- Make
JwtException
a proper exception (thanks @tpolecat) - Update SBT and Scala version (thanks @erwan)
- Improve string splitting performance (thanks @jfosback)
- Breaking (a little):
JwtSession
should always have an expiration now if you have set aplay.http.session.maxAge
. Before, a few ways to create the session would forget to add it. - Breaking (also a little): calling
refreshJwtSession
on a Play Result will now truly refresh and set a session if there was one to begin with. Before, it would always set a session with an expiration even if there was nothing. - Breaking (maybe, maybe not, unsure): renamed KeyFactory algorithm from "ECDSA" to "EC" to better comply with Java Security Standard Algorithm Names, this might impact curve names, check ParameterSpec Names if you are impacted.