v1.3.0

What's Changed

• Modified KmsAsymmetricSigningCryptoProvider to accept RFC-compliant JWSAlgorithm types by @rudi-eero in #15

Full Changelog: v1.2.0...1.3.0

v1.2.0

Added support for asymmetric KMS encryption keys.

What's Changed

• Added KmsDefaultEncryptionCryptoProvider and JWEHeaderValidationUtil classes by @debanshuk in #11
• Added KmsDefaultEncrypter by @debanshuk in #12
• Added KmsDefaultDecrypter by @1706-yash in #13

Full Changelog: v1.1.2...v1.2.0

v1.1.2

Updated lower bound version of com.google.guava:guava dependency to 32.

v1.1.1

Removed upper bound restriction from the dependency version of com.google.guava:guava, as it supports indefinite backward compatibility and older versions are not available in MavenCentral anymore.

v1.1.0

• Added KmsAsymmetricSigner and KmsAsymmetricVerifier classes, which supports both RSA and ECDSA algorithms. Also deprecated KmsAsymmetricRSASSASigner and KmsAsymmetricRSASSAVerifier, while retaining them for backwards compatibility.
• Fixed build failure, occurring due to backwards incompatible changes added in release v9.32 of nimbus-jose-jwt.

v1.0.1

• Bug fix in KMS-RSA signer and sign-verifier.
• Enhancements in KMS-RSA sign-verifier CLI script.

v1.0.0

Initial release of the library. This library package is an extension of nimbus-jose-jwt library. It is compatible with version 9.+ of nimbus-jose-jwt. It provides JWE based encrypters/decrypters and JWS based
signers/verifiers for doing operations with cryptographic keys stores in AWS KMS. This library requires Java 8 or above.

This release includes following encryption/signing support:

1. Symmetric encryption (AES based).
   1. Classes: com.nimbusds.jose.aws.kms.crypto.KmsSymmetricEncrypter
      and com.nimbusds.jose.aws.kms.crypto.KmsSymmetricDecrypter
2. RSA-SSA based signing.
   1. Classes: com.nimbusds.jose.aws.kms.crypto.KmsAsymmetricRSASSASigner
      and com.nimbusds.jose.aws.kms.crypto.KmsAsymmetricRSASSAVerifier

Above classes should be used in the same way any encryption or signing class, which is directly provided by nimbus-jose-jwt, is used.