Skip to content
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: smallrye/smallrye-jwt
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: 4.5.3
Choose a base ref
...
head repository: smallrye/smallrye-jwt
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: main
Choose a head ref

Commits on Jun 17, 2024

  1. Copy the full SHA
    8ac2ed6 View commit details

Commits on Jul 4, 2024

  1. Bump io.smallrye:smallrye-parent from 44 to 45 (#807)

    Bumps [io.smallrye:smallrye-parent](https://github.com/smallrye/smallrye-parent) from 44 to 45.
    - [Release notes](https://github.com/smallrye/smallrye-parent/releases)
    - [Commits](https://github.com/smallrye/smallrye-parent/commits)
    
    ---
    updated-dependencies:
    - dependency-name: io.smallrye:smallrye-parent
      dependency-type: direct:production
      update-type: version-update:semver-major
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Jul 4, 2024
    Copy the full SHA
    2ecd399 View commit details

Commits on Jul 18, 2024

  1. Bump org.jboss.galleon:galleon-maven-plugin (#809)

    Bumps org.jboss.galleon:galleon-maven-plugin from 6.0.1.Final to 6.0.2.Final.
    
    ---
    updated-dependencies:
    - dependency-name: org.jboss.galleon:galleon-maven-plugin
      dependency-type: direct:production
      update-type: version-update:semver-patch
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Jul 18, 2024
    Copy the full SHA
    e1dfd73 View commit details

Commits on Aug 13, 2024

  1. Bump org.eclipse.parsson:parsson from 1.1.6 to 1.1.7 (#810)

    Bumps [org.eclipse.parsson:parsson](https://github.com/eclipse-ee4j/parsson) from 1.1.6 to 1.1.7.
    - [Release notes](https://github.com/eclipse-ee4j/parsson/releases)
    - [Commits](eclipse-ee4j/parsson@1.1.6...1.1.7)
    
    ---
    updated-dependencies:
    - dependency-name: org.eclipse.parsson:parsson
      dependency-type: direct:development
      update-type: version-update:semver-patch
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Aug 13, 2024
    Copy the full SHA
    f7e20d9 View commit details

Commits on Aug 14, 2024

  1. Bump org.hamcrest:hamcrest-core from 2.2 to 3.0 (#811)

    Bumps [org.hamcrest:hamcrest-core](https://github.com/hamcrest/JavaHamcrest) from 2.2 to 3.0.
    - [Release notes](https://github.com/hamcrest/JavaHamcrest/releases)
    - [Changelog](https://github.com/hamcrest/JavaHamcrest/blob/master/CHANGES.md)
    - [Commits](hamcrest/JavaHamcrest@v2.2...v3.0)
    
    ---
    updated-dependencies:
    - dependency-name: org.hamcrest:hamcrest-core
      dependency-type: direct:development
      update-type: version-update:semver-major
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Aug 14, 2024
    Copy the full SHA
    c927220 View commit details

Commits on Aug 15, 2024

  1. Copy the full SHA
    d4c2714 View commit details

Commits on Aug 16, 2024

  1. Copy the full SHA
    64becff View commit details

Commits on Aug 19, 2024

  1. Copy the full SHA
    0798f11 View commit details

Commits on Aug 20, 2024

  1. Copy the full SHA
    5cde65d View commit details
  2. Copy the full SHA
    57b790d View commit details

Commits on Aug 26, 2024

  1. Copy the full SHA
    c84c764 View commit details
  2. Bump org.jboss.galleon:galleon-maven-plugin (#823)

    Bumps org.jboss.galleon:galleon-maven-plugin from 6.0.2.Final to 6.0.3.Final.
    
    ---
    updated-dependencies:
    - dependency-name: org.jboss.galleon:galleon-maven-plugin
      dependency-type: direct:production
      update-type: version-update:semver-patch
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Aug 26, 2024
    Copy the full SHA
    8b0fc23 View commit details

Commits on Aug 28, 2024

  1. Bump version.mokito from 5.12.0 to 5.13.0 (#824)

    Bumps `version.mokito` from 5.12.0 to 5.13.0.
    
    Updates `org.mockito:mockito-core` from 5.12.0 to 5.13.0
    - [Release notes](https://github.com/mockito/mockito/releases)
    - [Commits](mockito/mockito@v5.12.0...v5.13.0)
    
    Updates `org.mockito:mockito-junit-jupiter` from 5.12.0 to 5.13.0
    - [Release notes](https://github.com/mockito/mockito/releases)
    - [Commits](mockito/mockito@v5.12.0...v5.13.0)
    
    ---
    updated-dependencies:
    - dependency-name: org.mockito:mockito-core
      dependency-type: direct:development
      update-type: version-update:semver-minor
    - dependency-name: org.mockito:mockito-junit-jupiter
      dependency-type: direct:development
      update-type: version-update:semver-minor
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Aug 28, 2024
    Copy the full SHA
    b0852f2 View commit details

Commits on Aug 29, 2024

  1. Copy the full SHA
    e043c60 View commit details
  2. Copy the full SHA
    706d691 View commit details
  3. Copy the full SHA
    675798a View commit details

