Verify JWS header content

Question

Verify JWS header content

shizhMSFT opened this issue 3 years ago · comments

The content of JWS header is not verified including the cty and crit fields.
We need to verify those fields in case we have different types of payload.

Pritesh Bandi · Answer 1 · Thu Jul 14 2022 03:46:07 GMT+0800 (China Standard Time)

Fixed as part of notaryproject/notation-core-go#7

Samir Kakkar · Answer 2 · Fri Jul 15 2022 00:21:09 GMT+0800 (China Standard Time)

closing with the note above