connect2id / Nimbus-JOSE-JWT / issues / #381 - Verifying a JWT succeeds after the token has expired — Bitbucket

Issue #381 invalid

Former user created an issue 2020-10-10

The title explains the crux of the problem. Additional details include: - ECKey (public key) - Curve: SECP256K1 - Algorithm: ES256K

The JWT was also signed with the same type of curve and algorithm, but from a JavaScript library.

Comments (2)

Yavor Vasilev
Hi,

Could you post a snippet or test case demonstrating how the verification is done?

The signature / alg type is not relevant and is independent from the JWT claims verification.
- 2020-10-12T06:15:33+00:00
Yavor Vasilev
- changed status to invalid
No response, closing for now.
- 2020-12-15T07:18:33+00:00
Log in to comment

Assignee: –

Type: bug

Priority: major

Status: invalid

Component: JWT

Milestone: –

Votes: 0

Watchers: None

Jira: the preferred issue tracker for Bitbucket. Join the team!