Commits on Sep 15, 2024

  1. Bump org.wildfly.plugins:wildfly-maven-plugin from 5.0.0.Final to 5.0…

    ….1.Final (#828)
    
    * Bump org.wildfly.plugins:wildfly-maven-plugin
    
    Bumps [org.wildfly.plugins:wildfly-maven-plugin](https://github.com/wildfly/wildfly-maven-plugin) from 5.0.0.Final to 5.0.1.Final.
    - [Release notes](https://github.com/wildfly/wildfly-maven-plugin/releases)
    - [Commits](wildfly/wildfly-maven-plugin@5.0.0.Final...5.0.1.Final)
    
    ---
    updated-dependencies:
    - dependency-name: org.wildfly.plugins:wildfly-maven-plugin
      dependency-type: direct:production
      update-type: version-update:semver-patch
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    
    * Update build.yml to use action@v4
    
    ---------
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    Co-authored-by: Sergey Beryozkin <sberyozkin@gmail.com>
    dependabot[bot] and sberyozkin authored Sep 15, 2024
    Copy the full SHA
    28da99b View commit details
  2. Bump io.smallrye:smallrye-parent from 45 to 46 (#829)

    Bumps [io.smallrye:smallrye-parent](https://github.com/smallrye/smallrye-parent) from 45 to 46.
    - [Release notes](https://github.com/smallrye/smallrye-parent/releases)
    - [Commits](https://github.com/smallrye/smallrye-parent/commits)
    
    ---
    updated-dependencies:
    - dependency-name: io.smallrye:smallrye-parent
      dependency-type: direct:production
      update-type: version-update:semver-major
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Sep 15, 2024
    Copy the full SHA
    bf989e1 View commit details

Commits on Sep 25, 2024

  1. Bump io.smallrye.testing:smallrye-testing-bom-tck from 2.3.0 to 2.3.1 (

    …#830)
    
    Bumps [io.smallrye.testing:smallrye-testing-bom-tck](https://github.com/smallrye/smallrye-testing) from 2.3.0 to 2.3.1.
    - [Release notes](https://github.com/smallrye/smallrye-testing/releases)
    - [Commits](smallrye/smallrye-testing@2.3.0...2.3.1)
    
    ---
    updated-dependencies:
    - dependency-name: io.smallrye.testing:smallrye-testing-bom-tck
      dependency-type: direct:production
      update-type: version-update:semver-patch
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Sep 25, 2024
    Copy the full SHA
    7a605c0 View commit details
  2. Bump io.smallrye.testing:smallrye-testing-bom from 2.3.0 to 2.3.1 (#831)

    Bumps [io.smallrye.testing:smallrye-testing-bom](https://github.com/smallrye/smallrye-testing) from 2.3.0 to 2.3.1.
    - [Release notes](https://github.com/smallrye/smallrye-testing/releases)
    - [Commits](smallrye/smallrye-testing@2.3.0...2.3.1)
    
    ---
    updated-dependencies:
    - dependency-name: io.smallrye.testing:smallrye-testing-bom
      dependency-type: direct:production
      update-type: version-update:semver-patch
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Sep 25, 2024
    Copy the full SHA
    f3b12df View commit details

Commits on Sep 30, 2024

  1. Bump version.mokito from 5.13.0 to 5.14.0 (#832)

    Bumps `version.mokito` from 5.13.0 to 5.14.0.
    
    Updates `org.mockito:mockito-core` from 5.13.0 to 5.14.0
    - [Release notes](https://github.com/mockito/mockito/releases)
    - [Commits](mockito/mockito@v5.13.0...v5.14.0)
    
    Updates `org.mockito:mockito-junit-jupiter` from 5.13.0 to 5.14.0
    - [Release notes](https://github.com/mockito/mockito/releases)
    - [Commits](mockito/mockito@v5.13.0...v5.14.0)
    
    ---
    updated-dependencies:
    - dependency-name: org.mockito:mockito-core
      dependency-type: direct:development
      update-type: version-update:semver-minor
    - dependency-name: org.mockito:mockito-junit-jupiter
      dependency-type: direct:development
      update-type: version-update:semver-minor
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Sep 30, 2024
    Copy the full SHA
    ec14c13 View commit details

Commits on Oct 1, 2024

  1. Bump version.mokito from 5.14.0 to 5.14.1 (#833)

    Bumps `version.mokito` from 5.14.0 to 5.14.1.
    
    Updates `org.mockito:mockito-core` from 5.14.0 to 5.14.1
    - [Release notes](https://github.com/mockito/mockito/releases)
    - [Commits](mockito/mockito@v5.14.0...v5.14.1)
    
    Updates `org.mockito:mockito-junit-jupiter` from 5.14.0 to 5.14.1
    - [Release notes](https://github.com/mockito/mockito/releases)
    - [Commits](mockito/mockito@v5.14.0...v5.14.1)
    
    ---
    updated-dependencies:
    - dependency-name: org.mockito:mockito-core
      dependency-type: direct:development
      update-type: version-update:semver-patch
    - dependency-name: org.mockito:mockito-junit-jupiter
      dependency-type: direct:development
      update-type: version-update:semver-patch
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Oct 1, 2024
    Copy the full SHA
    2361bd5 View commit details

Commits on Oct 16, 2024

  1. Fix CI Build

    radcortez committed Oct 16, 2024
    Copy the full SHA
    a73e7e5 View commit details
  2. Fix Sonar badge

    radcortez committed Oct 16, 2024
    Copy the full SHA
    e1fa77b View commit details

Commits on Oct 17, 2024

  1. Bump version.mokito from 5.14.1 to 5.14.2 (#834)

    Bumps `version.mokito` from 5.14.1 to 5.14.2.
    
    Updates `org.mockito:mockito-core` from 5.14.1 to 5.14.2
    - [Release notes](https://github.com/mockito/mockito/releases)
    - [Commits](mockito/mockito@v5.14.1...v5.14.2)
    
    Updates `org.mockito:mockito-junit-jupiter` from 5.14.1 to 5.14.2
    - [Release notes](https://github.com/mockito/mockito/releases)
    - [Commits](mockito/mockito@v5.14.1...v5.14.2)
    
    ---
    updated-dependencies:
    - dependency-name: org.mockito:mockito-core
      dependency-type: direct:development
      update-type: version-update:semver-patch
    - dependency-name: org.mockito:mockito-junit-jupiter
      dependency-type: direct:development
      update-type: version-update:semver-patch
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Oct 17, 2024
    Copy the full SHA
    97c151f View commit details
  2. Copy the full SHA
    74638c4 View commit details

Commits on Nov 9, 2024

  1. Copy the full SHA
    e7b0c90 View commit details

Commits on Nov 14, 2024

  1. Bump org.jboss.galleon:galleon-maven-plugin (#838)

    Bumps org.jboss.galleon:galleon-maven-plugin from 6.0.3.Final to 6.0.4.Final.
    
    ---
    updated-dependencies:
    - dependency-name: org.jboss.galleon:galleon-maven-plugin
      dependency-type: direct:production
      update-type: version-update:semver-patch
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Nov 14, 2024
    Copy the full SHA
    6f2ed9b View commit details

Commits on Nov 15, 2024

  1. Copy the full SHA
    0d578de View commit details
  2. Copy the full SHA
    71d80a8 View commit details
  3. Copy the full SHA
    a8f50f1 View commit details
  4. Copy the full SHA
    a04ad97 View commit details
  5. Copy the full SHA
    8e7082e View commit details
  6. Copy the full SHA
    74abfad View commit details

Commits on Dec 18, 2024

  1. Bump org.wildfly.plugins:wildfly-maven-plugin (#843)

    Bumps [org.wildfly.plugins:wildfly-maven-plugin](https://github.com/wildfly/wildfly-maven-plugin) from 5.0.1.Final to 5.1.0.Final.
    - [Release notes](https://github.com/wildfly/wildfly-maven-plugin/releases)
    - [Commits](wildfly/wildfly-maven-plugin@5.0.1.Final...v5.1.0.Final)
    
    ---
    updated-dependencies:
    - dependency-name: org.wildfly.plugins:wildfly-maven-plugin
      dependency-type: direct:production
      update-type: version-update:semver-minor
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Dec 18, 2024
    Copy the full SHA
    a3cd541 View commit details

Commits on Dec 22, 2024

  1. Bump org.wildfly.plugins:wildfly-maven-plugin (#844)

    Bumps [org.wildfly.plugins:wildfly-maven-plugin](https://github.com/wildfly/wildfly-maven-plugin) from 5.1.0.Final to 5.1.1.Final.
    - [Release notes](https://github.com/wildfly/wildfly-maven-plugin/releases)
    - [Commits](wildfly/wildfly-maven-plugin@v5.1.0.Final...v5.1.1.Final)
    
    ---
    updated-dependencies:
    - dependency-name: org.wildfly.plugins:wildfly-maven-plugin
      dependency-type: direct:production
      update-type: version-update:semver-patch
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Dec 22, 2024
    Copy the full SHA
    6c7f9ee View commit details

Commits on Jan 13, 2025

  1. Bump version.mokito from 5.14.2 to 5.15.2 (#845)

    Bumps `version.mokito` from 5.14.2 to 5.15.2.
    
    Updates `org.mockito:mockito-core` from 5.14.2 to 5.15.2
    - [Release notes](https://github.com/mockito/mockito/releases)
    - [Commits](mockito/mockito@v5.14.2...v5.15.2)
    
    Updates `org.mockito:mockito-junit-jupiter` from 5.14.2 to 5.15.2
    - [Release notes](https://github.com/mockito/mockito/releases)
    - [Commits](mockito/mockito@v5.14.2...v5.15.2)
    
    ---
    updated-dependencies:
    - dependency-name: org.mockito:mockito-core
      dependency-type: direct:development
      update-type: version-update:semver-minor
    - dependency-name: org.mockito:mockito-junit-jupiter
      dependency-type: direct:development
      update-type: version-update:semver-minor
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Jan 13, 2025
    Copy the full SHA
    7ea7cae View commit details

Commits on Jan 22, 2025

  1. Bump org.jboss.resteasy.microprofile:microprofile-rest-client (#847)

    Bumps [org.jboss.resteasy.microprofile:microprofile-rest-client](https://github.com/resteasy/resteasy-microprofile) from 2.1.5.Final to 3.0.1.Final.
    - [Release notes](https://github.com/resteasy/resteasy-microprofile/releases)
    - [Commits](resteasy/resteasy-microprofile@2.1.5.Final...v3.0.1.Final)
    
    ---
    updated-dependencies:
    - dependency-name: org.jboss.resteasy.microprofile:microprofile-rest-client
      dependency-type: direct:development
      update-type: version-update:semver-major
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Jan 22, 2025
    Copy the full SHA
    4459e88 View commit details

Commits on Jan 23, 2025

  1. JWT Auth micro optimization (#841)

    Co-authored-by: Sergey Beryozkin <sberyozkin@gmail.com>
    luneo7 and sberyozkin authored Jan 23, 2025
    Copy the full SHA
    43980f6 View commit details

Commits on Jan 28, 2025

  1. Bump io.smallrye:smallrye-parent from 46 to 47 (#850)

    Bumps [io.smallrye:smallrye-parent](https://github.com/smallrye/smallrye-parent) from 46 to 47.
    - [Release notes](https://github.com/smallrye/smallrye-parent/releases)
    - [Commits](https://github.com/smallrye/smallrye-parent/commits)
    
    ---
    updated-dependencies:
    - dependency-name: io.smallrye:smallrye-parent
      dependency-type: direct:production
      update-type: version-update:semver-major
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Jan 28, 2025
    Copy the full SHA
    330df75 View commit details

Commits on Feb 11, 2025

  1. Bump org.wildfly.plugins:wildfly-maven-plugin (#851)

    Bumps [org.wildfly.plugins:wildfly-maven-plugin](https://github.com/wildfly/wildfly-maven-plugin) from 5.1.1.Final to 5.1.2.Final.
    - [Release notes](https://github.com/wildfly/wildfly-maven-plugin/releases)
    - [Commits](wildfly/wildfly-maven-plugin@v5.1.1.Final...v5.1.2.Final)
    
    ---
    updated-dependencies:
    - dependency-name: org.wildfly.plugins:wildfly-maven-plugin
      dependency-type: direct:production
      update-type: version-update:semver-patch
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Feb 11, 2025
    Copy the full SHA
    80df6fa View commit details

Commits on Feb 18, 2025

  1. Bump org.jboss.galleon:galleon-maven-plugin (#852)

    Bumps org.jboss.galleon:galleon-maven-plugin from 6.0.4.Final to 6.0.5.Final.
    
