Skip to content

Commit

Permalink
refactor!: default dPoPSigningAlgValues changed
Browse files Browse the repository at this point in the history 
BREAKING CHANGE: Default allowed DPoP signing algorithms are now just ES256 and EdDSA. RSA algorithms not allowed by default. This can be reverted using the `enabledJWA.dPoPSigningAlgValues` configuration option.
  • Loading branch information
@panva
panva committed Dec 1, 2022
1 parent d41bb0f commit 9859969
Show file tree
Hide file tree
Showing 2 changed files with 1 addition and 3 deletions.
2 changes: 0 additions & 2 deletions docs/README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3107,8 +3107,6 @@ JWS "alg" Algorithm values the provider supports to verify signed DPoP proof JWT
_**default value**_:
```js
[
'RS256',
'PS256',
'ES256',
'EdDSA'
]
Expand Down
2 changes: 1 addition & 1 deletion lib/helpers/defaults.js
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2663,7 +2663,7 @@ function makeDefaults() {
* ```
*/
dPoPSigningAlgValues: [
'RS256', 'PS256', 'ES256', 'EdDSA',
'ES256', 'EdDSA',
],
},
};
Expand Down

0 comments on commit 9859969

Please sign in to comment.