Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update Rust crate jsonwebtoken to v9 #19

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Update Rust crate jsonwebtoken to v9 #19

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link

@renovate renovate bot commented Oct 22, 2023
edited
Loading

This PR contains the following updates:

Package Type Update Change
jsonwebtoken dependencies major 7 -> 9

Release Notes

Keats/jsonwebtoken (jsonwebtoken)

v9.3.0

Compare Source

  • Add Validation.reject_tokens_expiring_in_less_than, the opposite of leeway

v9.2.0

Compare Source

  • Add an option to not validate aud in the Validation struct
  • Get the current timestamp in wasm without using std
  • Update ring to 0.17

v9.1.0

Compare Source

  • Supports deserialization of unsupported algorithms for JWKs

v9.0.0

Compare Source

  • Update ring
  • Rejects JWTs containing audiences when the Validation doesn't contain any

v8.3.0

Compare Source

  • Update base64
  • Implement Clone for TokenData if T impls Clone

v8.2.0

Compare Source

  • Add DecodingKey::from_jwk
  • Can now use PEM certificates if you have the use_pem feature enabled

v8.1.1

Compare Source

  • Fix invalid field name on OctetKeyParameters

v8.1.0

Compare Source

  • Make optional fields in the spec really optional
  • Implements Hash for Header

v8.0.1

Compare Source

  • Fix documentation of leeway

v8.0.0

Compare Source

  • Add EdDSA algorithm
  • sign/verify now takes a &[u8] instead of &str to be more flexible
  • DecodingKey now own its data
  • Remove deprecated dangerous_unsafe_decode
  • Validation::iss is now a HashSet instead of a single value
  • decode will now error if Validation::algorithms is empty
  • Add JWKs types for easy interop with various Oauth provider, see examples/auth0.rs for an example
  • Removed decode_* functions in favour of using the Validation struct
  • Allow float values for exp and nbf, yes it's in the spec... floats will be rounded and converted to u64
  • Error now implements Clone/Eq
  • Change default leeway from 0s to 60s
  • Add Validation::require_spec_claims to validate presence of the spec claims
  • Add default feature for pem decoding named use_pem that can be disabled to avoid 2 dependencies

Configuration

📅 Schedule: Branch creation - "before 5am on monday" in timezone Asia/Tokyo, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot added the B-renovate Bot: renovate label Oct 22, 2023
@renovate renovate bot force-pushed the renovate/jsonwebtoken-9.x branch from 882115e to d2bb4a5 Compare May 1, 2024 09:10
@renovate renovate bot force-pushed the renovate/jsonwebtoken-9.x branch from d2bb4a5 to 3920a3d Compare May 5, 2024 09:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
B-renovate Bot: renovate
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants