515 RFC7523 apply headers while signing

lepture / authlib

The ultimate Python library in building OAuth, OpenID Connect clients and servers. JWS,JWE,JWK,JWA,JWT included.

https://authlib.org/

BSD 3-Clause "New" or "Revised" License

4.49k stars 448 forks source link

Closed dhallam closed 1 year ago

dhallam commented 1 year ago

DO NOT SEND ANY SECURITY FIX HERE. Please read "Security Reporting" section on README.

What kind of change does this PR introduce? (check at least one)

Fix for #515 with tests for RFC7523

[x] You consent that the copyright of your pull request source code belongs to Authlib's author.

lepture commented 1 year ago

Thanks.

MrwanBaghdad commented 1 year ago

@lepture When is the planned release of this fix? We're facing the same issue and are blocked from integrating authlib

lepture commented 1 year ago

@MrwanBaghdad I'll make a release in this weekend.

lepture commented 1 year ago

@MrwanBaghdad released.