jwt-cli icon indicating copy to clipboard operation
jwt-cli copied to clipboard

Published 20 hours ago verified publisher icon mike-engel

Feature Request: Calculate KID if missing using RFC7638

Open cydergoth opened this issue 4 years ago • 1 comments

Summary

KIDs may be calculated from the key information using RFC7638 https://datatracker.ietf.org/doc/html/rfc7638

Steps to reproduce

Sign a JWT without specifying the KID

Expected behavior

KID is automatically calculated and injected

cydergoth avatar Oct 14 '21 16:10 cydergoth

Since this library currently does not support the JWK format, an alternative would be to calculate the kid from an X.509 certificate as suggested by the ETSI JAdES specification:

The content of kid header parameter shall be the base64 (IETF RFC 4648) encoding of one DER-encoded instance of type IssuerSerial type defined in IETF RFC 5035.

codedust avatar Oct 20 '21 22:10 codedust