JWT Libraries
Backend & InfraA ruby implementation of the RFC 7519 OAuth JSON Web Token (JWT) standard.
Release History
v2.10.21 fixVersion v2.10.2 addresses a concurrency issue by ensuring digests are not reused across separate calls within the Ecdsa and Rsa JWA implementations.
v3.1.22 fixesThis patch release addresses critical bugs related to digest reuse in ECDSA/RSA signing and fixes EC JWK signing issues.
v3.1.11 fixThis patch release (v3.1.1) introduces a security enhancement by requiring the algorithm to be explicitly provided during JWK signing and verification operations.
v3.1.0Breaking1 fix3 featuresVersion 3.1.0 introduces significant security and feature enhancements, including JWK support and stricter key validation for ECDSA, alongside a breaking change requiring claim verification before accessing the token payload.
v3.0.0Breaking2 fixes3 featuresVersion 3.0.0 introduces significant breaking changes focusing on security hardening, stricter standards compliance, and dependency removal. New features include bundled verification methods and improved JWK compatibility.
v3.0.0.beta1Breaking3 featuresThis major beta release introduces significant breaking changes, including stricter signature verification, removal of deprecated methods and the rbnacl dependency, and updates to algorithm and key requirements. It also adds the convenient JWT::EncodedToken#verify! method.
Common Errors
Related Backend & Infra Packages
Production-Grade Container Scheduling and Management
Node.js JavaScript runtime ✨🐢🚀✨
Promise based HTTP client for the browser and node.js
A modern runtime for JavaScript and TypeScript.
Deliver web apps with confidence 🚀
Incredibly fast JavaScript runtime, bundler, test runner, and package manager – all in one
Subscribe to Updates
Get notified when new versions are released