jose

Features

• add JWT validation profiles for Access Tokens and Logout Tokens (7bb5c95)

Bug Fixes

• skip validating iat is in the past when exp is present (0ed5025)

Bug Fixes

• properly fail to import unsupported openssh formatted keys (bee5744)

Features

• importing a certificate populates x5c and x5t thumbprints (25a7a71), closes #59

Bug Fixes

• handle Unencoded Payload (b64:false) with arbitrary buffer payloads (daabedc), closes #57

Bug Fixes

• allow PBES2 for the correct JWK use values (f0d7194)

Features

• two official jose plugins/extensions for those living on the edge, closes #56

https://github.com/panva/jose-chacha
https://github.com/panva/jose-x25519-ecdh

See the docs of each if you need them.

Bug Fixes

• typescript: export Key Input types (0277fcd)

Bug Fixes

• default JWT.sign kid option value is false for HMAC signatures (ce77388)

Features

• allow JWK.asKey inputs for sign/verify/encrypt/decrypt operations (5e1009a)

Features

• allow JWKS.KeyStore .all and .get to filter for key curves (ea60338)

Features

• return the CEK from JWE.decrypt operation with { complete: true } (c3eb845)

Features

• add JWS.verify encoding and parsing options (6bb66d4)

Features

• expose crypto.KeyObject instances in supported runtimes (8ea9683)

Bug Fixes

• only use secp256k1 keys for signing/verification (9588223)

Bug Fixes

• throw proper error when runtime doesn't support OKP (0a16efb), closes #48

Package was renamed from @panva/jose to just jose. No further updates will be made under the @panva/jose package name.

• rename package (26f4cf2)

Bug Fixes

• keystore.toJWKS(true) does not throw on public keys (81abdfa), closes #42

refactored and linted TypeScript definitions

Features

• allow JWKS.asKeyStore to swallow errors (78398d3)

Features

• added Node.js lts/dubnium support for runtime supported features (67a8601)