Matthew Wild <mwild1@gmail.com> [Mon, 11 Jul 2022 14:10:07 +0100] rev 12716
util.paseto: Add tests based on official PASETO test vectors
Unfortunately there are only a few relevant ones, but they did help catch some
bugs.
Matthew Wild <mwild1@gmail.com> [Mon, 11 Jul 2022 14:09:16 +0100] rev 12715
util.paseto: Export similar API to new util.jwt for ease and consistency
Matthew Wild <mwild1@gmail.com> [Mon, 11 Jul 2022 14:08:55 +0100] rev 12714
util.paseto: Error early on invalid keys
Matthew Wild <mwild1@gmail.com> [Mon, 11 Jul 2022 13:51:39 +0100] rev 12713
util.paseto: Fix to decode footer before comparison
Matthew Wild <mwild1@gmail.com> [Mon, 11 Jul 2022 13:49:47 +0100] rev 12712
mod_http_file_share: Switch to new util.jwt API
Some changes/improvements in this commit:
- Default token lifetime is now 3600s (from 300s)
- Tokens are only validated once per upload
- "iat"/"exp" are handled automatically by util.jwt
Matthew Wild <mwild1@gmail.com> [Mon, 11 Jul 2022 13:43:01 +0100] rev 12711
util.jwt: Add new init() convenience method to obtain both signer and verifier
Matthew Wild <mwild1@gmail.com> [Mon, 11 Jul 2022 13:42:08 +0100] rev 12710
util.jwt: Consolidate payload parsing, ensure it's always a valid object
Matthew Wild <mwild1@gmail.com> [Mon, 11 Jul 2022 13:28:29 +0100] rev 12709
util.jwt: Provide built-in token expiry support (defaults to 3600s lifetime)
To avoid every user of the library needing to add and verify expiry info, this
is now handled by util.jwt itself (if not overridden or disabled).
Issuing tokens that are valid forever is bad practice and rarely desired, and
the default token lifetime is now 3600s (1 hour).
Matthew Wild <mwild1@gmail.com> [Sat, 02 Jul 2022 15:29:04 +0100] rev 12708
util.jwt: All the algorithms (+ all the tests!)
Except 'none'. Not implementing that one.
Matthew Wild <mwild1@gmail.com> [Sat, 02 Jul 2022 15:27:44 +0100] rev 12707
util.crypto: tests: fix some tests that didn't do much (thanks luacheck!)