Compare
- #518: Using R8 "full mode" causes issues (workaround provided) resolved
-
- Loading...
| Author | Commit | Message | Date | Builds |
|---|---|---|---|---|
|
[maven-release-plugin] prepare release 9.32
|
|
||
|
|
Adds MultiEncrypter test with example from https://datatracker.ietf.org/doc/html/rfc7516#appendix-A.4.7
|
|
||
|
|
Adds missing JWEObjectJSON tests to complete coverage
|
|
||
|
|
JWEObjectJSON.Recipient.parse is okay to throw NPE on null arg
|
|
||
|
|
Updates 9.32 change log with JWEObjectJSON related updates
|
|
||
|
|
Bumps Google Tink
|
|
||
|
|
Renames JWEObjectJSON field and method names for consistency, JavaDoc edits, adds test from https://datatracker.ietf.org/doc/html/rfc7516#appendix-A.4.7
|
|
||
|
|
Removes experimental JWEAlgorithm.JWK_ALG constant
|
|
||
|
|
Makes the JOSEObjectJSON.toGeneralJSONObject and toFlattenedJSONObject methods public
|
|
||
|
|
Edits JOSE object JavaDoc for consistency
|
|
||
|
|
Removes unused import in JWEObjectJSON
|
|
||
|
|
Updates JavaDoc overview.html with JWEObjectJSON reference
|
|
||
|
|
Adds missing JavaDocs to BaseJWEProvider.getCEK and isCEKProvided
|
|
||
|
|
Adds JavaDoc note JWEHeader.Builder.Builder(EncryptionMethod) is intended for multi-recipient JWE, makes constructor second because the most common construction will be with (JWEAlgorithm,Encryption)
|
|
||
|
|
Moves the static getAlgorithmAndEnsureNotNull from BaseJWEProvider to a dedicated JWEHeaderValidation class to remove the method from the BaseJWEProvider API
|
|
||
|
|
4be0990
M
|
Merged in iss517-4 (pull request #108)
Outstanding MultiEncrypter + MultiDecrypter issues
Approved-by: Vladimir Dzhuvinov
|
|
|
epuzanov
|
Add a getAlgorithmAndEnsureNotNull method to the BaseJWEProvider class
|
|
||
|
epuzanov
|
make use of JWEHeader without alg defined
|
|
||
|
epuzanov
|
fix Header parsing
|
|
||
|
epuzanov
|
add the 'join' method to the Header class
|
|
||
|
epuzanov
|
make use of HeaderValidation ensureDisjoint method with any protected JOSE headers
|
|
||
|
epuzanov
|
make the 'alg' parameter optional in the JWEHeader
|
|
||
|
|
Updates the JWT processing framework examples for the Wiki
|
|
||
|
|
Adds special JWEAlgorithm.JWK_ALG constant for use in multi-recipient JWEObjectJSON
|
|
||
|
|
Updates MultiDecrypter JavaDocs
|
|
||
|
|
Minor JWEMultipleRecipientsTest updates for better clarity
|
|
||
|
|
JWEMultipleRecipientsTest exceptions checks must use concrete exception class, not Exception
|
|
||
|
|
Improves the MultiEncrypter constructor exception messages
|
|
||
|
|
Revert "Allow the Algorithm.NONE for the JWEHeader alg attribute"
This reverts commit 9839604446f85fed28f43d8223a5cf7e33ef1cb5.
|
|
||
|
|
ae11844
M
|
Merged in iss517 (pull request #107)
Iss517
|
|
|
|
|
Fixes Proguard arg in README.md
|
|
||
|
epuzanov
|
Allow the Algorithm.NONE for the JWEHeader alg attribute
|
|
||
|
epuzanov
|
Add x5c test to the testRecipients_identicalJWEAlg_recipientMatch test case
|
|
||
|
|
Adds Proguard / R8 use note in README.md
|
|
||
|
epuzanov
|
Use the kid, x5u, x5t and x5c attribute for recipient matching
|
|
||
|
epuzanov
|
Replace multiple 'if else' statements with the single 'if' statement
|
|
||
|
epuzanov
|
remove commented blocks in JWEMultipleRecipientsTest
|
|
||
|
epuzanov
|
Validate supplied keys algs in the MultiEncrypter constructor
|
|
||
|
|
Updates JSONObjectUtils.parse(String,int) to ensure generic types not erased by obfuscation tools (iss
|
|
||
|
|
Bumps Tink to 1.9.0
|
|
||
|
|
JWEObjectJSON: More readable isEmpty checks
|
|
||
|
|
DirectCryptoProvider: Removes useless cek == null check
|
|
||
|
|
Adds MultiEncrypter tests to highlight outstanding issues
|
|
||
|
|
JWEMultipleRecipientsTest: Factors out illegal arg tests
|
|
||
|
|
JWEObjectJSON: factors out the JSON object output code that is common between the JSON and the flattened serialisation
|
|
||
|
|
JWEObjectJSON: makes recipient header params static (using constants), JavaDoc and exception message edits / fixes
|
|
||
|
|
MultiEncrypter must not internally generate / set the "kid" in per recipient JWT headers
|
|
||
|
|
Renames private method in MultiEncrypter to match naming convention
|
|
||
|
|
JavaDoc edits
|
|
||
|
|
