Add x5c header key finder #338
Merged
Commits on Dec 28, 2021
-
This validates the certificate chain in accordance with RFC 5280, as described in RFC 7515 section 4.1.6. To use this in your app, here are a couple of notes: - you will want to cache the relevant CRL file(s) and make sure the cache is expired by the OpenSSL::X509::CRL#next_update timestamp - in case you need to dynamically extract the CRL distribution point URIs from the x5c certificates, it is possible to use the X5cKeyFinder class directly in the keyfinder block argument passed to JWT.decode
-
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.