Releases · yaronf/httpsign

16 Oct 12:37

yaronf

v0.3.3

afa1d36

Alternative verification API Latest

Latest

Alternative verification API using the Message structure.
Fix panic in edge case of ed25519.
Other minor fixes.

Assets 2

23 Dec 09:55

yaronf

v0.3.2

a0b15da

Bump JWX and Go version to address a CVE

v0.3.2

Recent JWX possibly broken, quote go version

Assets 2

11 Jun 14:09

yaronf

v0.3.1

c7bb950

Documentation fixes

v0.3.1

Documentation fixes

Assets 2

11 Jun 11:33

yaronf

v0.3.0

cd85e26

Key ID no longer mandatory

Breaking change: keyid is no longer a Signer/Verifier parameter. Instead if it is needed, include it in SignConfig/VerifyConfig.

Assets 2

25 Mar 17:06

yaronf

v0.2.2

fb1602e

Normalize path for @request-target

v0.2.2

Normalize an empty path

Assets 2

08 Mar 23:52

yaronf

v0.2.1

261f29c

Bump JWX library

No change other than addressing CVE-2024-21319 (which does not apply to our code).

Assets 2

15 Feb 10:54

yaronf

v0.2.0

4216194

RFC 9421

Full implementation of the RFC, including test cases.

Assets 2

27 May 15:17

yaronf

v0.1.16

08e7c57

Draft -17

Draft -17 made an important change re: encoding of query parameters.

Assets 2

27 Nov 22:15

yaronf

v0.1.15

caa3906

Renamed signature context

v0.1.15

Bump GH actions

Assets 2

22 Sep 08:12

yaronf

v0.1.14

08cd0bd

Draft -12

Binary sequences
Signature context
Updated test vectors, including message transformations
New ECDSA variant
Improved parameter validation on signing

Full Changelog: v0.1.13...v0.1.14

Assets 2

Releases: yaronf/httpsign

Alternative verification API

Uh oh!

Bump JWX and Go version to address a CVE

Uh oh!

Documentation fixes

Uh oh!

Key ID no longer mandatory

Uh oh!

Normalize path for @request-target

Uh oh!

Bump JWX library

Uh oh!

RFC 9421

Uh oh!

Draft -17

Uh oh!

Renamed signature context

Uh oh!

Draft -12

Uh oh!