fusionauth-jwt

fusionauth-jwt copied to clipboard

Add support for EDDSA

12

Add support EDDSA https://tools.ietf.org/html/draft-josefsson-eddsa-ed25519-03#section-4 https://en.wikipedia.org/wiki/EdDSA ### Related - https://github.com/FusionAuth/fusionauth-jwt/issues/32

robotdan

Upgrade to Java >= 14?

3

How many people would I break if I moved this to Java >= 14? Feel free to comment on this thread. ### Related - https://github.com/FusionAuth/fusionauth-jwt/issues/13#issuecomment-1168946774

robotdan

Add x5c and verify public key against x5c when extracting a public key from a JSON Web Key

6

### Issue Inbound thread from Nightwatch Cybersecurity Research > Nightwatch Cybersecurity Research > It looks like the "x5c" field is not being used, while the RFC > dictates that "x5c"...

robotdan

Addresses issues raised here: https://github.com/FusionAuth/fusionauth-jwt/issues/42

mooreds

Android 7 - Base64 NoClassDefFoundError

1

I guess that is an issue with the Java version not being as modern as it should but when I try to use it in my Android App (for Android...

TobiasReich

Had a friend review the repo and they had some suggestions on improving the README to be friendlier new folks. Suggestions in this issue: https://github.com/EddieHubCommunity/support/issues/681

mooreds

Support custom Json deserializer/serializer

12

For example Gson instead Jackson. Move json to another maven module and allow to add it as separate jar.

volyx

"The JWT could not be de-serialized."

4

This is for a kotlin-based Android project. I'm calling `Mapper.deserialize(bytes, JSONWebKey::class.java)` and it works completely fine on my dev build from android studio, but in a prod release it throws...

salami

hi, please tell me are these objects thread-safe or not. * "Signer" which is instantiated through "HMACSigner.newSHA512Signer" * "Verifier" which is instantiated through "HMACVerifier.newVerifier" * "JWTDecoder" which is instantiated using...

MetaiR

Bumps org.bouncycastle:bc-fips from 1.0.2.4 to 1.0.2.5. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a...

dependabot[bot]