-
Notifications
You must be signed in to change notification settings - Fork 186
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
A128CBC+HS256 support in parity with Java's Nimbus JOSE + JWT #222
Comments
Hi @patrickmcgannon , actually library supports little bit more than
|
Thanks for pointing out that section. That's a great feature. I don't know if Given this:
Do you think I should try to re-implement a part of the implementation using the settings you mentioned above? |
Ah, indeed it was different enc algo with different KDF function. Not an alias. You can find details here: https://datatracker.ietf.org/doc/html/draft-ietf-jose-json-web-encryption-08#appendix-A.4 But really, it was deprecated 10 years ago. You seriously want it? |
Hi,
I have read in a lot of issues that
jose-jwt
strives to a level of support similar to that of the Java packagenimbus-jose-jwt
.We are porting from Java to C# and I realized that the JWE token that we have always received from a partner uses
A128CBC+HS256
which is not supported by jose-jwt, as it was deprecated in lieu of the similarA128CBC-HS256
. **Here is our Java code, for reference:
I was wondering if there is either:
a. A way to workaround this limitation in jose-jwt since the algorithm isn't all that different from
A128CBC-HS256
, but obviously those differences are very low-level.b. A chance of supporting
A128CBC+HS256
c. A recommendation for finding support elsewhere.
Error code for issue tracking:
InvalidAlgorithmException: JWE algorithm is not supported: A128CBC+HS256
.and here is the Header for the encrypted token:
Thanks!
** From a spec regarding their differences:
The text was updated successfully, but these errors were encountered: