1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
|
Changes for Crypt-JWT distribution
0.037 2025-04-27
- fix #43 Fails to decode JWT from AWS Application Load Balancers
- fix #44 Allow decoding JWS with Base64 padding characters
- added tolerate_padding parameter for decode_jwt
0.036 2025-01-26
- fix #35 support aud claim as an array of strings
- added verify_typ - verify 'typ' header parameter
0.035 2023-10-03
- PR #37 Speed up decode_jwt
0.034 2021-11-28
- fix #32 ensure payload is serialized consistently (canonical)
0.033 2021-05-01
- fix #31 verify_xxx options do not work properly with decode_payload=0
0.032 2021-03-18
- fix #30 use lower uid/gid in release tarball
0.031 2021-01-10
- fix #29 Broken JWS support for ES256K "alg" type
0.030 2021-01-08
- fix #28 Using "kid_keys" with PS256 fails
0.029 2020-06-22
- verify_iss, verify_aud, verify_sub, verify_jti accept Scalar
0.028 2020-06-14
- switch to JSON from JSON::MaybeXS
0.027 2020-06-05
- fix #25 more intuitive exceptions
- support for ES256K
0.026 2019-02-02
- added support for EdDSA/ed25519 + ECDH/x25519
- fix #21 Potentially wrong IV in gcm_key_wrap
0.025 2019-09-29
- fix #19 Empty payload in JWS JSON token
- PR #18 _verify_claims: Refactor iss, sub, aud, and jti checks
0.024 2019-03-26
- fix #16 - INCOMPATIBLE CHANGES
* croak if verify_iss is specified and claim iss is missing
* croak if verify_aud is specified and claim aud is missing
* croak if verify_sub is specified and claim sub is missing
* croak if verify_jti is specified and claim jti is missing
- documentation fixes
0.023 2018-09-01
- SECURITY FIX: related to JWS signature validation
issue reported by Jeremy Choi (CVE later)
- (JWS) using a key from 'jwk' header requires to explicitly set
'key_from_jwk_header => 1' and works only for RSA/ECDSA public keys
- (JWS+JWE) when 'kid_keys' specified it croaks if header does not
contain 'kid' value or if 'kid' was not found in 'kid_keys'
0.022 2018-06-24
- fix AESGCM IV size as required by RFC (in encrypt_jwe_payload)
0.021 2018-03-15
- fix #13 off-by-one in exp verification
0.020 2018-02-02
- improved diagnostics
0.019 2018-01-26
- fix #11 kid keys
- fix #9 Support for Java lib that pads base64 encoding
0.018 2016-08-31
- doc fixes
- file perms fixes
0.017 2016-06-03
- doc fixes
0.016 2016-05-12
- require CryptX-0.034 (jws_no_key.t fails with older versions)
0.015 2016-05-12
- fix broken test jws_no_key.t
0.014 2016-05-04
- using Base64 en/decoding routines from CryptX also in tests
0.013 2016-05-03
- fix misused utf8:stuff
- fix 5.8.* compatibility
- using Base64 en/decoding routines from CryptX
0.012 2016-05-02
- JWS is now able to use the key from jwk header
- added support for Flattened JSON serialization (for both JWS and JWE)
0.011 2015-10-22
- switch to JSON::MaybeXS https://github.com/DCIT/perl-Crypt-JWT/pull/1
0.010 2015-07-07
- INCOMPATIBLE CHANGE: 'key' param of decode_jwt and encode_jwt:
PEM/DER/JWK-JSON key strings are not passed as scalars but
as a reference to scalar (see examples in documentation)
- decode_jwt: kid_keys now strictly checks kty (key type)
0.009 2015-07-04
- decode_jwt: verify_iat default changed to 0
- encode_jwt: auto_typ removed
- improved tests
0.008 2015-07-04
- decode_jwt: new parameter - ignore_claims
- fix related to nbf, iat, exp checks
0.007 2015-07-04
- decode_jwt: new parameter - kid_keys
0.006 2015-07-03
- after many changes first candidate for stable API
- incomplete tests
0.001 2015-06-30
- initial version
|
