Data

Tools

Indexes

Applications

Experiments

Open Source Science

Recent Releases of https://github.com/awslabs/aws-jwt-verify

https://github.com/awslabs/aws-jwt-verify - v5.1.0

What's Changed

  • Actually mention the right supported algorithms in our docs by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/185
  • Mention Node 16 in docs by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/186
  • chore: fix algorithm list in docs by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/187
  • Compile regexp once and optimize CUP regex by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/188
  • Fixed mention of algorithms in docs by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/189
  • fix: Fetcher interface data type by @hakanson in https://github.com/awslabs/aws-jwt-verify/pull/191
  • Bump vite from 5.3.6 to 5.4.12 in /tests/vite-app by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/192
  • Bump aws-cdk-lib from 2.173.4 to 2.177.0 in /tests/cognito by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/194
  • chore: upgrade ESLint by @hakanson in https://github.com/awslabs/aws-jwt-verify/pull/195
  • chore: remove list of supported algs from package description as it got stale by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/193
  • docs: update to at least Node.js v18 by @hakanson in https://github.com/awslabs/aws-jwt-verify/pull/197
  • chore: update ALB to recommended TLS policy by @hakanson in https://github.com/awslabs/aws-jwt-verify/pull/198
  • Bump aws-cdk-lib from 2.178.1 to 2.186.0 in /tests/cognito by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/206
  • Bump esbuild and vite in /tests/vite-app by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/205
  • Bump aws-cdk from 2.178.1 to 2.178.2 in /tests/cognito by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/202
  • Bump vite from 6.2.3 to 6.2.5 in /tests/vite-app by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/209
  • Bump vite from 6.2.5 to 6.2.6 in /tests/vite-app by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/210
  • Bump aws-cdk-lib from 2.186.0 to 2.189.0 in /tests/cognito by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/211
  • Bump aws-cdk-lib from 2.189.0 to 2.189.1 in /tests/cognito by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/212
  • Bump vite from 6.2.6 to 6.2.7 in /tests/vite-app by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/214
  • Alb jwt verifier by @NicolasViaud in https://github.com/awslabs/aws-jwt-verify/pull/190
  • chore: version bump for npm release by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/216

New Contributors

  • @NicolasViaud made their first contribution in https://github.com/awslabs/aws-jwt-verify/pull/190

Full Changelog: https://github.com/awslabs/aws-jwt-verify/compare/v5.0.0...v5.1.0

- TypeScript
Published by ottokruse about 1 year ago

https://github.com/awslabs/aws-jwt-verify - v5.0.0

Notable new features in v5.0.0:

  • Support for ECDSA and EdDSA algorithms:
    • ES256
    • ES384
    • ES512
    • Ed25519
    • Ed448
  • Allow padding characters (even though non-standard) so e.g. AWS ALB JWTs can be verified with this library (however work is still underway to make that easier still, see #176 )
  • The default response timeout of the JWKS fetcher was increased from 1500 ms. to 3000 ms. because multiple users reported the previous 1500 ms. being too low--they were hitting timeouts too often. We believe the 3000 ms. is a better, more reasonable, default value.

Breaking changes

This release includes breaking changes, hence moving to major version 5.0.0:

  • Dropped support for Node.js 14, now 16 is the minimum.
  • The fetchJson interface was changed and renamed to fetch. Thus the JsonFetcher was renamed to Fetcher, and corresponding changes were made in the SimpleJwksCache see #167. So, this affects users who were using the SimpleJsonFetcher, potentially to increase the response timeout (maybe that's no longer needed now, as we raised the default value from 1500 ms. to 3000 ms.).
  • It is now allowed to use an explicit null as issuer when creating the verifier, to cater for issuers that create JWTs without iss field (which is non-standard): see #183 . Previously, you couldn't create a verifier for issuer null and JWTs without iss field would always throw JwtInvalidIssuerError. This change likely is breaking to no-one, but technically this is a breaking change. So if your code was explicitly using JwtInvalidIssuerError (e.g. because you imported it), check if it still TS-compiles and works.
  • We renamed the JwtRsaVerifier to JwtVerifier as it handles ECDSA and EdDSA now too but created a top level (immediately deprecated) alias to JwtVerifier so if you do import { JwtRsaVerifier } from "aws-jwt-verifier" that still works. This will break though: import { JwtRsaVerifier } from "aws-jwt-verifier/jwt-rsa" and should become import { JwtVerifier } from "aws-jwt-verifier/jwt-verifier" (if for some reason you were importing like that and not from top-level).

