Skip to content
This repository has been archived by the owner on Jul 9, 2021. It is now read-only.

Editing the payload destroys the header #13

Closed
nbarbettini opened this issue Aug 31, 2016 · 1 comment
Closed

Editing the payload destroys the header #13

nbarbettini opened this issue Aug 31, 2016 · 1 comment
Labels
bug

Comments

@nbarbettini
Copy link
Member

If I paste the following JWT into the tool:

eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJqdGkiOiIxYjFaMTdLa0xBV09UTUg4cXA2aU1SIiwiaWF0IjoxNDcyNjY0NDU0LCJpc3MiOiJodHRwczovL2FwaS5zdG9ybXBhdGguY29tL3YxL2FwcGxpY2F0aW9ucy83T2wzNzdIVTA2OGxhZ0NZazdVOVhTIiwic3ViIjoiaHR0cHM6Ly9hcGkuc3Rvcm1wYXRoLmNvbS92MS9hY2NvdW50cy80cVRYMlF5UlZoT05kNWVRcDdoVFEwIiwiZXhwIjoxNDcyNjgxNDkwLCJydGkiOiI0NmZBSE90N1laNUVvOFIyMzVQa0YifQ.hLjNfYpf3sQ1rD-Kc9Y0yaEK3TNDq6ohDvEcamM6e7Y

Which as a header like:

{
 "typ": "JWT",
 "alg": "HS256",
 "kid": "4VPVLB6K44RYSKRRVAB4TEBOX",
 "stt": "access"
}

and then edit the payload, the header is rewritten as

{
  "typ": "JWT",
  "alg": "HS256"
}
@bretterer
Copy link
Contributor

Duplicate of #12

@bretterer bretterer marked this as a duplicate of #12 Sep 25, 2017
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@bretterer @nbarbettini