fix: never sign empty set of fields

dhensby / node-http-message-signatures

A node package for signing and verifying HTTP messages as per RFC 9421 - HTTP Message Signatures specification

ISC License

13 stars 8 forks source link

fix: never sign empty set of fields #161

Closed dhensby closed 8 months ago

dhensby commented 10 months ago

The specification is clear that if no headers are listed that the signature should be calculated from the (created) value rather than an empty string. This change fixes that.

NB: in versions <= 10, the Date header is used - if that behaviour is desired, one should specify it explicitly

github-actions[bot] commented 8 months ago

:tada: This PR is included in version 1.0.4 :tada:

The release is available on:

npm package (@latest dist-tag)
GitHub release

Your semantic-release bot :package::rocket: