Knah-Tsaeb/MyShaarli
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity
MyShaarli/application
History
VirtualTam 7a9daac56d API: fix JWT signature verification 
Fixes https://github.com/shaarli/Shaarli/issues/737

Added:
- Base64Url utilities

Fixed:
- use URL-safe Base64 encoding/decoding functions
- use byte representations for HMAC digests
- all JWT parts are Base64Url-encoded

See:
- https://en.wikipedia.org/wiki/JSON_Web_Token
- https://tools.ietf.org/html/rfc7519
- https://scotch.io/tutorials/the-anatomy-of-a-json-web-token
- https://jwt.io/introduction/
- https://en.wikipedia.org/wiki/Base64#URL_applications
- https://secure.php.net/manual/en/function.base64-encode.php#103849

Signed-off-by: VirtualTam <virtualtam@flibidi.net>
2017-01-04 16:59:47 +01:00
..
api API: fix JWT signature verification 2017-01-04 16:59:47 +01:00
config REST API structure using Slim framework 2016-12-15 10:36:00 +01:00
.htaccess .htaccess files: support Apache 2.4+ syntax 2016-11-08 11:38:14 +01:00
ApplicationUtils.php Minor code cleanup: PHPDoc, spelling, unused variables, etc. 2016-10-20 11:36:11 +02:00
Base64Url.php API: fix JWT signature verification 2017-01-04 16:59:47 +01:00
Cache.php Cache: simplify cached content cleanup, improve tests 2015-08-13 23:51:31 +02:00
CachedPage.php Minor code cleanup: PHPDoc, spelling, unused variables, etc. 2016-10-20 11:36:11 +02:00
FeedBuilder.php Move PubSubHubbub code as a default plugin 2016-12-20 11:41:24 +01:00
FileUtils.php Replace $GLOBALS configuration with the configuration manager in the whole code base 2016-06-11 09:30:56 +02:00
HttpUtils.php Hide default port in local URL behind a reverse proxy 2017-01-03 14:17:05 +01:00
Languages.php Initialize a translation function 2016-08-07 11:54:39 +02:00
LinkDB.php Add a persistent 'shorturl' key to all links 2016-12-12 03:03:12 +01:00
LinkFilter.php Fixes presence of empty tags for private tags and in search results 2017-01-03 09:47:15 +01:00
LinkUtils.php Add a persistent 'shorturl' key to all links 2016-12-12 03:03:12 +01:00
NetscapeBookmarkUtils.php Add a persistent 'shorturl' key to all links 2016-12-12 03:03:12 +01:00
PageBuilder.php New init function for plugins, supports errors reporting 2016-10-14 13:22:58 +02:00
PluginManager.php New init function for plugins, supports errors reporting 2016-10-14 13:22:58 +02:00
Router.php Bugfixes on link deletion, and use a GET form 2016-12-16 12:42:13 +01:00
TimeZone.php Minor code cleanup: PHPDoc, spelling, unused variables, etc. 2016-10-20 11:36:11 +02:00
Updater.php Prepare settings for the API in the admin page and during the install 2016-12-12 03:54:10 +01:00
Url.php URL cleanup: add 'campaign_' to the annoying parameters 2017-01-04 11:42:05 +01:00
Utils.php Fixes presence of empty tags for private tags and in search results 2017-01-03 09:47:15 +01:00