Messed up security when using different Alg than HS256 #52
Comments
hmic
added a commit
to hmic/cakephp-jwt-auth
that referenced
this issue
Apr 28, 2017
Only add the default Alg HS256 if none are provided in the custom config, the array gets merged deep, so any default value set will be available whatever gets set from the config (in addition to it). This is a serve security thread: When setting RS256 it's possible to make up a new token with the public key only that would verify with the HS256 algo!
ADmad
added a commit
that referenced
this issue
May 31, 2017
ADmad
added a commit
that referenced
this issue
May 31, 2017
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
As the config array get merged (deep):
If you specify allowedAlgs => ['RS256'], you end up with allowedAlgs beeing set to ['HS256', 'RS256'], which is NOT the intended result and causes an attacker to be able to alter the Token and create a good signature with just the public key!
The text was updated successfully, but these errors were encountered: