v3.0.6

Updated library to compare JWT against all known certificates to ensure that we're verifying the JWT with the correct cert.

v3.0.5

Catch the case where cache-control header may not exist

v3.0.4

To make CloudWatch logs prettier, we now:

• Explicitly use \n for newlines when calling console.error
• Prepend console.error messages with [ByuJWT]

v3.0.3

• Update typedefs to show that the middleware adds req.verifiedJWTs
• Add CI

v3.0.2

Add link to new migration guide

v3.0.1

Note how much of a non-issue the openssl change is

v3.0.0

(PR #25)

We no longer convert from .pem format to raw RSA public keys

• No longer requires separate openssl executable
• BREAKING: Removed getPublicKey in favor of getPem
• BREAKING: This means we use the openssl shipped with Node instead of a separate executable on the system

A migration guide is available

v2.1.4

Require TOKEN env var for tests rather than pulling from AWS

v2.1.3

Add .npmrc to stop generating package-lock.json

v2.1.2

Update devDependency mocha from ^6.2.2 to ^7.0.1.
The only relevant breaking change was a drop for Node 6 support, but this module already requires Node 8+.