Skip to content

0.12.6

Latest
Compare
Choose a tag to compare
@lhazlewood lhazlewood released this 21 Jun 20:24
· 2 commits to master since this release

This patch release:

  • Ensures that after successful JWS signature verification, an application-configured Base64Url Decoder output is
    used to construct a Jws instance (instead of JJWT's default decoder). See #947.
  • Fixes a decompression memory leak in concurrent/multi-threaded environments introduced in 0.12.0 when decompressing JWTs with a zip header of GZIP. See #949.
  • Upgrades BouncyCastle to 1.78 via #941
  • Usees Acsiidoc as README format by @bdemers in #777
  • Allows using GenericSecret for HmacSHA* algorithms by @mnylen in #935
  • Enables JWE arbitrary content compression by @mnylen in #937

New Contributors

Full Changelog: 0.12.5...0.12.6