5.0.0 Release Candidate 2

What's Changed

• Fix unverified method parser inference by @ptoffy in #176
• Cache JWKSigner when possible by @ptoffy in #172
• Make JWKSigner an actor by @ptoffy in #178
• Move to SwiftCrypto EdDSA key by @ptoffy in #177
• Add Swift 6 support by @0xTim in #175
• Fix a couple of Swift 6 warnings by @0xTim in #182
• Last of the Swift 6 language mode warnings by @0xTim in #185
• Add compatibility for iOS 15 and friends by @ptoffy in #181

Full Changelog: 5.0.0-rc.1...5.0.0-rc.2

5.0.0 Release Candidate 1

What's Changed

• Allow iterating keys on key collection and adopt swift-log by @ptoffy in #170
• update example code and convert to Snippets by @tayloraswift in #171

New Contributors

• @tayloraswift made their first contribution in #171

Full Changelog: 5.0.0-beta.4...5.0.0-rc.1

5.0.0 Beta 4

What's Changed

• 🚨Add new key addition API by @ptoffy in #166
• Update README with new key addition API by @ptoffy in #168

Full Changelog: 5.0.0-beta.3...5.0.0-beta.4

5.0.0 Beta 3

What's Changed

• Change to non-optional function String <-> Data by @zunda-pixel in #156
• Add initialisers to vendor identity tokens by @ptoffy in #150
• 🚨Update verify function parameter to use some JWTAlgorithm by @ptoffy in #152
• 🚨Generic key addition by @ptoffy in #160
• 🚨Make JWTError Sendable by @ptoffy in #162
• 🚨Update swift version and readme for beta 3 by @ptoffy #164

Breaking Changes

• The minimum supported Swift version is now 5.10
• All algorithm specific key addition functions of JWTKeyCollection have been updated to be algorithm agnostic, for example the JWTKeyCollection.addHS256(key: ...) has been renamed to JWTKeyCollection.addHMAC(key: ..., digestAlgorithm: .sha256) etc.
• The JWTPayload's verify function now takes some JWTAlgorithm instead of any JWTAlgorithm
• JWTError.malformedToken was removed in favour of JWTError.malformedToken(reason:)

Full Changelog: 5.0.0-beta.2...5.0.0-beta.3

4.13.4 - Fix RSA memory leak, take 2

What's Changed

Don't allocate new RSA keys when signing by @gwynne in #161

This patch was released by @gwynne

Full Changelog: 4.13.3...4.13.4

4.13.3 - Fix RSA memory leak

What's Changed

Deinitialise correct pointer by @ptoffy in #158

This aims to fix the memory leak reported in #157

This patch was released by @ptoffy

Full Changelog: 4.13.2...4.13.3

5.0.0 Beta 2

What's Changed

• Update CI by @ptoffy in #146
• Add kid param to sign function by @ptoffy in #144
• make JWK.Curve Equatable again by @JaapWijnen in #145
• add curve and parameters properties to ECDSAKey protocol by @JaapWijnen in #143

Full Changelog: 5.0.0-beta.1...5.0.0-beta.2

5.0.0 Beta 1

First beta release of major version 5.

• Remove BoringSSL by @ptoffy @gwynne
• Add Sendable conformance by @ptoffy
• Add PSS algorithm family by @MFranceschi6
• Allow for header, parsing and serialising customisation by @ptoffy
• Replace JWTSigners with JWTKeyCollection by @ptoffy

For all changes check out #107

4.13.2 - Update BoringSSL

What's Changed

Update BoringSSL by @0xTim in #134

Updates BoringSSL to revision 58a318edc892a595a5b043359a5d441869158699

This is the final non-security release of JWTKit v4

This patch was released by @ptoffy

Full Changelog: 4.13.1...4.13.2

4.13.1 - Increase permitted range for crypto-kit dependency

What's Changed

Increase permitted range for crypto-kit dependency by @AndyHeardApps in #98

Currently the crypto-kit package has a permitted version range of 2.0.0 ..< 3.0.0. With the release of crypto-kit 3.0.0, this range is preventing Vapor apps from making use of the latest versions. Increasing the range to 2.0.0 ..< 4.0.0 allows apps to use the latest release without forcing an update.

This patch was released by @0xTim

Full Changelog: 4.13.0...4.13.1