feat: verifyJWT against nbf if present but use iat if not #45
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Codecov Report
@@ Coverage Diff @@
## develop #45 +/- ##
===========================================
+ Coverage 96.65% 96.71% +0.06%
===========================================
Files 7 7
Lines 209 213 +4
Branches 51 52 +1
===========================================
+ Hits 202 206 +4
Misses 7 7
Continue to review full report at Codecov.
|
mirceanis
requested changes
Aug 13, 2019
mirceanis
reviewed
Aug 14, 2019
mirceanis
reviewed
Aug 14, 2019
mi-xu
added a commit
that referenced
this pull request
Aug 15, 2019
* feat: verifyJWT against nbf if present but use iat if not * fix: apply skew in the opposite direction when checking exp * test: make some test inputs more clear * test: use hard coded JWTs to test validFrom teimstamp * style: remove unused constants
mi-xu
added a commit
that referenced
this pull request
Aug 26, 2019
* change iat to nbf * feat: Set `iat` timestamp by default instead of `nbf` (#43) * refactor: change createJWT to set iat by default instead of nbf * test: add tests for iat behavior in createJWT * feat: do not set iat if value in payload is null * fix: set payload.iat to undefined instead of null to omit from JWT * fix code style for division * fix code style BREAKING CHANGE: expiresIn option passed to createJWT now calculates exp from nbf instead of iat. * chore: add release automation configuration (#44) * feat: verifyJWT against nbf if present but use iat if not (#45) * feat: verifyJWT against nbf if present but use iat if not * fix: apply skew in the opposite direction when checking exp * test: make some test inputs more clear * test: use hard coded JWTs to test validFrom teimstamp * style: remove unused constants * feat: upgrade to local did resolver (#48) * feat: upgrade to local did resolver * refactor: export resolver so it can be mocked in tests * wip: refactor tests to remove dependency on uport and nacl did resolvers * test: fix tests to verify pregenerated JWT * test: fix hard coded jwts for validFrom timestamp tests * test: fix remaining * test: add tests for normalizeDID * refactor: upgrade ethr-did-resolver to fix imports * refactor: rename variables and clean up async syntax for tests
localredhead
pushed a commit
that referenced
this pull request
Aug 28, 2019
* change iat to nbf * feat: Set `iat` timestamp by default instead of `nbf` (#43) * refactor: change createJWT to set iat by default instead of nbf * test: add tests for iat behavior in createJWT * feat: do not set iat if value in payload is null * fix: set payload.iat to undefined instead of null to omit from JWT * fix code style for division * fix code style BREAKING CHANGE: expiresIn option passed to createJWT now calculates exp from nbf instead of iat. * chore: add release automation configuration (#44) * feat: verifyJWT against nbf if present but use iat if not (#45) * feat: verifyJWT against nbf if present but use iat if not * fix: apply skew in the opposite direction when checking exp * test: make some test inputs more clear * test: use hard coded JWTs to test validFrom teimstamp * style: remove unused constants * feat: upgrade to local did resolver (#48) * feat: upgrade to local did resolver * refactor: export resolver so it can be mocked in tests * wip: refactor tests to remove dependency on uport and nacl did resolvers * test: fix tests to verify pregenerated JWT * test: fix hard coded jwts for validFrom timestamp tests * test: fix remaining * test: add tests for normalizeDID * refactor: upgrade ethr-did-resolver to fix imports * refactor: rename variables and clean up async syntax for tests
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR adds support for checking the current time against the
nbffield when verifying a JWT. It prioritizes the presence ofnbfin order to comply with W3C VC standards, but falls back toiatwhen it is absent in order to maintain support for legacy format JWTs.This completes #167881436 on pivotal
Test scenarios have been added to validate the behavior for all combinations of
nbfandiatfields being part of the JWT or not.