azure-activedirectory-identitymodel-extensions-for-dotnet icon indicating copy to clipboard operation
azure-activedirectory-identitymodel-extensions-for-dotnet copied to clipboard

Published 20 hours ago verified publisher icon AzureAD

Support EdDSA signature validations

Open wparad opened this issue 1 year ago • 1 comments

Today: EdDSA signed JWTs

Future: The goal is for this list: https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/blob/dev/src/System.IdentityModel.Tokens.Jwt/JwtSecurityTokenHandler.cs#L62 to support an EdDSA signature strategy so that dependencies of this library understand how to handle EdDSA signed JWTs.

In this case the issue is sourced from Microsoft.AspNetCore.Authorization.Authorize attribute which attempts to use System.IdentityModel.Tokens.Jwt through the package Microsoft.AspNetCore.Authentication.JwtBearer (this repo) package for verifying the incoming tokens.

Related:

  • #1970
  • https://github.com/Authress/authress-sdk.cs/issues/20

If a PR is opened to add this support, will it be accepted and helped to be shepherded to completion or will a PR of this nature lay on apathetic ears?

wparad avatar Dec 15 '23 10:12 wparad

@jennyf19 we should combine all the EC/ECDSA issues into one.

brentschmaltz avatar Mar 30 '24 18:03 brentschmaltz