Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More
Socket
Sign inDemoInstall
Socket
Sign inDemoInstall

oauth4webapi

Package Overview
Dependencies
Maintainers
1
Versions
51
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

oauth4webapi - npm Package Versions

1
46

2.0.5

Diff
panva
 published 2.0.5 •

Changelog

Source

2.0.5 (2022-12-11)

2.0.4

Diff
panva
 published 2.0.4 •

Changelog

Source

2.0.4 (2022-11-27)

Refactor

  • weak maps instead of symbols (e551edc)

2.0.3

Diff
panva
 published 2.0.3 •

Changelog

Source

2.0.3 (2022-11-25)

Fixes

  • omit zealous response cloning() to reduce edge compute memory bills (a785223), closes #37

2.0.2

Diff
panva
 published 2.0.2 •

2.0.1

Diff
panva
 published 2.0.1 •

Changelog

Source

2.0.1 (2022-11-21)

Fixes

  • claims parameter encoding in issued request objects (3eb165a)

Performance

  • cache public DPoP CryptoKey's JWK representation for re-use (2858d06)

2.0.0

Diff
panva
 published 2.0.0 •

Changelog

Source

2.0.0 (2022-11-20)

⚠ BREAKING CHANGES

  • Use the TLS server validation in processAuthorizationCodeOpenIDResponse to validate the issuer instead of checking the ID Token's signature. The function's options argument was removed.
  • Use the TLS server validation in processDeviceCodeResponse to validate the issuer instead of checking the optional ID Token's signature. The function's options argument was removed.
  • Use the TLS server validation in processIntrospectionResponse to validate the issuer instead of checking the optional JWT Introspection Response signature. The function's options argument was removed.
  • Use the TLS server validation in processRefreshTokenResponse to validate the issuer instead of checking the optional ID Token's signature. The function's options argument was removed.
  • Use the TLS server validation in processUserInfoResponse to validate the issuer instead of checking the optional JWT UserInfo Response signature. The function's options argument was removed.
  • PAR w/ DPoP no longer automatically adds dpop_jkt to the authorization request.
  • Removed calculateJwkThumbprint function export.
  • Removed jwksRequest function export.
  • Removed processJwksResponse function export.

Refactor

  • remove ignored and unused exports (4a545df)
  • use TLS server validation instead of jwt signature validations (f728110)

1.4.1

Diff
panva
 published 1.4.1 •

Changelog

Source

1.4.1 (2022-11-20)

Refactor

  • deno: add mod.ts to deno.land/x (0778278)
  • use RsaHashedKeyAlgorithm in checkRsaKeyAlgorithm (94aa31c)

1.4.0

Diff
panva
 published 1.4.0 •

Changelog

Source

1.4.0 (2022-11-08)

Features

  • add bun as a supported runtime (707efd1)

1.3.0

Diff
panva
 published 1.3.0 •

Changelog

Source

1.3.0 (2022-10-31)

Features

  • allow to skip JWT signature validation on select responses (44d9114)

1.2.2

Diff
panva
 published 1.2.2 •

Changelog

Source

1.2.2 (2022-10-20)

Refactor

  • add a type check on AbortSignal (b013fef)
  • align argument and function names in assert functions (8ea65f6)
  • update "as" error messages (3e894f5)
1
46
SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap
  • Changelog

About

Packages

npm

Go

Maven

PyPI

Rubygems

Stay in touch

Get open source security insights delivered straight into your inbox.

  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc