jose - npm Package Compare versions

Comparing version 1.24.1 to 1.25.0

CHANGELOG.md

		@@ -5,2 +5,11 @@ # Change Log

		# [1.25.0](https://github.com/panva/jose/compare/v1.24.1...v1.25.0) (2020-03-11)


		### Features

		* update JWT Profile for OAuth 2.0 Access Tokens to latest draft ([bc77a15](https://github.com/panva/jose/commit/bc77a15fab10f8a29561ef667a923b2f074fa9b3))



		## [1.24.1](https://github.com/panva/jose/compare/v1.24.0...v1.24.1) (2020-03-05)
		@@ -7,0 +16,0 @@

lib/jwt/verify.js

		@@ -208,13 +208,6 @@ const isObject = require('../help/is_object')

		if (profile === ATJWT) {
		// reject if it contains additional audiences that are not known aliases of the resource
		// indicator of the current resource server
		audOption = new Set(audOption)
		return audPayload.every(Set.prototype.has.bind(audOption))
		} else {
		// Each principal intended to process the JWT MUST
		// identify itself with a value in the audience claim
		audPayload = new Set(audPayload)
		return audOption.some(Set.prototype.has.bind(audPayload))
		}
		// Each principal intended to process the JWT MUST
		// identify itself with a value in the audience claim
		audPayload = new Set(audPayload)
		return audOption.some(Set.prototype.has.bind(audPayload))
		}
		@@ -221,0 +214,0 @@

package.json

		{
		"name": "jose",
		"version": "1.24.1",
		"version": "1.25.0",
		"description": "JSON Web Almost Everything - JWA, JWS, JWE, JWK, JWT, JWKS for Node.js with minimal dependencies",
		@@ -5,0 +5,0 @@ "keywords": [

New alerts