JWT Functions

RE: JWT Functions

manueldavidg0001 — Thu, 08 Jun 2023 09:39:07 GMT

We are using this plugin and now it doesn't appear to be downloaded. We have used till PRE and now we need it to go to PRO, but we cannot download from the Market. Could you let us know why has been disabled?

Thanks, Manuel

RE: JWT Functions

David Jimenez — Fri, 10 Feb 2023 09:25:22 GMT

When using de the jwtdecode function, it works properly, but we see this error in Appian logs.

2023-02-10 09:15:43,868 [Appian AppianServerThreadPoolProvider 6155287] ERROR com.appiancorp.type.handlers.BooleanHandler - Expected 1L or 0L but got: false

RE: JWT Functions

Appian AppMarket — Thu, 20 Oct 2022 11:57:27 GMT

v2.0.1 Release Notes

Updated plugin dependency to resolve vulnerability findings:
CVE-2022-42003
CVE-2022-42004

RE: JWT Functions

Appian AppMarket — Mon, 23 May 2022 14:29:23 GMT

Release Notes - v2.0.0

Added support for JWKS
JWKS Uri will be derived from the token's issuer field concatenated with jwksPath from DecodeOptions

New Decode Options:

jwksPath - Path to be appended in the issuer field to retrieve the JWKS
jwksUri - Override the entire Jwks Uri, if the URI is completely different from the issuer field

RE: JWT Functions

Appian AppMarket — Mon, 09 May 2022 19:24:43 GMT

v1.2.0 Release Notes

Security fix - update library dependencies

RE: JWT Functions

chandhinir0002 — Fri, 29 Apr 2022 14:23:08 GMT

Hi,

We are facing some vulnerability issue while scanning this plugin. Kindly help to check.

Issue:

jackson-databind before 2.13.0 allows a stack overflow exception and denial of service via a large depth of nested objects.

Thanks in advance!

RE: JWT Functions

oha-dexter-b — Tue, 22 Mar 2022 09:19:04 GMT

Hey, for some reason I am unable to set reserved keys in the payload, and then when using TokenOptions for jwtverify options it still does not seem to add them:

[embed:dc8ab71f-3b98-42d9-b0f6-e21e02a0f8e2:8fc175d6-085d-4b15-9a03-1feee6557649:type=text&text=eyJhbGciOiJIUzI1NiJ9.eyJwYXkiOiJsb2FkIiwiaWF0IjoxNjQ3OTQwNjg1fQ.-deGIDlA2fC3NnBbl3yqLI_ODHgel8QzTfXzpc7aiQg]

Any ideas why this is not working?

RE: JWT Functions

Appian AppMarket — Mon, 14 Feb 2022 16:03:25 GMT

Release Notes - v1.1.1

Security Updates

RE: JWT Functions

Appian AppMarket — Thu, 11 Mar 2021 11:04:01 GMT

v1.1.0 Release Notes

Fixed key ID not being set
Added new field in TokenOptions: scsKeyId (boolean) - When set to true, "kid" will automatically be set to the SCS key and field used to sign the token
Added new field in DecodeOptions: scsKeyId (boolean) - When set to true, will automatically use "kid" as SCS key and field to verify the token

RE: JWT Functions

siddharthg837 — Thu, 25 Feb 2021 13:44:41 GMT

Hi John,

Thanks for this contribution.

Just one issue/ feedback which we found while using this so far:

In the token options data type, which is one of the input in "jwtsign" function, it seems the plugin is ignoring the "kid" field of the token options data type while building the JWT token.

Can this be fixed as we need this attribute for token authentication purposes?

Thanks!

RE: JWT Functions

allenr0001 — Wed, 24 Feb 2021 04:02:18 GMT

exactly what we need [emoticon:e6c14e0ca9274671b809fb2702bbceb1]

RE: JWT Functions

Appian AppMarket — Fri, 20 Nov 2020 23:02:23 GMT

v1.0.1 Release Notes

fixed list of variant not parsed in payload
fixed double values not parsed in payload