every 1-2k signatures may be invalid.
Community guidelines
All issues filed in this repository must abide by the FusionAuth community guidelines.
Additional context
Add any other context about the problem here.