What's Changed

  • Bump vite from 4.5.2 to 4.5.3 in /tests/vite-app by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/157
  • Bump ws from 7.5.7 to 7.5.10 in /tests/cognito by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/161
  • Bump braces from 3.0.2 to 3.0.3 by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/160
  • Bump braces from 3.0.2 to 3.0.3 in /tests/vite-app by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/162
  • Bump braces from 3.0.2 to 3.0.3 in /tests/cognito by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/163
  • Support for ES256/ES384/ES512 by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/164
  • Bump webpack from 5.88.2 to 5.94.0 in /tests/vite-app by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/172
  • Refactor fetching to support fetching non-JSON JWKS by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/167
  • Bump vite from 5.3.2 to 5.3.6 in /tests/vite-app by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/174
  • Bump rollup from 4.18.0 to 4.22.4 in /tests/vite-app by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/175
  • fix/ecdsa verification to use raw signature format per jwa spec by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/179
  • Add (very) minimal support for AWS ALB by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/180
  • fix: actually use custom error object by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/182
  • Feat/eddsa support by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/181
  • feat: Allow issuer null by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/183
  • v5.0.0 by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/184

Full Changelog: https://github.com/awslabs/aws-jwt-verify/compare/v4.0.1...v5.0.0

- TypeScript
Published by ottokruse over 1 year ago

https://github.com/awslabs/aws-jwt-verify - v4.0.1

What's Changed

  • Bump vite from 2.9.13 to 2.9.16 in /tests/vite-app by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/124
  • Bump fast-xml-parser and @aws-sdk/client-cognito-identity-provider in /tests/cognito by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/125
  • Bump tough-cookie from 4.0.0 to 4.1.3 in /tests/cognito by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/129
  • Bump fast-xml-parser and @aws-sdk/client-cognito-identity-provider in /tests/cognito by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/130
  • Bump word-wrap from 1.2.3 to 1.2.4 by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/131
  • Bump word-wrap from 1.2.3 to 1.2.4 in /tests/cognito by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/132
  • update cypress (v9 to v12), vite (v2 to v4) by @hakanson in https://github.com/awslabs/aws-jwt-verify/pull/134
  • fix: pin build to npm v9 by @hakanson in https://github.com/awslabs/aws-jwt-verify/pull/143
  • Bump postcss from 8.4.27 to 8.4.31 in /tests/vite-app by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/139
  • Bump @cypress/request and cypress in /tests/vite-app by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/144
  • Bump @babel/traverse from 7.15.4 to 7.23.2 in /tests/cognito by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/140
  • Bump @babel/traverse from 7.22.10 to 7.23.2 in /tests/vite-app by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/142
  • Bump @babel/traverse from 7.20.12 to 7.23.2 by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/141
  • Add sub claim to JWT standard fields by @kaira in https://github.com/awslabs/aws-jwt-verify/pull/148
  • Bump vite from 4.4.9 to 4.4.12 in /tests/vite-app by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/150
  • Bump vite from 4.4.12 to 4.5.2 in /tests/vite-app by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/153
  • Fix MSB 1 leading to negative modulus in bun by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/155
  • Bump to v4.0.1 for npm release by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/156

New Contributors

  • @kaira made their first contribution in https://github.com/awslabs/aws-jwt-verify/pull/148

Full Changelog: https://github.com/awslabs/aws-jwt-verify/compare/v4.0.0...v4.0.1

- TypeScript
Published by ottokruse over 2 years ago

https://github.com/awslabs/aws-jwt-verify - v4.0.0

What's Changed

  • Bump webpack from 5.70.0 to 5.76.1 in /tests/vite-app by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/116
  • Document decomposeJwt by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/117
  • v4.0.0 by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/118

NOTE: #117 constitutes a breaking change, hence we created new major version v4.0.0, but you will only be impacted by this change, if you were doing this:

import { decomposeJwt } from "aws-jwt-verify/jwt"

That method has been renamed (to make it more clear) and must now be imported like so:

import { decomposeUnverifiedJwt } from "aws-jwt-verify/jwt";

Happy coding!

