[
https://issues.apache.org/jira/browse/OLTU-78?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13659402#comment-13659402
]
Suresh Attanayake edited comment on OLTU-78 at 5/16/13 10:08 AM:
-----------------------------------------------------------------
According to the JWT specification, the JWT should be rejected if it contains
duplicated header parameters or duplicated claims. However I could not do this
check because the underlying jettison JSON library is ignoring the duplicated
keys. I think Jettison too should throw an exception as it is a malformed JSON,
but seems Jettison is not doing it.
was (Author: sureshatt):
According to the JWT specification, the JWT should be rejected if it
contains duplicated header parameters or duplicated claims. However I could not
do this check because the underlying jettison JSON library is ignoring the
duplicated keys. I think Jettison too should throw an exception as it is a
malformed JSON, but seems Jettison is doing it.
> Implement Plaintext JWT
> ------------------------
>
> Key: OLTU-78
> URL: https://issues.apache.org/jira/browse/OLTU-78
> Project: Apache Oltu
> Issue Type: Sub-task
> Components: jwt
> Reporter: Suresh Attanayake
> Assignee: Antonio Sanso
> Attachments: AMBER-80.patch, OLTU-78.patch,
> support-for-public_and_private_claims-OLTU-78.patch
>
>
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
