c00kiemon5ter
commented
1 year ago Note that RFC9068 is only a profile; ie, a flavour of a JWT access-token. It is not the only possible format and other profiles should be acceptable.
Closed rohe closed 1 year ago
c00kiemon5ter
commented
1 year ago Note that RFC9068 is only a profile; ie, a flavour of a JWT access-token. It is not the only possible format and other profiles should be acceptable.
rohe
commented
1 year ago Interesting comment about profiles. I do agree we should allow more the one format. Has to be configurable. Should be fairly simple to accomplish that.
The class JWTToken was just assuming the payload to be a dict not following any specific format. Changed the class to use RFC9068 as model for the payload.