pkgsrc.se | The NetBSD package collection

./textproc/py-JWT, JSON Web Token implementation in Python

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: CURRENT, Version: 2.10.1, Package name: py312-JWT-2.10.1, Maintainer: pkgsrc-users

A Python implementation of JSON Web Token draft 32.

Required to run:
[security/py-cryptography] [lang/python310]

Master sites:

https://files.pythonhosted.org/packages/source/P/PyJWT/ (Download)

Filesize: 85.728 KB

Version history: (Expand)

(2024-12-02) Updated to version: py312-JWT-2.10.1
(2024-11-24) Updated to version: py312-JWT-2.10.0
(2024-11-11) Updated to version: py312-JWT-2.9.0
(2024-08-04) Updated to version: py311-JWT-2.9.0
(2023-07-19) Updated to version: py310-JWT-2.8.0
(2023-05-10) Updated to version: py310-JWT-2.7.0

CVS history: (Expand)

2024-12-02 10:05:50 by Adam Ciarcinski | Files touched by this commit (2) | Package updated

Log message:
py-JWT: updated to 2.10.1

2.10.1

Fixed
- Prevent partial matching of `iss` claim

2024-11-24 11:13:05 by Thomas Klausner | Files touched by this commit (2) | Package updated

Log message:
py-JWT: update to 2.10.0.

v2.10.0
-------

Changed
~~~~~~~

- Remove algorithm requirement from JWT API, instead relying on JWS API for \ 
enforcement, by @luhn
- Use ``Sequence`` for parameter types rather than ``List`` where applicable by \ 
@imnotjames
- Add JWK support to JWT encode by @luhn
- Encoding and decoding payloads using the `none` algorithm by @jpadilla
- Added validation for 'sub' (subject) and 'jti' (JWT ID) claims in tokens by \ 
@Divan009
- Refactor project configuration files from ``setup.cfg`` to ``pyproject.toml`` \ 
by @cleder
- Ruff linter and formatter changes by @gagandeepp
- Drop support for Python 3.8 (EOL) by @kkirsche

Fixed
~~~~~

- Encode EC keys with a fixed bit length by @etianen
- Add an RTD config file to resolve Read the Docs build failures by @kurtmckee
- Docs: Update ``iat`` exception docs by @pachewise
- Docs: Fix ``decode_complete`` scope and algorithms by @RbnRncn
- Fix doctest for ``docs/usage.rst`` by @pachewise
- Fix ``test_utils.py`` not to xfail by @pachewise
- Docs: Correct `jwt.decode` audience param doc expression by @peter279k

Added
~~~~~

- Add support for python 3.13 by @hugovk
- Create SECURITY.md by @auvipy and @jpadilla
- Docs: Add PS256 encoding and decoding usage by @peter279k
- Docs: Add API docs for PyJWK by @luhn
- Docs: Add EdDSA algorithm encoding/decoding usage by @peter279k
- Include checkers and linters for ``pyproject.toml``
- Docs: Add ES256 decoding usage by @Gautam-Hegde

2024-11-11 08:29:31 by Thomas Klausner | Files touched by this commit (862)

Log message:
py-*: remove unused tool dependency

py-setuptools includes the py-wheel functionality nowadays

2024-08-04 09:30:12 by Adam Ciarcinski | Files touched by this commit (3) | Package updated

Log message:
py-JWT: updated to 2.9.0

v2.9.0

Changed

- Drop support for Python 3.7 (EOL)
- Allow JWT issuer claim validation to accept a list of strings too

Fixed

- Fix unnecessary string concatenation
- Fix docs for ``jwt.decode_complete`` to include ``strict_aud`` option
- Fix docs step
- Fix: Remove an unused variable from example code block

Added

- Add support for Python 3.12
- Improve performance of ``is_ssh_key`` + add unit test
- Allow ``jwt.decode()`` to accept a PyJWK object
- Make ``algorithm_name`` attribute available on PyJWK
- Raise ``InvalidKeyError`` on invalid PEM keys to be compatible with \ 
cryptography 42.x.x
- Raise an exception when required cryptography dependency is missing

2023-07-19 10:35:33 by Adam Ciarcinski | Files touched by this commit (2) | Package updated

Log message:
py-JWT: updated to 2.8.0

v2.8.0

Changed
- Update python version test matrix

Added
- Add ``strict_aud`` as an option to ``jwt.decode``
- Export PyJWKClientConnectionError class
- Allows passing of ssl.SSLContext to PyJWKClient

2023-05-10 11:55:38 by Adam Ciarcinski | Files touched by this commit (3) | Package updated

Log message:
py-JWT: updated to 2.7.0

v2.7.0

Changed
- Changed the error message when the token audience doesn't match the expected \ 
audience
- Improve error messages when cryptography isn't installed
- Make `Algorithm` an abstract base class
- ignore invalid keys in a jwks

Fixed
- Add classifier for Python 3.11
- Fix ``_validate_iat`` validation
- fix: use datetime.datetime.timestamp function to have a milliseconds
- docs: correct mistake in the changelog about verify param

Added
- Add ``compute_hash_digest`` as a method of ``Algorithm`` objects, which uses
  the underlying hash algorithm to compute a digest. If there is no appropriate
  hash algorithm, a ``NotImplementedError`` will be raised
- Add optional ``headers`` argument to ``PyJWKClient``. If provided, the headers
  will be included in requests that the client uses when fetching the JWK set
- Add PyJWT._{de,en}code_payload hooks
- Add `sort_headers` parameter to `api_jwt.encode`
- Make mypy configuration stricter and improve typing
- Add more types
- Add a timeout for PyJWKClient requests
- Add client connection error exception
- Add complete types to take all allowed keys into account
- Add `as_dict` option to `Algorithm.to_jwk`

2022-10-25 09:25:13 by Adam Ciarcinski | Files touched by this commit (2) | Package updated

Log message:
py-JWT: updated to 2.6.0

v2.6.0

Changed
~~~~~~~
- bump up cryptography >= 3.4.0
- Remove `types-cryptography` from `crypto` extra

Fixed
~~~~~
- Invalidate token on the exact second the token expires
- fix: version 2.5.0 heading typo

Added
~~~~~
- Adding validation for `issued_at` when `iat > (now + leeway)` as \ 
`ImmatureSignatureError`

2022-10-19 15:56:34 by Nia Alarie | Files touched by this commit (26)

Log message:
fighting a losing battle against py-cryptography rustification, part 2

Switch users to versioned_dependencies.mk.