Skip to content
This repository has been archived by the owner on May 21, 2022. It is now read-only.

Release 3.0.0 #77

Merged
merged 66 commits into from
Jun 16, 2016
Merged

Release 3.0.0 #77

merged 66 commits into from
Jun 16, 2016

Conversation

dgrijalva
Copy link
Owner

@dgrijalva dgrijalva commented Jul 20, 2015
edited
Loading

See #75

  • Drop support for []byte when using RSA signing methods
  • Support for custom Claim types
  • Migrate ParseFromRequest to a subpackage.
  • Modify request parsing API to provide more flexibility.
  • Updated release notes and documentation
  • Decide on landing added support for leeway #139 (leeway and validation options)

itsjamie and others added 15 commits July 13, 2015 16:14
@itsjamie
Switch to Claims interface, tests pass.
94cd619
@itsjamie
Add validation error bit for generic validation error.
fa9a0b8
@itsjamie
Added a few new methods to use custom Claims structs.
febded4 
Must implement interface Claims, which means there is a Valid method.
@itsjamie
Structured Claims object!
44718f8 
Only verify claim if it isn't a default value.

The alternative here would be to use pointers in the Claims structure then we
would know which were nil, or if they were explicitly set to zero in the
claim section

Updated MapClaim implementation to check for existance of keys before
using them.

If they don't exists, validation functions simply return true.
@itsjamie
Going through and updating tests to pass.
a33fdf9 
Still need to add a test that utilizes the defaults of the structured
object.

Update Cmdline app

Update package reference for PR.

Update examples
@itsjamie
Update, use MapClaim by default.
dfdafab
@itsjamie
Update Claimer -> Claims, update Claims struct -> StandardClaims.
a6f24f4
@itsjamie
Adding additional bits to mask for various validation errors.
3eddded
@itsjamie
Recommended changes from PR. Plus some documentation.
ec042ac
@itsjamie
Update README with some migration information.
b00e282
@itsjamie
Add example to migration showing new usage of Parse(WithClaims)
15b4825
@dgrijalva
drop support for []byte keys in RSA signing methods
011d5bb
@dgrijalva
added rsa change to version history
bcde77e
@itsjamie
Moving claim information into claims.go
22cba44
@itsjamie
Changed default "New" to use NewWithClaims internally.
aa6ac13
@dgrijalva dgrijalva added this to the 3.0.0 milestone Jul 22, 2015
@dgrijalva dgrijalva mentioned this pull request Aug 18, 2015
Closed
@dgrijalva dgrijalva mentioned this pull request Aug 18, 2015
Closed
@dgrijalva
Copy link
Owner Author

This is just about ready to land. As soon as #137 has been looked at, we can complete the README updates and ship it. Any remaining issues to be resolved?

@StephanDollberg
Copy link

Has the issue I mentioned here now been fixed? #73

Thanks!

@dgrijalva
Copy link
Owner Author

@StephanDollberg That thread is super long, but I believe we have addressed all the issues. There are several example uses you can review to see usage.

@StephanDollberg
Copy link

StephanDollberg commented Jun 7, 2016
edited
Loading

Oh yeah sorry. It was the issue with https://github.com/dgrijalva/jwt-go/blob/release_3_0_0/token.go#L33 having to return a pointer to MapClaims.

@dgrijalva
Copy link
Owner Author

That has been solved, though it's not super elegant. I ended up special casing it. I think it's ok, but we can watch it.

-dave

On Jun 7, 2016, at 11:23 AM, Stephan Dollberg notifications@github.com wrote:

Oh yeah sorry. It was the issue with https://github.com/dgrijalva/jwt-go/blob/release_3_0_0/token.go#L33 having to return a pointer to MapClaims.


You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub, or mute the thread.

@Noah-Huppert
Copy link

Anything I can do to help push 3.0 out?

@dgrijalva
Copy link
Owner Author

There are no remaining issues for 3.0.0. Shall we ship it (finally)?

@dgrijalva
Copy link
Owner Author

The only thing that got left out is support for leeway. The documentation says about it:

Implementers MAY provide for some small leeway, usually no more than a few minutes, to account for clock skew

I think we can add support for this by modifying Claims. See #131. Does anyone want to make the case for this in 3.0?

@dgrijalva
Copy link
Owner Author

Actually, the change proposed in #131 would enable things like iss validation, etc in the future. Let me see how hard it would be...

@dgrijalva
Copy link
Owner Author

See #139

@dgrijalva
Copy link
Owner Author

Let's wait on #139. Seems like there are several viable approaches. If you need leeway support today, see #131 for an easy workaround.

@dgrijalva dgrijalva mentioned this pull request Jun 16, 2016
Closed
@dgrijalva dgrijalva merged commit d2709f9 into master Jun 16, 2016
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
3.0.0
Development

Successfully merging this pull request may close these issues.
7 participants
@dgrijalva @itsjamie @danilobuerger @StephanDollberg @Noah-Huppert @ivoviz @martinlindhe