    ---
    updated-dependencies:
    - dependency-name: org.jboss.galleon:galleon-maven-plugin
      dependency-type: direct:production
      update-type: version-update:semver-patch
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Feb 18, 2025
    Copy the full SHA
    398f50e View commit details
Showing with 740 additions and 222 deletions.
  1. +2 −2 .github/project.yml
  2. +27 −10 .github/workflows/build.yml
  3. +18 −0 .github/workflows/prepare-release.yml
  4. +41 −0 .github/workflows/publish-tck.yml
  5. +32 −61 .github/workflows/release.yml
  6. +1 −1 .github/workflows/{pre-release.yml → review-release.yml}
  7. +17 −0 .github/workflows/update-milestone.yml
  8. +2 −2 README.adoc
  9. +1 −1 coverage/pom.xml
  10. +2 −0 doc/modules/ROOT/pages/configuration.adoc
  11. +1 −1 implementation/common/pom.xml
  12. +15 −0 implementation/common/src/main/java/io/smallrye/jwt/JsonProviderHolder.java
  13. +3 −4 implementation/common/src/main/java/io/smallrye/jwt/util/KeyUtils.java
  14. +2 −2 implementation/jwt-auth/pom.xml
  15. +5 −6 implementation/jwt-auth/src/main/java/io/smallrye/jwt/JsonUtils.java
  16. +3 −2 implementation/jwt-auth/src/main/java/io/smallrye/jwt/SmallryeJwtUtils.java
  17. +4 −4 implementation/jwt-auth/src/main/java/io/smallrye/jwt/auth/cdi/RawClaimTypeProducer.java
  18. +9 −3 ...ementation/jwt-auth/src/main/java/io/smallrye/jwt/auth/principal/AbstractKeyLocationResolver.java
  19. +1 −1 ...tation/jwt-auth/src/main/java/io/smallrye/jwt/auth/principal/AwsAlbKeyConfigurationValidator.java
  20. +1 −1 implementation/jwt-auth/src/main/java/io/smallrye/jwt/auth/principal/AwsAlbKeyResolver.java
  21. +7 −3 implementation/jwt-auth/src/main/java/io/smallrye/jwt/auth/principal/DefaultJWTCallerPrincipal.java
  22. +4 −5 implementation/jwt-auth/src/main/java/io/smallrye/jwt/auth/principal/DefaultJWTParser.java
  23. +18 −6 implementation/jwt-auth/src/main/java/io/smallrye/jwt/auth/principal/DefaultJWTTokenParser.java
  24. +25 −3 implementation/jwt-auth/src/main/java/io/smallrye/jwt/auth/principal/JWTAuthContextInfo.java
  25. +30 −10 implementation/jwt-auth/src/main/java/io/smallrye/jwt/auth/principal/KeyLocationResolver.java
  26. +4 −0 implementation/jwt-auth/src/main/java/io/smallrye/jwt/auth/principal/PrincipalLogging.java
  27. +13 −1 implementation/jwt-auth/src/main/java/io/smallrye/jwt/auth/principal/X509KeyLocationResolver.java
  28. +8 −0 implementation/jwt-auth/src/main/java/io/smallrye/jwt/config/ConfigLogging.java
  29. +3 −0 implementation/jwt-auth/src/main/java/io/smallrye/jwt/config/ConfigMessages.java
  30. +49 −22 implementation/jwt-auth/src/main/java/io/smallrye/jwt/config/JWTAuthContextInfoProvider.java
  31. +2 −1 implementation/jwt-auth/src/test/java/io/smallrye/jwt/auth/principal/AwsAlbKeyResolverTest.java
  32. +75 −1 implementation/jwt-auth/src/test/java/io/smallrye/jwt/auth/principal/KeyLocationResolverTest.java
  33. +1 −1 implementation/jwt-build/pom.xml
  34. +71 −9 implementation/jwt-build/src/main/java/io/smallrye/jwt/build/Jwt.java
  35. +8 −0 implementation/jwt-build/src/main/java/io/smallrye/jwt/build/impl/JwtBuildUtils.java
  36. +7 −3 implementation/jwt-build/src/main/java/io/smallrye/jwt/build/impl/JwtClaimsBuilderImpl.java
  37. +1 −1 implementation/jwt-build/src/main/java/io/smallrye/jwt/build/impl/JwtEncryptionImpl.java
  38. +8 −0 implementation/jwt-build/src/main/java/io/smallrye/jwt/build/impl/JwtProviderImpl.java
  39. +1 −1 implementation/jwt-build/src/main/java/io/smallrye/jwt/build/impl/JwtSignatureImpl.java
  40. +8 −0 implementation/jwt-build/src/main/java/io/smallrye/jwt/build/spi/JwtProvider.java
  41. +15 −0 implementation/jwt-build/src/test/java/io/smallrye/jwt/build/JwtEncryptTest.java
  42. +14 −0 implementation/jwt-build/src/test/java/io/smallrye/jwt/build/JwtSignEncryptTest.java
  43. +27 −0 implementation/jwt-build/src/test/java/io/smallrye/jwt/build/JwtSignTest.java
  44. +1 −1 implementation/jwt-cdi-extension/pom.xml
  45. +1 −1 implementation/jwt-http-mechanism/pom.xml
  46. +1 −1 implementation/jwt-jaxrs/pom.xml
  47. +1 −1 ...mentation/jwt-jaxrs/src/main/java/io/smallrye/jwt/auth/jaxrs/JWTAuthorizationFilterRegistrar.java
  48. +1 −1 implementation/pom.xml
  49. +30 −7 pom.xml
  50. +1 −1 release/pom.xml
  51. +1 −1 testsuite/basic/pom.xml
  52. +3 −1 testsuite/basic/src/test/java/io/smallrye/jwt/auth/principal/AwsAlbTokenTest.java
  53. +19 −2 testsuite/basic/src/test/java/io/smallrye/jwt/auth/principal/DefaultJWTParserTest.java
  54. +3 −2 testsuite/basic/src/test/java/io/smallrye/jwt/auth/principal/DefaultJWTTokenParserTest.java
  55. +46 −3 testsuite/basic/src/test/java/io/smallrye/jwt/auth/principal/KeyLocationResolverTest.java
  56. +8 −0 testsuite/basic/src/test/resources/ecPrivateKey.jwk
  57. +12 −0 testsuite/basic/src/test/resources/rs256PrivateKey.jwk
  58. +18 −0 testsuite/basic/src/test/resources/signatureJwkSet.jwk
  59. +5 −5 testsuite/pom.xml
  60. +3 −2 testsuite/tck/pom.xml
  61. +0 −25 to-jakarta.sh
4 changes: 2 additions & 2 deletions .github/project.yml
Original file line number Diff line number Diff line change
@@ -1,4 +1,4 @@
name: SmallRye JWT
release:
current-version: 4.5.3
next-version: 4.5.4-SNAPSHOT
current-version: 4.6.1
next-version: 4.6.2-SNAPSHOT
37 changes: 27 additions & 10 deletions .github/workflows/build.yml
Original file line number Diff line number Diff line change
@@ -4,7 +4,6 @@ on:
push:
branches:
- main
- jakarta
paths-ignore:
- '.gitignore'
- 'CODEOWNERS'
@@ -28,21 +27,24 @@ jobs:
name: build with jdk ${{matrix.java}}

steps:
- uses: actions/checkout@v2
- uses: actions/checkout@v4
name: checkout

- uses: actions/setup-java@v1
- uses: actions/setup-java@v4
name: set up jdk ${{matrix.java}}
with:
distribution: 'temurin'
java-version: ${{matrix.java}}
cache: 'maven'
cache-dependency-path: '**/pom.xml'

