jwtk/njwt

Issues

• Snyk Reported issue with @okta/jwt-verifier@3.0.0 > njwt@2.0.0

  #106 opened 10 months ago by RGanni49
  4

• [Security] Prototype Pollution in nJwt library

  #105 opened a year ago by chrisandoryan
  1

• How to report security issues?

  #104 opened a year ago by chrisandoryan
  1

• JWT expiration and issuedAt properties and setters are inconsistent

  #93 opened 2 years ago by ande8135
  1

• how to set expired time in jwt?

  #92 opened 2 years ago by tytom2003
  1

• Twistlock reported issue with test keys

  #95 opened 2 years ago by rcollette
  1

• JwtParseError: Signature verification failed

  #46 opened 5 years ago by lexicalninja
  6

• JwtParseError: Signature verification failed

  #97 opened 2 years ago by KaitaniLabs
  1

• If token is not HS256 using a verifier instance will throw a JwtParseError "Unexpected signature algorithm"

  #73 opened 5 years ago by Anntoin
  1

• Add Typings

  #69 opened 5 years ago by elecompte60
  7

• allocates uninitialized Buffers when number is passed in base64urlEncode input

  #78 opened 4 years ago by hmangune
  0

• RSA key format

  #76 opened 4 years ago by 8coins
  0

• Issue creating sessions for users in different collections using mongodb

  #75 opened 5 years ago by binaryck
  0

• The Code is in ES6 - Uglify can't handle ES6 code

  #72 opened 5 years ago by RALifeCoach
  1

• JwtParseError: Unexpected signature algorithm - RS256

  #71 opened 5 years ago by ndtreviv
  1

• error:0909006C:PEM routines:get_name:no start line

  #70 opened 5 years ago by patil-akshay
  2

• Remove jti?

  #68 opened 5 years ago by rlaferla
  1

• TLS issue

  #66 opened 6 years ago by jayheavner
  0

• Documentation for installation?

  #67 opened 6 years ago by rlaferla
  1

• Any plan to make the NJWT library support compression and decompression?

  #65 opened 6 years ago by jjeanj1
  2

• Undocumented - Return in verify

  #64 opened 6 years ago by fabltd
  2

• vulnerablity found - Out-of-bounds Read

  #62 opened 6 years ago by Toxicable
  2

• Expiration check succeeds on expired tokens - 'exp' looked for in body, not in header

  #57 opened 6 years ago by woodenork
  0

• Library does not seem to comply with 'aud' claim verification

  #54 opened 7 years ago by chadjaros
  0

• Suggestion: throw an error if you call create with string as signing key instead of a Buffer

  #53 opened 7 years ago by pingvinen
  0

• Do not set an expiration claim if it has already been defined by the user

  #52 opened 7 years ago by pingvinen
  0

• Docker Issue

  #51 opened 7 years ago by SiddiquiImran
  0

• Custom algorithm

  #48 opened 7 years ago by Teukros
  0

• verify a google jwt?

  #47 opened 8 years ago by walshe
  0

• Times should be in seconds, not milliseconds

  #45 opened 8 years ago by lylefile
  0

• Add `jwt.setHeader(key,value)`

  #25 opened 8 years ago by robertjd
  1

• Implement key resolver

  #26 opened 8 years ago by robertjd
  0

• Export the Parser

  #39 opened 8 years ago by jkevlin2
  0

• create() should respect exp timestamp in claims

  #23 opened 9 years ago by typerandom
  0

• Errors should be separately typed and documented

  #22 opened 9 years ago by typerandom
  0

• Formatting should follow Crockford's JavaScript formatting conventions

  #21 opened 9 years ago by typerandom
  0

• is setNotbefore() working?

  #37 opened 8 years ago by mikeliucc
  2

• Jwt created by verify() is not setting signingKey

  #35 opened 8 years ago by safm
  2

• Why not asymetric crypto?

  #34 opened 8 years ago by levino
  1

• Error should be thrown if you call a constructor without new

  #32 opened 8 years ago by typerandom
  0

• Potentially support kid header?

  #24 opened 9 years ago by ethul
  4

• View claims without verifying the signature?

  #14 opened 9 years ago by tyronedougherty
  6

• 0.3.1 creates invalid tokens

  #16 opened 9 years ago by CDA0
  1

• ES* signatures are not spec compliant

  #11 opened 9 years ago by omsmith
  1

• `typ`, `iat` and `jti` fields are added when parsing tokens

  #9 opened 9 years ago by robertjd
  1

• Please document how to create a custom header

  #10 opened 9 years ago by edjiang
  1

• README Documentation Incorrect

  #8 opened 9 years ago by rdegges
  0

• body vs parsedBody

  #7 opened 9 years ago by jmls
  2

• JWT header and body not URL-encoded

  #6 opened 9 years ago by davidlenthall
  1

• jti and iat overwritten during parse

  #4 opened 9 years ago by WebWalks
  2