Skip to content

Jwk Set Uri Nimbus Jwt Decoder builders should take SignatureAlgorithm #7270

New issue
New issue
Closed
Closed
Jwk Set Uri Nimbus Jwt Decoder builders should take SignatureAlgorithm#7270
Assignees
jzheaux
Labels
in: oauth2An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose)type: enhancementA general enhancement
Milestone
5.2.0.RC1
@jzheaux

Description

@jzheaux
jzheaux
opened on Aug 16, 2019

Until Resource Server supports decrypting JWK sets, it doesn't make sense to take algorithms that imply non-public information being sent over via the JWK Set Uri.

As such, JwkSetUriJwtDecoderBuilder and JwkSetUriReactiveJwtDecoderBuilder should only take SignatureAlgorithm. This can be widened later in the future as needed.

Metadata

Metadata

Assignees

Labels

in: oauth2An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose)type: enhancementA general enhancement

Type

No type

Projects

No projects

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions