luajwt
luajwt copied to clipboard
JSON Web Tokens for Lua
how to set maximum_expiration value `if exp == nil or exp - time() > maximum_expiration then return false, { exp = "exceeds maximum allowed expiration" } end`
I get "Algorithm not supported"
Some other libraries are/were vulnerable to the following: https://auth0.com/blog/critical-vulnerabilities-in-json-web-token-libraries/ Right now only HMAC algorithms are supported, but RSA based algorithms are on the horizon (see #4). I would suggest updating...
Adds basic support for RS256 signature verification. The 'key' should be passed as a string which contains public key in PEM format for example: > -----BEGIN PUBLIC KEY----- > MFwwDQYJKoZIhvcN....................7ogs8j2XThEFa1iPooa...
I recently used this library, but I needed the ability to decode a base64 encoded secret using the same rules for JWT's. I modified the script locally to accomplish this....
I am absolutely new on lua, and so far I am having problem getting the test script to run. I've installed lua and luarocks (I think..) and I did ```...