v2.3.1

levahim released this 01 Aug 13:54

· 10 commits to master since this release

6d184d6

This release includes the following changes:

The authentication object stored in the HTTP session under org.bsworks.oidc.authorization is now serializable.
RSA keys in JWK sets without "use" attribute can now be used for JWT signature verifications (just as if the "use" attribute is "sig").
RSA keys in JWK sets without "kid" attribute can now be used as default keys when the JWT header does not include the "kid".

Assets 4

Provide feedback