haproxy/reg-tests/jwt
Remi Tricot-Le Breton 495eb7b0e0 MINOR: jwe: Disable 'RSA1_5' algorithm by default in jwt_decrypt converters
In RFC8725, section 3.2, they suggest to "Avoid all RSA-PKCS1 v1.5
encryption algorithms" so this algorithm gets disabled by default.
Tokens having this "alg" won't be decrypted unless it is explicitly
reenabled thanks to 'jwt.decrypt_alg_list' global option.

Thanks to Omkhar Arasaratnam for raising our awareness about this!
2026-05-07 18:00:29 +02:00
..
build_token.py
cert.ecdsa.pem
cert.rsa.pem
ec_decrypt.crt
ec_decrypt.key
es256-public.pem
es384-public.pem
es512-public.pem
jws_verify.vtc
jwt_decrypt.vtc MINOR: jwe: Disable 'RSA1_5' algorithm by default in jwt_decrypt converters 2026-05-07 18:00:29 +02:00
rsa-public.pem
rsa1_5.key
rsa1_5.pem
rsa_oeap.key
rsa_oeap.pem