You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The JWT claims object only implements the registered claim names from RFC 7519.
But there are now other registered claim names from other standards. See https://www.iana.org/assignments/jwt/jwt.xhtml.
Similar to what was done with JWS headers, we should parameterise JWT over a "claims" type
that models the claims understood by a particular application.
The text was updated successfully, but these errors were encountered:
commit 17e67cb0c924d9ccd3d712be1050cb3c23e6f154 (HEAD -> master, github/master)
Author: Fraser Tweedale <frase@frase.id.au>
Date: Wed Jun 15 22:19:24 2022 +1000
doc: minor improvements to Crypto.JWT haddock
commit 74c7dc9e55455e279bed2f97ea69787418a4f160
Author: Fraser Tweedale <frase@frase.id.au>
Date: Wed Jun 15 22:04:42 2022 +1000
deprecate unregisteredClaims
Remove `unregisteredClaims` from class `HasClaimsSet`. If you're
sub-typing `ClaimsSet`, you don't need `unregisteredClaims`.
Indeed, the former subsumes the latter.
To encourage the more principled sub-typing approach, deprecated
`unregisteredClaims` and the related function `addClaim`. These
functions will be removed in a future release.
commit 58f501f7a9508a9cffab9faa1b0ff3cd618ddb8b
Author: Fraser Tweedale <frase@frase.id.au>
Date: Wed Jun 15 21:42:16 2022 +1000
doc: how to define and use extended claims types
commit a02c556d30b2544c856fe7f1b1202e23221b775e
Author: Fraser Tweedale <frase@frase.id.au>
Date: Sat May 21 16:10:15 2022 +1000
add JWT sign/verify variants general in payload type
Add variants of the JWT signing and verification functions that are
general in the payload type. This provides for applications that
use additional claims beyond those registered by RFC 7519.
Update the tests to use an example extended payload type in addition
to ClaimsSet directly.
Examples in documentation still need to be updated.
The `unregisteredClaims` field in ClaimsSet is likely to be
deprecated in the next release, and removed in a future release.
commit b007ab2acac01e0c4ea0eeb64111ee9a9306f0ac
Author: Fraser Tweedale <frase@frase.id.au>
Date: Sat May 21 15:29:29 2022 +1000
make ClaimsSet optics classy
As an initial step to parameterising JWT processing methods over a
claims-bearing payload type, define class HasClaimsSet and lift the
claim optics into it. Define the instance for ClaimsSet.
The JWT claims object only implements the registered claim names from RFC 7519.
But there are now other registered claim names from other standards. See
https://www.iana.org/assignments/jwt/jwt.xhtml.
Similar to what was done with JWS headers, we should parameterise JWT over a "claims" type
that models the claims understood by a particular application.
The text was updated successfully, but these errors were encountered: