Commit Graph

168 Commits

Author SHA1 Message Date
Snorre lothar von Gohren Edwin 57b1269c41 modifications on PR. Added a space in the bearer string check so that we unexpectly dont experience an base64url encoding because bearer is technically part of a valid endcoding, we think. Also moved it into a failed decoding to get a better feedback for the developer, but not do unessecary amount of string checks 2015-12-22 15:30:57 +01:00
Snorre lothar von Gohren Edwin 1f970af1f8 added right amount of return 2015-12-20 09:25:50 +01:00
Snorre lothar von Gohren Edwin 5d11392aac no breakpoints 2015-12-19 23:58:27 +01:00
Snorre lothar von Gohren Edwin b863883b96 token.go: did some changes to the checks so that it will give better error feedback for noobs who write the authorization bearer value wrong 2015-12-19 23:49:37 +01:00
Dave Grijalva f164e17f59 version history 2015-11-16 13:12:11 -08:00
Dave Grijalva b728399c73 signature should be populated after parsing a valid token 2015-11-16 12:42:37 -08:00
Dave Grijalva 2bd555e247 Merge pull request #98 from dgrijalva/dg/parser
Created a Parser type to allow for non-global parser configuration
2015-11-16 11:47:09 -08:00
Dave Grijalva d9df83c827 use cleaner version of prefix checking (thanks shurcooL) 2015-11-13 15:03:12 -08:00
Dave Grijalva dd0ede9741 fix array OOB panic (#100) 2015-11-13 12:50:04 -08:00
Dave Grijalva f2dd936aa8 added test for valid signing method 2015-11-02 15:24:32 -08:00
Dave Grijalva 774f319043 added tests for parser. fixed parser when using restricted method list 2015-11-02 15:22:08 -08:00
Dave Grijalva 7ac27fb6ac renamed files to match their purpose 2015-11-02 11:26:07 -08:00
Dave Grijalva 52c68d1293 Merge pull request #93 from EnerfisTeam/master
Added parsing of ECDSA keys in the example app
2015-11-02 11:20:56 -08:00
Dave Grijalva bdfe8ca0b6 created a Parser type to allow for non-global parser configuration 2015-10-29 11:45:16 -07:00
Dave Grijalva 9a00cd52d4 Merge branch 'master' of github.com:dgrijalva/jwt-go 2015-10-29 11:26:19 -07:00
Dave Grijalva acc5a5f31e fixes #95 - incorrect documentation 2015-10-20 13:53:03 -07:00
Štěpán Pilař 80be4727a3 Added parsing of ECDSA keys in the example app 2015-10-15 08:38:32 +02:00
Dave Grijalva f62f64ea22 Merge pull request #87 from vektra/master
Fix ES signature serialization
2015-09-23 13:28:32 -07:00
Evan Phoenix 5bc4686aab Fix ES signature serialization 2015-09-16 19:53:08 -07:00
Dave Grijalva 581ca99478 minor refactor of HMAC verify for legibility. no functional changes 2015-09-14 12:07:47 -07:00
Dave Grijalva 127f538a32 updated documenation of SigningMethod interface 2015-09-14 12:07:08 -07:00
Dave Grijalva c1da563496 Added comment about adding custom signing methods to README 2015-09-04 14:24:56 -07:00
Dave Grijalva 3b55c4adf0 Merge pull request #83 from lBilali/master
test with go 1.5
2015-08-31 17:36:14 -07:00
lBilali abf9b1b822 Update .travis.yml 2015-08-20 10:53:58 +02:00
Dave Grijalva 9fe8afe96d version notes for 1.3.0 2015-07-16 14:10:27 -07:00
Dave Grijalva e5cb38552f Merge pull request #74 from patbaker82/ecdsa
Add ECDSA signatures
2015-07-16 14:04:19 -07:00
Dave Grijalva 0efa026231 Merge pull request #72 from patbaker82/rsapss
Add RSASSA-PSS signatures
2015-07-16 14:02:47 -07:00
Patrick Baker c6092083d4 Add RSASSA-PSS signatures 2015-07-16 16:57:46 -04:00
Patrick Baker bf3befad72 Add ECDSA signatures 2015-07-16 15:41:02 -04:00
Dave Grijalva 2e53eb673c dropped go v1.2.2 from travis ci config. it's missing some of the things required 2015-06-02 15:39:46 -07:00
Dave Grijalva 2c5741b3e7 Merge branch 'dg/travisci' of github.com:dgrijalva/jwt-go into dg/travisci 2015-06-02 15:31:19 -07:00
Dave Grijalva fa34eafcec .travis.yml (not json) 2015-06-02 15:31:04 -07:00
Dave Grijalva 919016a560 Add travis CI tag to README.md 2015-06-02 15:05:49 -07:00
Dave Grijalva ceceae9e6c added travis ci file 2015-06-02 15:02:28 -07:00
Dave Grijalva 5ca80149b9 added reference to gopkg.in 2015-04-20 13:43:07 -07:00
Dave Grijalva 38ff32c7bf Merge pull request #60 from glkz/master
Fix variable name in parse and verify example
2015-04-17 14:20:58 -07:00
Dave Grijalva e430b188c0 use pre-parsed rsa key for rsa benchmark and make sure signing actually succeeds 2015-04-11 14:04:22 -07:00
Dave Grijalva c0c67af490 cleaned up benchmarks 2015-04-11 13:53:09 -07:00
Dave Grijalva 901c439dfe added benchmark for hmac signing 2015-04-11 13:31:06 -07:00
Mustafa Altun 211399e41a Fix variable name in parse and verify example 2015-04-10 15:31:30 +03:00
Dave Grijalva 3dd0a21a31 move error types and constants out to separate file 2015-04-09 13:20:10 -07:00
Dave Grijalva c48cfd5d97 Updated README
... to discuss recently published vulnerability
2015-04-01 11:06:36 -07:00
Dave Grijalva 61124b62ad Merge pull request #54 from thatderek/patch-1
Updated token creation example to use the proper method.
2015-01-26 13:04:01 -08:00
thatderek c5c16083c7 Updated token creation example to use the proper method.
Example broke with error `undefined: SigningMethodHS256`. Edited to use jwt.SigningMethodHS256
2015-01-25 01:25:58 -05:00
Dave Grijalva a3e2f13bb7 added documentation for HMAC Sign method 2015-01-13 21:33:50 -08:00
Dave Grijalva fb5e9d4418 updated ExampleNew with correct key type 2015-01-13 21:31:08 -08:00
Dave Grijalva 7c18dce7b8 Merge branch 'master' of github.com:dgrijalva/jwt-go 2015-01-07 09:54:51 -08:00
Dave Grijalva 7597fd422d added a test condition 2015-01-07 09:52:08 -08:00
Dave Grijalva 7b97402710 Merge pull request #47 from kofalt/master
Fix timing side-channel attack in hmac comparison
2014-12-28 17:36:52 -08:00
Nathaniel Kofalt 9a3c6fd1e3 Fix timing side-channel attack in hmac comparison 2014-12-28 19:31:54 -06:00