mirror of
https://github.com/haproxy/haproxy.git
synced 2026-07-14 19:43:29 -04:00
In RFC8725, section 3.2, they suggest to "Avoid all RSA-PKCS1 v1.5 encryption algorithms" so this algorithm gets disabled by default. Tokens having this "alg" won't be decrypted unless it is explicitly reenabled thanks to 'jwt.decrypt_alg_list' global option. Thanks to Omkhar Arasaratnam for raising our awareness about this! |
||
|---|---|---|
| .. | ||
| build_token.py | ||
| cert.ecdsa.pem | ||
| cert.rsa.pem | ||
| ec_decrypt.crt | ||
| ec_decrypt.key | ||
| es256-public.pem | ||
| es384-public.pem | ||
| es512-public.pem | ||
| jws_verify.vtc | ||
| jwt_decrypt.vtc | ||
| rsa-public.pem | ||
| rsa1_5.key | ||
| rsa1_5.pem | ||
| rsa_oeap.key | ||
| rsa_oeap.pem | ||