Skip to content
This repository has been archived by the owner on Nov 29, 2021. It is now read-only.

Change JWT HMAC hash from MD5 to SHA-256 #6

Open
sluehr opened this issue Feb 21, 2021 · 0 comments
Open

Change JWT HMAC hash from MD5 to SHA-256 #6

sluehr opened this issue Feb 21, 2021 · 0 comments
Labels
good first issue Good for newcomers

Comments

@sluehr
Copy link
Member

sluehr commented Feb 21, 2021

FIPS-140 doesn't approve of MD5.

We should update the default to SHA-256 and make it configurable so that conversations with security people are easier.
@sluehr sluehr added the good first issue Good for newcomers label Feb 21, 2021
@sluehr sluehr moved this to Done in Lhotse Aug 5, 2022
@sluehr sluehr added this to Lhotse Aug 5, 2022
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
good first issue Good for newcomers
Projects
Lhotse
Status: Done
Milestone
No milestone
Development

No branches or pull requests
1 participant
@sluehr