Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Must we specify algorithm when calling decode to avoid vulnerabilities? #107

Closed
aarongray opened this issue Oct 6, 2015 · 3 comments
Closed

Must we specify algorithm when calling decode to avoid vulnerabilities? #107

aarongray opened this issue Oct 6, 2015 · 3 comments
Labels
documentation enhancement
Milestone
Version 1.5.2

Comments

@aarongray
Copy link
Contributor

First of all, cool library. I was reading through the closed issues, and noticed #76. It seems to suggest that in order to be sure you are safe from this vulnerability affecting RSA and ECDSA algorithms, you need to specify the algorithm when decoding a JWT, like so: JWT.decode(token, key, true, algorithm: 'RS512'). So I then read through the readme for this library, but did not see this algorithm parameter mentioned anywhere in the readme. So now I'm confused and a little concerned.

Has the need to specify the optional algorithm parameter been removed due to a commit somewhere that made this library more secure by default? (That would be good)
Or must users specify this optional, undocumented algorithm parameter in order to be secure? (That would be bad)

If the latter is the case, I'm happy to help update the docs to clearly explain the algorithm needs to be passed in to keep things more secure.
@excpt
Copy link
Member

excpt commented Oct 6, 2015

Hi Aaron. You have to specify the algorithm to enable the verification (see lib/jwt.rb line 152 to 158: https://github.com/jwt/ruby-jwt/blob/master/lib/jwt.rb#L152). There is no other way to be sure. It has to be specified.

If your server receives a token, only your server knows the original algorithm that has been used to encode the token.

IMHO there's currently no better way to implement this.

@excpt excpt added this to the Version 1.5.2 milestone Oct 6, 2015
@aarongray
Copy link
Contributor Author

Sounds good, thanks for the clarification. I'll be happy to make a PR to update the docs to make it more clear to new users.

aarongray added a commit to aarongray/ruby-jwt that referenced this issue Oct 6, 2015
@aarongray
Update docs to include instructions for the algorithm parameter.
b0cb86d 
This parameter is necessary to prevent attackers from bypassing the
algorithm verification step.

See:
https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/
jwt#76
jwt#71
jwt#107
@aarongray aarongray mentioned this issue Oct 6, 2015
Merged
@excpt
Copy link
Member

excpt commented Oct 7, 2015

Thanks for the pull request. Merged. 👍

@excpt excpt closed this as completed Oct 7, 2015
@EmilioCristalli EmilioCristalli mentioned this issue Jan 17, 2017
Merged
@NC-piercej NC-piercej mentioned this issue Sep 6, 2017
Closed
@excpt excpt mentioned this issue Mar 22, 2018
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
documentation enhancement
Projects
None yet
Milestone
Version 1.5.2
Development

No branches or pull requests
2 participants
@excpt @aarongray