- name: build with maven
run: mvn -B formatter:validate verify --file pom.xml

- uses: actions/upload-artifact@v2
- uses: actions/upload-artifact@v4
name: tck-report
with:
name: tck-report
name: tck-report-java-${{matrix.java}}
path: testsuite/tck/target/surefire-reports

build-windows:
@@ -53,13 +55,16 @@ jobs:
name: build with jdk ${{matrix.java}} windows

steps:
- uses: actions/checkout@v2
- uses: actions/checkout@v4
name: checkout

- uses: actions/setup-java@v1
- uses: actions/setup-java@v4
name: set up jdk ${{matrix.java}}
with:
distribution: 'temurin'
java-version: ${{matrix.java}}
cache: 'maven'
cache-dependency-path: '**/pom.xml'

- name: build with maven
run: mvn -B formatter:validate verify --file pom.xml
@@ -71,15 +76,27 @@ jobs:
name: quality

steps:
- uses: actions/checkout@v2
- uses: actions/checkout@v4
with:
fetch-depth: 0
- uses: actions/setup-java@v1

- uses: actions/setup-java@v4
with:
distribution: 'temurin'
java-version: 11
cache: 'maven'
cache-dependency-path: '**/pom.xml'

- name: build with docs and coverage
run: mvn verify -Pcoverage javadoc:javadoc

- uses: actions/setup-java@v4
with:
distribution: 'temurin'
java-version: 17

- name: sonar
env:
GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}
SONAR_TOKEN: ${{secrets.SONAR_TOKEN}}
run: mvn -B verify --file pom.xml -Pcoverage javadoc:javadoc sonar:sonar -Dsonar.projectKey=smallrye_smallrye-jwt -Dsonar.token=$SONAR_TOKEN
run: mvn sonar:sonar -Psonar -Dsonar.token=${{secrets.SONAR_TOKEN}}
18 changes: 18 additions & 0 deletions .github/workflows/prepare-release.yml
Original file line number Diff line number Diff line change
@@ -0,0 +1,18 @@
name: SmallRye Prepare Release

on:
pull_request:
types: [ closed ]
paths:
- '.github/project.yml'

concurrency:
group: ${{ github.workflow }}-${{ github.ref }}
cancel-in-progress: true

jobs:
prepare-release:
name: Prepare Release
if: ${{ github.event.pull_request.merged == true}}
uses: smallrye/.github/.github/workflows/prepare-release.yml@main
secrets: inherit
41 changes: 41 additions & 0 deletions .github/workflows/publish-tck.yml
Original file line number Diff line number Diff line change
@@ -0,0 +1,41 @@
name: Publish TCK

on:
workflow_call:
inputs:
version:
required: true
description: Tag version to perform release
type: string

jobs:
publish-tck:
name: Publish TCK
runs-on: ubuntu-latest
strategy:
matrix:
java: [ 11, 17, 21 ]

steps:
- uses: actions/checkout@v4
name: checkout ${{inputs.version}}
with:
ref: ${{inputs.version}}

- uses: actions/setup-java@v4
name: set up jdk ${{matrix.java}}
with:
distribution: 'temurin'
java-version: ${{matrix.java}}
cache: 'maven'
cache-dependency-path: '**/pom.xml'

- name: generate tck report for jdk ${{matrix.java}}
env:
GH_TOKEN: ${{secrets.GITHUB_TOKEN}}
ZIP_NAME: smallrye-jwt-${{inputs.version}}-tck-results-java-${{matrix.java}}.zip
run: |
mvn -B formatter:validate verify --file pom.xml
cd testsuite/tck/target
zip -r $ZIP_NAME surefire-reports/
gh release upload ${{inputs.version}} $ZIP_NAME
93 changes: 32 additions & 61 deletions .github/workflows/release.yml
Original file line number Diff line number Diff line change
@@ -1,65 +1,36 @@
name: SmallRye Release

run-name: Perform ${{github.event.inputs.tag || github.ref_name}} Release
on:
pull_request:
types: [closed]
paths:
- '.github/project.yml'
push:
tags:
- '*'
workflow_dispatch:
inputs:
tag:
description: 'Tag to release'
required: true

permissions:
attestations: write
id-token: write
# Needed for the publish-* workflows
contents: write

concurrency:
group: ${{ github.workflow }}-${{ github.ref }}
cancel-in-progress: true

jobs:
release:
runs-on: ubuntu-latest
name: release
if: ${{github.event.pull_request.merged == true}}
env:
GITHUB_TOKEN: ${{secrets.RELEASE_TOKEN}}

steps:
- uses: radcortez/project-metadata-action@main
name: retrieve project metadata
id: metadata
with:
github-token: ${{secrets.GITHUB_TOKEN}}
metadata-file-path: '.github/project.yml'

- uses: actions/checkout@v2
with:
token: ${{secrets.RELEASE_TOKEN}}

- uses: actions/setup-java@v1
with:
java-version: 11
server-id: 'oss.sonatype'
server-username: 'MAVEN_DEPLOY_USERNAME'
server-password: 'MAVEN_DEPLOY_TOKEN'
gpg-private-key: ${{secrets.MAVEN_GPG_PRIVATE_KEY}}
gpg-passphrase: 'MAVEN_GPG_PASSPHRASE'

