Skip to content

Releases: ulrikstrid/ocaml-jose

0.9.0

20 Feb 07:44
@ulrikstrid ulrikstrid
v0.9.0
305710c
Compare
Choose a tag to compare
0.9.0 Latest
Latest

CHANGES:

  • Support all serialization formats, previously only the compact serialization was supported, now we support both general and flattened JSON format (by @ulrikstrid)
  • Add support for ES384 (P-384 with SHA384) (by @ulrikstrid)
  • Allow creating a JWK from X509 keys directly (by @ulrikstrid)
  • Support extra headers (by @ulrikstrid)
  • Add a parameter to JWT validation for the current time represented as Ptime.t (by @ulrikstrid)
  • Add support for EdDSA keys (Ed25519 curve) from rfc8037 (by @ulrikstrid)

Contributors

ulrikstrid
Assets 3
Loading

0.8.2

31 Jan 16:03
@ulrikstrid ulrikstrid
v0.8.2
2b45512
Compare
Choose a tag to compare
0.8.2

CHANGES:

  • JWS now properly checks the signature. Reported by @nankeen and fixed by @ulrikstrid. CVE-2023-23928

Contributors

ulrikstrid and nankeen
Assets 3
Loading

0.8.1

05 Jan 11:46
@ulrikstrid ulrikstrid
v0.8.1
9acb825
Compare
Choose a tag to compare
0.8.1

CHANGES:

  • Remove usage of Result.get_ok to maintain compatibility with older OCaml versions
Assets 3
Loading

0.8.0

05 Jan 09:34
@ulrikstrid ulrikstrid
v0.8.0
3b74d6e
Compare
Choose a tag to compare
0.8.0

CHANGES:

  • Make use and alg optional
  • Correct thumbprint generation on all algs
  • Add getters for claims
  • Thumbprint is now a Cstruct.t instead of string which is less ambigious
  • Make header argument optional when signing which simplifies the normal usecase
Assets 3
Loading

0.7.0

04 Apr 13:36
@ulrikstrid ulrikstrid
v0.7.0
07045db
Compare
Choose a tag to compare
0.7.0

CHANGES:

  • Remove print statements that was used for debugging (by @phongphan)
  • Make things safer by default, of_string will now return result, etc (by @anmonteiro)
  • Fix deprecation warnings in libraries (by @anmonteiro)

Contributors

anmonteiro and phongphan
Assets 3
Loading

v0.6.0

26 Apr 19:59
@ulrikstrid ulrikstrid
v0.6.0
74e4411
This commit was signed with the committer’s verified signature.
ulrikstrid Ulrik Strid
GPG key ID: CFC200177A688B11
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.6.0
  • JWT/JWS/JWK: Add support for ES256 and ES512 signing via the updated mirage-crypto and x509 (by @ulrikstrid)
  • JWT: [BREAKING] JWT will not validate exp by default anymore (by @ulrikstrid)
    • This often makes sense as a default but not always, it's better to let the user decide
Assets 3
Loading

v0.5.1

27 Jul 13:13
@ulrikstrid ulrikstrid
v0.5.1
d90a584
This commit was signed with the committer’s verified signature.
ulrikstrid Ulrik Strid
GPG key ID: CFC200177A688B11
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.5.1

CHANGES:

  • JWA: Add Unsupported option and stop raising when encountering unknown kty (bu @ulrikstrid)
Assets 3
Loading

v0.5.0

24 Jul 09:26
@ulrikstrid ulrikstrid
v0.5.0
207db96
This commit was signed with the committer’s verified signature.
ulrikstrid Ulrik Strid
GPG key ID: CFC200177A688B11
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.5.0

CHANGES:

  • JWS: compare computed HMAC signatures in constant-time (by @anmonteiro)
  • Adapt to Mirage-crypto 0.8.1, drops support for OCaml < 4.8.0 (breaking) (by @anmonteiro)
Assets 3
Loading

v0.4.0

01 Jun 20:36
@ulrikstrid ulrikstrid
v0.4.0
fa1e9cc
This commit was signed with the committer’s verified signature.
ulrikstrid Ulrik Strid
GPG key ID: CFC200177A688B11
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.4.0

CHANGES:

  • RFC7638: Implement thumbprints (by @undu)
  • Make kid optional in the header and jwk
Assets 3
Loading

v0.3.1

22 May 11:44
@ulrikstrid ulrikstrid
v0.3.1
089b36b
Compare
Choose a tag to compare
v0.3.1

CHANGES:

  • Add result compatability package (by @anmonteiro)
  • Add kid to JWK representation to keep it when parsing JSON input
  • Fix upper constraint on mirage-crypto
Assets 3
Loading