Anthony Deroche
Anthony Deroche
Hello, it would be an interesting feature. It is not yet possible to do it. I have no time to work on this for now but any contribution is more...
Hello, The token should be correctly decoded if you transform the public exponent "n" of your jwks into a valid PEM RSA public key. To validate signature, I'm using libjwt...
Hello, yes I received your email. I will take a look at this and I will keep you posted.
I reproduced the bug, and it seems to be a bug of the underlying lib I'm using to decode tokens. I opened an issue on the repo of the lib....
The bug has been fixed, you should be able to validate tokens using my module using a PEM public key. Be careful to use libjwt v1.7.3, I updated the README...
I just saw your messages, I'm not working on this for now, you can submit a pull request!
Hello, The module is not commercially supported. Anyone is free to fork the repository and proposes a MR. Regards Anthony
Hello, Yes it would be a great improvement. As I have no time to spend for this, some help would be great. Anthony
The AuthJWTExpDelay and AuthJWTIss are only used to issue tokens. However, it is a good point. If there is a configured issuer and expiration delay, it's important to validate them...
I do not know how exactly the ldap module works. You could have 2 methods: 1. I assume the require-group directive needs to access the current user. It might be...