Full Changelog: https://github.com/awslabs/aws-jwt-verify/compare/v3.4.0...v4.0.0

- TypeScript
Published by ottokruse about 3 years ago

https://github.com/awslabs/aws-jwt-verify - v3.4.0

What's Changed

  • Remove references to window by @Emilcrafter in https://github.com/awslabs/aws-jwt-verify/pull/110
  • Version sub package by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/112
  • v3.4.0 by @hakanson in https://github.com/awslabs/aws-jwt-verify/pull/113

New Contributors

  • @Emilcrafter made their first contribution in https://github.com/awslabs/aws-jwt-verify/pull/110

Full Changelog: https://github.com/awslabs/aws-jwt-verify/compare/v3.3.0...v3.4.0

- TypeScript
Published by hakanson over 3 years ago

https://github.com/awslabs/aws-jwt-verify - v3.3.0

What's Changed

  • Update dev dependencies by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/94
  • Bump loader-utils from 2.0.2 to 2.0.3 in /tests/vite-app by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/96
  • Bump loader-utils from 2.0.3 to 2.0.4 in /tests/vite-app by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/97
  • Bump json5 from 2.2.0 to 2.2.3 by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/101
  • Bump json5 from 2.2.0 to 2.2.3 in /tests/cognito by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/103
  • Bump json5 from 2.2.1 to 2.2.3 in /tests/vite-app by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/102
  • Support TS module resolution NodeNext by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/104
  • Fix some small code smells by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/105
  • v3.3.0 by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/106

Full Changelog: https://github.com/awslabs/aws-jwt-verify/compare/v3.2.0...v3.3.0

- TypeScript
Published by ottokruse over 3 years ago

https://github.com/awslabs/aws-jwt-verify - v3.2.0

What's Changed

  • Updated CDK version by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/76
  • Document customization of HTTP options such as response timeout by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/77
  • Bump terser from 5.12.1 to 5.14.2 in /tests/vite-app by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/79
  • Minor typo fix in README.md (#78) by @dakshamdev in https://github.com/awslabs/aws-jwt-verify/pull/81
  • Bump vite from 2.8.6 to 2.9.13 in /tests/vite-app by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/85
  • Update CloudFront Lambda@Edge in Usage Examples. by @tomiyan in https://github.com/awslabs/aws-jwt-verify/pull/86
  • Update README.md - fix dead link by @jirihofman in https://github.com/awslabs/aws-jwt-verify/pull/91
  • Use alg from JWT header if not specified on JWK by @hakanson in https://github.com/awslabs/aws-jwt-verify/pull/80
  • 3.2.0 by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/92

New Contributors

  • @dakshamdev made their first contribution in https://github.com/awslabs/aws-jwt-verify/pull/81
  • @tomiyan made their first contribution in https://github.com/awslabs/aws-jwt-verify/pull/86
  • @jirihofman made their first contribution in https://github.com/awslabs/aws-jwt-verify/pull/91

Full Changelog: https://github.com/awslabs/aws-jwt-verify/compare/v3.1.0...v3.2.0

- TypeScript
Published by ottokruse over 3 years ago

https://github.com/awslabs/aws-jwt-verify - v3.1.0

What's Changed

  • Sync README.md with implementation: group --> groups by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/65
  • Only verify for the JWK at hand, that it is a JWK intended for RSA signatures by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/70
  • Documented how to use the generic RSA verifier with Cognito by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/74
  • Release v3.1.0 by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/75

Full Changelog: https://github.com/awslabs/aws-jwt-verify/compare/v3.0.0...v3.1.0

- TypeScript
Published by ottokruse about 4 years ago

https://github.com/awslabs/aws-jwt-verify - v3.0.0

What's Changed

  • Dependency update by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/58
  • add web compatibility by @hakanson in https://github.com/awslabs/aws-jwt-verify/pull/60
  • Bump minimist from 1.2.5 to 1.2.6 in /tests/cognito by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/63
  • Bump minimist from 1.2.5 to 1.2.6 by @dependabot in https://github.com/awslabs/aws-jwt-verify/pull/62
  • v3.0.0 by @hakanson in https://github.com/awslabs/aws-jwt-verify/pull/64

New Contributors

  • @hakanson made their first contribution in https://github.com/awslabs/aws-jwt-verify/pull/60
  • @dependabot made their first contribution in https://github.com/awslabs/aws-jwt-verify/pull/63

Full Changelog: https://github.com/awslabs/aws-jwt-verify/compare/v2.1.3...v3.0.0

- TypeScript
Published by hakanson about 4 years ago

https://github.com/awslabs/aws-jwt-verify - v2.1.3

What's Changed

  • TypeScript fix (add missing d.ts file to the NPM published package) by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/54

Full Changelog: https://github.com/awslabs/aws-jwt-verify/compare/v2.1.2...v2.1.3

- TypeScript
Published by ottokruse over 4 years ago

https://github.com/awslabs/aws-jwt-verify - v2.1.2

Reduced bundle size

  • Clean up typescript configuration to avoid including types twice (both for ESM and common JS) and instead do it only once. This also resulted in a reduced bundle size for the library distribution.

