backup/EWF

Files

History

Jocelyn Fiat 498e4a6ec2 Fixed validation of iss and aud when issuer and audience are not set.

2017-09-21 10:46:08 +02:00

..

Fixed validation of iss and aud when issuer and audience are not set.

2017-09-21 10:46:08 +02:00

Now JWT_LOADER takes the alg as argument, to avoid security issue where the lib is taking alg from the header (which may be a bad security weakness).

2017-07-11 23:32:11 +02:00

jwt-safe.ecf

Updated JWT library, add supports for claim exp, iat, nbf, iss, aud .

2017-06-07 23:24:46 +02:00

jwt.ecf

Updated JWT library, add supports for claim exp, iat, nbf, iss, aud .

2017-06-07 23:24:46 +02:00

package.iron

updated package.iron

2017-06-08 11:25:26 +02:00

README.md

New JSON Web Token (JWT) library.

2017-05-24 11:56:15 +02:00

README.md

JSON Web Token (JWT)

Note: supporting only HS256 and none algorithm for signature.

How to use

	local
		jwt: JWT
	do
		create jwt
		tok := jwt.encoded_string ("[
			{"iss":"joe", "exp":1200819380,"http://example.com/is_root":true}
			]", "secret", "HS256")
		if
			attached jwt.decoded_string (tok, "secret", Void) as l_tok_payload and
			not jwt.has_error
		then
			check verified: not jwt.has_unverified_token_error end
			check no_error: not jwt.has_error end
			print (l_tok_payload)
		end
	end