All notable changes to this project will be documented in this file. This change log follows the conventions of keepachangelog.com.
0.5.92 - 2023-08-15
- Support automatic refresh of JWKS endpoint when using
unsign
. Maximum refresh rate is once per minute per URL. This feature supports improper rollover of keys, i.e. where the new key has the same :kid
as previous key (#1).
0.5.81 - 2023-08-05
- Added namespace
com.github.sikt-no.clj-jwt
. The old namespace no.nsd.clj-jwt
will be kept identical
to the new main namespace. - Bump dependencies, removing some CVEs.
- Use
major.minor.commit-count
version scheme. - Simplified running tests.
- NVD check script.
- Use build.edn for releasing.
0.4.7 - 2022-11-23
- Moved to github.com/sikt-no/clj-jwt
v0.4.6 - 2020-01-16
- Library should stay silent (DEBUG level) by default
- Log error level on failure
v0.4.5 - 2020-01-09
- Bugfix signing function: Include kid in header by default.
- Support char arrays as jwks-url. This can be used to test without having to use files/URLs.
v0.4.4 - 2020-01-07
- Be slightly more paranoid in scopes function.
v0.4.3 - 2020-01-07
- Add scopes function to extract jwt scopes from claims
v0.4.2 - 2020-01-07
- Support multiple jwks endpoints is supported #3
- Give meaningful error message when jwks-url or token is nil #4
- Handle token starting with
Bearer
gracefully #5
v0.4.1 - 2019-07-30
- Use defonce to define keystore atom to prevent accidental redefinitions in upstream project's development
- Update dependencies to latest feature/patch versions
v0.4.0 - 2019-06-06
- New sign function to sign claims and generate JWTs based on private key in JWK
- resolve-public-key function replaces resolve-key function
- resolve-private-key function makes it possible to resolve private keys from JWKS
- resolve-key funtion made private as it is now used by resolve-public-key and resolve-private-key
v0.3.2 - 2018-11-16
- Changed log level from error to info for public key lookup error
v0.3.1 - 2018-11-08
v0.3.0 - 2018-09-20
- Swapped argument order for unsign function to make partial application easier
v0.2.1 - 2018-09-20
- Error logging for failing key resolve
v0.2.0 - 2018-09-19
- Added specs for unsign and generator for ::jwt
- Added logging for retry in resolve-key function
- Initial implementation of clj-jwt library.
- Function
resolve-key
that fetches jwks keys and returns a PublicKey given the kid in the jwt header. - Function
unsign
which tries to validate a jwt given a jwks URL and a jwt.