|
1 | 1 | # Changelog |
2 | 2 |
|
| 3 | +## 11.0.0 (unreleased) |
| 4 | + |
| 5 | +- Add conversions between `Algorithm` and `KeyAlgorithm` |
| 6 | +- JWKs can now be created from `DecodingKey`s, creation from `EncodingKey` and `DecodingKey` supports Ed25519 now as well |
| 7 | +- BREAKING: `Algorithm` and `EllipticCurve` are now `non_exhaustive` |
| 8 | +- BREAKING: `Jwk.thumbprint` now returns a `Result<_>` |
| 9 | +- BREAKING: `Header.extras` is now a struct that allows for deserialization to any `T` |
| 10 | +- BREAKING: Implicit features resulting from optional crates have been removed |
| 11 | +- BREAKING: `Validation.insecure_disable_signature_validation` has been removed, use `dangerous::insecure_decode` instead |
| 12 | +- BREAKING: `EncodingKey.inner` has been renamed to `as_bytes`, `try_get_hmac_secret` has been removed |
| 13 | +- BREAKING: `DecodingKey.as_bytes` and `try_get_hmac_secret` have been removed, use `try_get_as_bytes` instead |
| 14 | + |
| 15 | +### Changes for `CryptoProvider`s |
| 16 | + |
| 17 | +- When constructing HMAC signers, the algorithm family must now be verified on construction |
| 18 | +- `JwkUtils` has been renamed to `KeyUtils` |
| 19 | + - `compute_digest` now returns a `Result<_>` |
| 20 | + - `extract_rsa_public_key_components` has been renamed to `rsa_pub_components_from_private_key` |
| 21 | + - `rsa_pub_components_from_public_key` has been added |
| 22 | + - `extract_ec_public_key_coordinates` has been renamed to `ec_pub_components_from_private_key` |
| 23 | + - `ed_pub_components_from_private_key` has been added |
| 24 | + |
3 | 25 | ## 10.4.0 (2026-05-11) |
4 | 26 |
|
5 | 27 | - Fix incorrect encoding for Ed25519 JWK thumbprints |
|
45 | 67 |
|
46 | 68 | - Supports deserialization of unsupported algorithms for JWKs |
47 | 69 |
|
48 | | - |
49 | 70 | ## 9.0.0 (2023-10-16) |
50 | 71 |
|
51 | 72 | - Update ring |
|
56 | 77 | - Update base64 |
57 | 78 | - Implement Clone for TokenData<T> if T impls Clone |
58 | 79 |
|
59 | | - |
60 | 80 | ## 8.2.0 (2022-12-03) |
61 | 81 |
|
62 | 82 | - Add DecodingKey::from_jwk |
63 | 83 | - Can now use PEM certificates if you have the `use_pem` feature enabled |
64 | 84 |
|
65 | | - |
66 | 85 | ## 8.1.1 (2022-06-17) |
67 | 86 |
|
68 | 87 | - Fix invalid field name on OctetKeyParameters |
|
76 | 95 |
|
77 | 96 | - Fix documentation of leeway |
78 | 97 |
|
79 | | - |
80 | 98 | ## 8.0.0 (2022-02-02) |
81 | | - |
| 99 | + |
82 | 100 | - Add EdDSA algorithm |
83 | 101 | - `sign`/`verify` now takes a `&[u8]` instead of `&str` to be more flexible |
84 | 102 | - `DecodingKey` now own its data |
|
115 | 133 | - Add support for PS256, PS384 and PS512 |
116 | 134 | - Add support for verifying with modulus/exponent components for RSA |
117 | 135 | - Update to 2018 edition |
118 | | -- Changed aud field type in Validation to `Option<HashSet<String>>`. Audience |
| 136 | +- Changed aud field type in Validation to `Option<HashSet<String>>`. Audience |
119 | 137 | validation now tests for "any-of-these" audience membership. |
120 | 138 | - Add support for keys in PEM format |
121 | 139 | - Add EncodingKey/DecodingKey API to improve performance and UX |
|
154 | 172 | ## 3.0.0 (2017-09-08) |
155 | 173 |
|
156 | 174 | ### Breaking changes |
| 175 | + |
157 | 176 | - Remove `validate_signature` from `Validation`, use `decode_header` instead if you don't know the alg used |
158 | 177 | - Make `typ` optional in header, some providers apparently don't use it |
159 | 178 |
|
|
0 commit comments