Removes the unused MultiDecrypter.getRecipientHeaderParams method, makes the common JWK + JWE header parameter names a constant, notes potential issues
|
|
||
|
|
Deletes unused imports
|
|
||
|
|
Fixes JavaDoc error in ECDH1PUEncrypter
|
|
||
|
|
Fixes JavaDoc errors
|
|
||
|
|
Minor JWEObjectJSON code cleanups, expands tests
|
|
||
|
|
The Payload of an encrypted (but not decrypted) JWEObjectJSON must be null
|
|
||
|
|
Fixes var name typo in JWEMultipleRecipientsTest.testMultipleRecipients
|
|
||
|
|
664fc1e
M
|
Merge branch 'master' of ssh://bitbucket.org/connect2id/nimbus-jose-jwt
|
|
|
|
|
9f2ce30
M
|
Merged in JWEJSONSerialization (pull request #105)
JWE JSON Serialization
|
|
|
|
|
Bumps maven-shade-plugin
|
|
||
|
|
Updates GSon to 2.10.1
|
|
||
|
epuzanov
|
Add the MultiEncrypter test for empty JWKSet parameter
|
|
||
|
epuzanov
|
Use the null instead of A128GCM as the parameter for getCEK in the DirectCryptoProvider to return current CEK value
|
|
||
|
epuzanov
|
Fix the exception message string
|
|
||
|
epuzanov
|
Add the comment to the encryptedKey parsing block
|
|
||
|
epuzanov
|
Try to use the Direct SecretKey as a CEK
|
|
||
|
epuzanov
|
The MultiCryptoProvider does not support DIRECT AlgorithmMode
|
|
||
|
|
Adds a new RSASSASigner(RSAKey, Set<JWSSignerOption>) constructor
|
|
||
|
|
Expands CompletableJWSObjectSigning tests
|
|
||
|
|
Edits ECDSASigner and CompletableJWSObjectSigning JavaDocs, change log
|
|
||
|
|
3326f08
M
|
Merged user verification support to ECDSA (pull request #106)
|
|
|
|
|
Add support for UserAuthenticationRequired to ECDSASigner
This adds support for the UserAuthenticationRequired JWSSignerOption to
the ECDSASigner.
Additionally it adds the initialized Signature object to the
ActionRequiredForJWSCompletionException to enable user authentication on
platforms that require the Signature object to be part of the user authentication
call.
|
|
||
|
epuzanov
|
The CEK support refactoring
|
|
||
|
epuzanov
|
add parameter validation to the JWEObjectJSON parse method
|
|
||
|
epuzanov
|
fix the getEncryptedKey method and add the test cases for it
|
|
||
|
epuzanov
|
Add the tests of the JWEObjectJSON constructor
|
|
||
|
epuzanov
|
Reuse of the JWEObject.State enum in the JWEObjectJSON class
|
|
||
|
epuzanov
|
Simplify the updatedAAD assign
|
|
||
|
epuzanov
|
add the tests for the MultiEncrypter and the MultiDecrypter parameters
|
|
||
|
epuzanov
|
More granular testing of the encrypted multirecipient JSON JWE object
|
|
||
|
epuzanov
|
Factoring out the AAD parsing to the protected header map. Validate the jwk argument in the MultiDecrypter constructor.
|
|
||
|
epuzanov
|
Add the MultiEncrypter and MultiDecrypter classes
|
|
||
|
epuzanov
|
Move the AAD from CryptoProvider to the JWEObject and JEWObjectJSON classes
|
|
||
|
epuzanov
|
add a JWEObjectJSON constructor with aad parameter
|
|
||
|
epuzanov
|
add AADParsing and HeaderDuplicates tests to the JWEObjectJSONTest test case
|
|
||
|
epuzanov
|
fix duplicated headers validation
|
|
||
|
epuzanov
|
add JWEObjectJSON class
|
|
||
|
|
Simplifies test public key generation in MultipleRecipientsTest
|
|
||
|
|
Renames MultipleRecipientsTest -> JWEMultipleRecipientsTest
|
|
||
|
|
Change log for v9.32 - RSA and ECDH JWE to multiple recipients
|
|
||
|
|
MultipleRecipientsTest lang level must be Java 7
|
|
||
|
|
Renames {RSACryptoProvider|ECDHCryptoProvider}.getAad() to getAAD() to follow lib convention, edits JavaDocs
|
|
||
|
|
Moves aad after clearText in ContentCryptoProvider.encrypt method signature
|
|
||
|
|
358da34
M
|
Merged in customAad (pull request #103)
Custom AAD.
Approved-by: Vladimir Dzhuvinov
|
|
|
|
epuzanov
|
add the test case for multiple recipients encryption/decryption
|
|
||
|
epuzanov
|
Add support for the custom AAD. It needed for the multiple recipients encrypt/decrypt operations.
|
|
||
|
|
dc13039
M
|
Merged in issue508version2 (pull request #101)
Improve multithreaded tests so that they run for less flaky in CI
Approved-by: Vladimir Dzhuvinov
|
|
|
|
|
Improve multithreaded tests so that they run for less flaky in CI
|
|
||
|
|
3591a6c
M
|
Merged connect2id/nimbus-jose-jwt into master
|
|
|
|
|
[maven-release-plugin] prepare for next development iteration
|
|