- name: maven release ${{steps.metadata.outputs.current-version}}
env:
MAVEN_DEPLOY_USERNAME: ${{secrets.MAVEN_DEPLOY_USERNAME}}
MAVEN_DEPLOY_TOKEN: ${{secrets.MAVEN_DEPLOY_TOKEN}}
MAVEN_GPG_PASSPHRASE: ${{secrets.MAVEN_GPG_PASSPHRASE}}
run: |
java -version
git config --global user.name "SmallRye CI"
git config --global user.email "smallrye@googlegroups.com"
git checkout -b release
mvn -B release:prepare -Prelease,coverage -DreleaseVersion=${{steps.metadata.outputs.current-version}} -DdevelopmentVersion=${{steps.metadata.outputs.next-version}}
git checkout ${{github.base_ref}}
git rebase release
mvn -B release:perform -Prelease
git push
git push --tags
- uses: actions/upload-artifact@v2
name: tck-report
with:
name: tck-report
path: testsuite/tck/target/surefire-reports

- uses: radcortez/milestone-release-action@main
name: milestone release
with:
github-token: ${{secrets.GITHUB_TOKEN}}
milestone-title: ${{steps.metadata.outputs.current-version}}
perform-release:
name: Perform Release
uses: smallrye/.github/.github/workflows/perform-release.yml@main
secrets: inherit
with:
version: ${{github.event.inputs.tag || github.ref_name}}

publish-tck:
name: Publish TCK Report
uses: ./.github/workflows/publish-tck.yml
secrets: inherit
with:
version: ${{github.event.inputs.tag || github.ref_name}}
Original file line number Diff line number Diff line change
@@ -1,4 +1,4 @@
name: SmallRye Pre Release
name: SmallRye Review Release

on:
pull_request:
17 changes: 17 additions & 0 deletions .github/workflows/update-milestone.yml
Original file line number Diff line number Diff line change
@@ -0,0 +1,17 @@
name: Update Milestone

on:
pull_request_target:
types: [closed]

jobs:
update:
runs-on: ubuntu-latest
name: update-milestone
if: ${{github.event.pull_request.merged == true}}

steps:
- uses: radcortez/milestone-set-action@main
name: milestone set
with:
github-token: ${{secrets.GITHUB_TOKEN}}
4 changes: 2 additions & 2 deletions README.adoc
Original file line number Diff line number Diff line change
@@ -1,10 +1,10 @@
:microprofile-jwt: https://github.com/eclipse/microprofile-jwt-auth/
:mp-jwt-name: Eclipse MicroProfile JWT RBAC
:ci: https://github.com/smallrye/smallrye-jwt/actions?query=workflow%3A%22SmallRye+Build%22
:sonar: https://sonarcloud.io/dashboard?id=smallrye_smallrye-jwt
:sonar: https://sonarcloud.io/dashboard?id=io.smallrye%3Asmallrye-jwt

image:https://github.com/smallrye/smallrye-jwt/workflows/SmallRye%20Build/badge.svg?branch=main[link={ci}]
image:https://sonarcloud.io/api/project_badges/measure?project=smallrye_smallrye-jwt&metric=alert_status["Quality Gate Status", link={sonar}]
image:https://sonarcloud.io/api/project_badges/measure?project=io.smallrye%3Asmallrye-jwt&metric=alert_status["Quality Gate Status", link={sonar}]
image:https://img.shields.io/github/license/smallrye/smallrye-jwt.svg["License", link="http://www.apache.org/licenses/LICENSE-2.0"]
image:https://img.shields.io/maven-central/v/io.smallrye/smallrye-jwt?color=green[]

2 changes: 1 addition & 1 deletion coverage/pom.xml
Original file line number Diff line number Diff line change
@@ -20,7 +20,7 @@
<parent>
<groupId>io.smallrye</groupId>
<artifactId>smallrye-jwt-parent</artifactId>
<version>4.5.3</version>
<version>4.6.1-SNAPSHOT</version>
</parent>

