Skip to content

JWS/x5c support with ES256 keys
Compare
Choose a tag to compare
@VaporBot VaporBot released this 26 Mar 15:28
· 63 commits to main since this release
4.9.0
ef12bdf
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
This patch was authored by @WFT and released by @gwynne.

Verify JWS tokens using x5c header parameters (ES256 keys only right now).

This PR is based on @0xTim’s work in #75, but uses the X509_STORE/X509_verify_cert API rather than re-implementing that logic in Swift.

Details on x5c: https://www.rfc-editor.org/rfc/rfc7515#section-4.1.6

Contributors

gwynne, WFT, and 0xTim
Assets 2
Loading