Upgrades CDK package versions used in integration tests

  • CDK packages in test/Cognito for integration tests are upgraded to bump up a dependency used by CDK - VM2 version to 3.9.4 . This is to address dependabot alert for VM2 version 3.9.3

What's Changed

  • Clean-up typescript config by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/51
  • Upgrade VM2 version by @leelalagudu in https://github.com/awslabs/aws-jwt-verify/pull/52
  • 2.1.2 by @leelalagudu in https://github.com/awslabs/aws-jwt-verify/pull/53

Full Changelog: https://github.com/awslabs/aws-jwt-verify/compare/v2.1.1...v2.1.2

- TypeScript
Published by leelalagudu over 4 years ago

https://github.com/awslabs/aws-jwt-verify - v2.1.1

  • FIXED: #47 When using type CognitoJwtVerifierSingleUserPool, getting compile error: "Types have separate declarations of a private property 'jwksCache'"

Full Changelog: https://github.com/awslabs/aws-jwt-verify/compare/v2.1.0...v2.1.1

- TypeScript
Published by ottokruse over 4 years ago

https://github.com/awslabs/aws-jwt-verify - v2.1.0

What's Changed

  • Specify node engines by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/37
  • Mention Node.js 14 and TypeScript 4.0.0 more clearly in docs by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/41
  • Include RS384 and RS512 support for JWT signing algorithms by @leelalagudu in https://github.com/awslabs/aws-jwt-verify/pull/43
  • Add exports of important types by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/42
  • 2.1.0 by @leelalagudu in https://github.com/awslabs/aws-jwt-verify/pull/44

Full Changelog: https://github.com/awslabs/aws-jwt-verify/compare/v2.0.0...v2.1.0

- TypeScript
Published by leelalagudu over 4 years ago

https://github.com/awslabs/aws-jwt-verify - v2.0.0

Noteworthy changes

  • It's now possible to include the raw JWT in verification errors (#27)
  • Enable tsdoc hints when creating the verifier, to help the user understand the configuration options (#11) :

image

These changes are BREAKING changes for some usage patterns, therefore this release increments the major version number to 2.0.0:

  • To enable tsdoc hints in #11 we refactored various TypeScript types. You'll only notice that, if you were explicitly importing the now refactored types. If you don't know if you did, you probably didn't, in which case this change isn't breaking for you. (All example code from README.md remains valid without any change).
  • As part of #27 we've split out the errors that my be thrown when checking claims. Instead of a generic AssertionError more specific errors are now thrown (e.g. JwtInvalidScopeError). If you weren't explicitly testing for error type (e.g. doing err instance of AssertionError) this change isn't breaking for you.

Full Changelog: https://github.com/awslabs/aws-jwt-verify/compare/v1.0.3...v2.0.0

- TypeScript
Published by ottokruse over 4 years ago

https://github.com/awslabs/aws-jwt-verify - v1.0.3

What's Changed

  • Add basic usage to top of README by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/18
  • Update jwk validation logic by @leelalagudu in https://github.com/awslabs/aws-jwt-verify/pull/19
  • Added quick link to verify parameters by @ottokruse in https://github.com/awslabs/aws-jwt-verify/pull/20
  • 1.0.3 by @leelalagudu in https://github.com/awslabs/aws-jwt-verify/pull/21

Full Changelog: https://github.com/awslabs/aws-jwt-verify/compare/v1.0.2...v1.0.3

- TypeScript
Published by leelalagudu over 4 years ago

https://github.com/awslabs/aws-jwt-verify - v1.0.2

Functional changes (all non-breaking):

Allow "aud" claim to be an array of strings (#14) This makes the library compatible with JWTs from Auth0

Expose error module so it may be imported (#12) If you want to catch this library's exceptions, you may want to import them (and use instanceof), this is now possible.

- TypeScript
Published by ottokruse over 4 years ago

https://github.com/awslabs/aws-jwt-verify - v1.0.1

First public release 🎉

- TypeScript
Published by ottokruse over 4 years ago