<artifactId>smallrye-jwt-coverage</artifactId>
2 changes: 2 additions & 0 deletions doc/modules/ROOT/pages/configuration.adoc
Original file line number Diff line number Diff line change
@@ -39,6 +39,7 @@ SmallRye JWT supports many properties which can be used to customize the token p
[cols="<m,<m,<2",options="header"]
|===
|Property Name|Default|Description
|smallrye.jwt.verify.secretkey|none|Secret key supplied as a string.
|smallrye.jwt.verify.key.location|NONE|Location of the verification key which can point to both public and secret keys. Secret keys can only be in the JWK format. Note that 'mp.jwt.verify.publickey.location' will be ignored if this property is set.
|smallrye.jwt.verify.algorithm|`RS256`|Signature algorithm. Set it to `ES256` to support the Elliptic Curve signature algorithm. This property is deprecated, use `mp.jwt.verify.publickey.algorithm`.
|smallrye.jwt.verify.key-format|`ANY`|Set this property to a specific key format such as `PEM_KEY`, `PEM_CERTIFICATE`, `JWK` or `JWK_BASE64URL` to optimize the way the verification key is loaded.
@@ -60,6 +61,7 @@ SmallRye JWT supports many properties which can be used to customize the token p
|smallrye.jwt.groups-separator|' '|Separator for splitting a string which may contain multiple group values. It will only be used if the `smallrye.jwt.path.groups` property points to a custom claim whose value is a string. The default value is a single space because a standard OAuth2 `scope` claim may contain a space separated sequence.
|smallrye.jwt.claims.groups|none| This property can be used to set a default groups claim value when the current token has no standard groups claim available (or no custom groups claim when `smallrye.jwt.path.groups` is used).
|smallrye.jwt.jwks.refresh-interval|60|JWK cache refresh interval in minutes. It will be ignored unless the `mp.jwt.verify.publickey.location` points to the HTTP or HTTPS URL based JWK set and no HTTP `Cache-Control` response header with a positive `max-age` parameter value is returned from a JWK set endpoint.
|smallrye.jwt.jwks.retain-cache-on-error-duration|0|JWK cache retain on error duration in minutes which sets the length of time, before trying again, to keep using the cache when an error occurs making the request to the JWKS URI or parsing the response. It will be ignored unless the `mp.jwt.verify.publickey.location` property points to the HTTP or HTTPS URL based JWK set.
|smallrye.jwt.jwks.forced-refresh-interval|30|Forced JWK cache refresh interval in minutes which is used to restrict the frequency of the forced refresh attempts which may happen when the token verification fails due to the cache having no JWK key with a `kid` property matching the current token's `kid` header. It will be ignored unless the `mp.jwt.verify.publickey.location` points to the HTTP or HTTPS URL based JWK set.
|smallrye.jwt.expiration.grace|0|Expiration grace in seconds. By default an expired token will still be accepted if the current time is no more than 1 min after the token expiry time. This property is deprecated. Use `mp.jwt.verify.clock.skew` instead.
|smallrye.jwt.verify.aud|none|Comma separated list of the audiences that a token `aud` claim may contain. This property is deprecated. Use `mp.jwt.verify.audiences` instead.
2 changes: 1 addition & 1 deletion implementation/common/pom.xml
Original file line number Diff line number Diff line change
@@ -22,7 +22,7 @@
<parent>
<groupId>io.smallrye</groupId>
<artifactId>smallrye-jwt-implementation-parent</artifactId>
<version>4.5.3</version>
<version>4.6.2-SNAPSHOT</version>
</parent>

<artifactId>smallrye-jwt-common</artifactId>
Original file line number Diff line number Diff line change
@@ -0,0 +1,15 @@
package io.smallrye.jwt;

import jakarta.json.spi.JsonProvider;

public final class JsonProviderHolder {

private static final JsonProvider JSON_PROVIDER = JsonProvider.provider();

private JsonProviderHolder() {
}

public static JsonProvider jsonProvider() {
return JSON_PROVIDER;
}
}
Original file line number Diff line number Diff line change
@@ -48,7 +48,6 @@
import javax.crypto.SecretKey;
import javax.crypto.spec.SecretKeySpec;

import jakarta.json.Json;
import jakarta.json.JsonArray;
import jakarta.json.JsonObject;
import jakarta.json.JsonReader;
@@ -59,6 +58,7 @@
import org.jose4j.jwk.OctetSequenceJsonWebKey;
import org.jose4j.jwk.PublicJsonWebKey;

import io.smallrye.jwt.JsonProviderHolder;
import io.smallrye.jwt.algorithm.KeyEncryptionAlgorithm;
import io.smallrye.jwt.algorithm.SignatureAlgorithm;

@@ -312,8 +312,7 @@ private static String getKeyStoreType(String keyStorePath, Optional<String> keyS
if (keyStoreType.isPresent()) {
return keyStoreType.get().toUpperCase();
}
final String pathName = keyStorePath.toString();
if (pathName.endsWith(".p12") || pathName.endsWith(".pkcs12") || pathName.endsWith(".pfx")) {
if (keyStorePath.endsWith(".p12") || keyStorePath.endsWith(".pkcs12") || keyStorePath.endsWith(".pfx")) {
return "PKCS12";
} else {
// assume jks
@@ -452,7 +451,7 @@ public static List<JsonWebKey> loadJsonWebKeys(String content) {
JWTUtilLogging.log.loadingJwks();

JsonObject jwks = null;
try (JsonReader reader = Json.createReader(new StringReader(content))) {
try (JsonReader reader = JsonProviderHolder.jsonProvider().createReader(new StringReader(content))) {
jwks = reader.readObject();
} catch (Exception ex) {
JWTUtilLogging.log.loadingJwksFailed(ex);
4 changes: 2 additions & 2 deletions implementation/jwt-auth/pom.xml
Original file line number Diff line number Diff line change
@@ -22,7 +22,7 @@
<parent>
<groupId>io.smallrye</groupId>
<artifactId>smallrye-jwt-implementation-parent</artifactId>
<version>4.5.3</version>
<version>4.6.2-SNAPSHOT</version>
</parent>

<artifactId>smallrye-jwt</artifactId>
@@ -89,7 +89,7 @@
<dependency>
<groupId>org.hamcrest</groupId>
<artifactId>hamcrest-core</artifactId>
<version>2.2</version>
<version>3.0</version>
<scope>test</scope>
</dependency>
<dependency>
Loading