luajwt

luajwt copied to clipboard

how to set maximum_expiration value `if exp == nil or exp - time() > maximum_expiration then return false, { exp = "exceeds maximum allowed expiration" } end`

osanben

can't work with lua5.3

1

judithzzh

I get "Algorithm not supported"

burton-scalefastr

Some other libraries are/were vulnerable to the following: https://auth0.com/blog/critical-vulnerabilities-in-json-web-token-libraries/ Right now only HMAC algorithms are supported, but RSA based algorithms are on the horizon (see #4). I would suggest updating...

EyMaddis

Add RS256 support

1

Adds basic support for RS256 signature verification. The 'key' should be passed as a string which contains public key in PEM format for example: > -----BEGIN PUBLIC KEY----- > MFwwDQYJKoZIhvcN....................7ogs8j2XThEFa1iPooa...

paweldomas

I recently used this library, but I needed the ability to decode a base64 encoded secret using the same rules for JWT's. I modified the script locally to accomplish this....

scardetto

I am absolutely new on lua, and so far I am having problem getting the test script to run. I've installed lua and luarocks (I think..) and I did ```...

soichih