Allows for an additional layer of security using signed JWT. This plug-in may also be used to integrate with external systems using JWS.
Key Functionality and Features
Uses JWTKs JJWT library: https://github.com/jwtk/jjwt
We are facing some vulnerability issue while scanning this plugin. Kindly help to check.Issue:
jackson-databind before 2.13.0 allows a stack overflow exception and denial of service via a large depth of nested objects.
Thanks in advance!
Thanks for the feedback, I'll look into updating the library version
© 2022 Appian. All rights reserved.