jose 0.3.4

Javascript Object Signing and Encryption (JOSE) library supporting JWE, JWS, JWK and JWT

0.3.4

• FEAT: Support latest package:http (#50)

0.3.3

• FIX: allow double values when converting to DateTime and Duration (pull request #33 from PixelToast). (3b204b10)
• FIX: type mismatch error on keyOperations getter (pull request #37 from samataro). (8afde0fd)
• FIX: add missing keyId when constructing a JWK with EcPublicKey (pull request #38 from tallinn1960). (b8d11f32)
• FIX: use 12 byte iv with AESGCM (pull request #39 from tallinn1960). (5b7e24da)
• FIX: make unprotected header in JWE optional (pull request #43 from heacare). (aefeeb04)
• FEAT: add support for es256k algorithm. (a2d046a3)

0.3.2

• Compatible with version 0.3.0 of crypto_keys

0.3.1

• JsonWebKey.parsePem handles CERTIFICATE
• DefaultJsonWebKeySetLoader: if possible, use HTTP headers to determine cache expiration.

0.3.0

• Migrate null safety

0.2.2

• Bump asn1lib to 0.8.1.

0.2.1+1

• Fix docs

0.2.1

• Added JsonWebKey constructors for creating EC and RSA keys
• Added factory constructor for creating a JsonWebKey from crypto keys
• Added factory constructor for creating a JsonWebKey from a pem string
• Support for P-256K curve

0.2.0

• Support RSAES-OAEP
• Allow x509 parameters in JWK
• JsonWebAlgorithm class
• Generating random non-symmetric keys
• cryptoKeyPair getter on JsonWebKey returning a KeyPair from crypto_keys package
• Breaking Change: loading jwk set from package or file url no longer supported by default. The new class JsonWebKeySetLoader can be used to override this behavior or manage the way jwk sets are loaded from an url.

0.1.2

• Add allowedAlgorithms argument also in JWT

0.1.1

• Fix security issue: JWS with algorithm none was previously verified, now you can specify which algorithms are allowed and by default none is not allowed.

0.1.0

• Initial version