JWT Functions

I have the same problem! Could it be that it is deprecated?

We are using this plugin and now it doesn't appear to be downloaded. We have used till PRE and now we need it to go to PRO, but we cannot download from the Market. Could you let us know why has been disabled?

Thanks, Manuel

When using de the jwtdecode function, it works properly, but we see this error in Appian logs.

2023-02-10 09:15:43,868 [Appian AppianServerThreadPoolProvider 6155287] ERROR com.appiancorp.type.handlers.BooleanHandler - Expected 1L or 0L but got: false

• Updated plugin dependency to resolve vulnerability findings:
• CVE-2022-42003
• CVE-2022-42004

• Added support for JWKS
• JWKS Uri will be derived from the token's issuer field concatenated with jwksPath from DecodeOptions

• jwksPath - Path to be appended in the issuer field to retrieve the JWKS
• jwksUri - Override the entire Jwks Uri, if the URI is completely different from the issuer field

• Security fix - update library dependencies

Thanks for the feedback, I'll look into updating the library version

Hi,

We are facing some vulnerability issue while scanning this plugin. Kindly help to check.

Issue:

jackson-databind before 2.13.0 allows a stack overflow exception and denial of service via a large depth of nested objects.

Thanks in advance!

That worked. Thanks!

I'd be very curious on why named-parameters don't work. Let me know if you get time to look into that.

I think it has something to do with using key-based function call - I'm not sure if this is fully supported by plugin functions.

Can you try using order-based function call shown below?

Thanks