GitPedia
Home/auth0/java-jwt/Changelog
auth0

auth0/java-jwt

Java implementation of JSON Web Token (JWT)

30 Releases
Latest: 2mo ago
4.5.2Latest
github-actions[bot]github-actions[bot]·2mo ago·April 29, 2026
GitHub

📋 Changes

  • Chore: Bump update commons-beanutils dependency [\#761](https://github.com/auth0/java-jwt/pull/761) ([tanya732](https://github.com/tanya732))
  • Chore: Update Readme with Java 21 [\#760](https://github.com/auth0/java-jwt/pull/760) ([tanya732](https://github.com/tanya732))
4.5.1
github-actions[bot]github-actions[bot]·4mo ago·February 16, 2026
GitHub

📋 Changes

  • Update jackson dependency [\#732](https://github.com/auth0/java-jwt/pull/732) ([tanya732](https://github.com/tanya732))
4.5.0
github-actions[bot]github-actions[bot]·1y ago·January 29, 2025
GitHub

📋 Changes

  • Upgraded Plugin [\#711](https://github.com/auth0/java-jwt/pull/711) ([tanya732](https://github.com/tanya732))
  • Fix jackson vuln [\#705](https://github.com/auth0/java-jwt/pull/705) ([tanya732](https://github.com/tanya732))
  • Fix typo in example code [\#682](https://github.com/auth0/java-jwt/pull/682) ([kasperkarlsson](https://github.com/kasperkarlsson))
  • Remove dead README links [\#676](https://github.com/auth0/java-jwt/pull/676) ([jimmyjames](https://github.com/jimmyjames))
  • Fix typo on a comment in JWTCreator.java [\#672](https://github.com/auth0/java-jwt/pull/672) ([sgc109](https://github.com/sgc109))
  • Remove CircleCI [\#670](https://github.com/auth0/java-jwt/pull/670) ([jimmyjames](https://github.com/jimmyjames))
  • Empty string audience claim should be deserialized as empty string [\#663](https://github.com/auth0/java-jwt/pull/663) ([jimmyjames](https://github.com/jimmyjames))
  • empty expected audience array should throw InvalidClaimException [\#679](https://github.com/auth0/java-jwt/pull/679) ([jimmyjames](https://github.com/jimmyjames))
4.4.0
jimmyjamesjimmyjames·3y ago·March 31, 2023
GitHub

📋 Changes

  • Add support for passing json values for header and payload [\#643](https://github.com/auth0/java-jwt/pull/643) ([andrewrigas](https://github.com/andrewrigas))
  • Preserve insertion order for claims [\#656](https://github.com/auth0/java-jwt/pull/656) ([snago](https://github.com/snago))
  • Update Jackson to 2.14.2 [\#657](https://github.com/auth0/java-jwt/pull/657) ([jimmyjames](https://github.com/jimmyjames))
4.3.0
jimmyjamesjimmyjames·3y ago·February 13, 2023
GitHub

📋 Changes

  • Improve JWT parse/decode performance [\#620](https://github.com/auth0/java-jwt/pull/620) ([noetro](https://github.com/noetro))
  • Fix for exp claim considered valid if equal to now [\#652](https://github.com/auth0/java-jwt/pull/652) ([jimmyjames](https://github.com/jimmyjames))
  • Code cleanup [\#642](https://github.com/auth0/java-jwt/pull/642) ([CodeDead](https://github.com/CodeDead))
4.2.2
poovamrajpoovamraj·3y ago·January 11, 2023
GitHub

[Full Changelog](https://github.com/auth0/java-jwt/compare/4.2.1...4.2.2) This patch release does not contain any functional changes, but is being released using an updated signing key for verification as part of our commitment to best security practices. Please review [the README note for additional details.](https://github.com/auth0/java-jwt/blob/master/README.md)

3.19.4
jimmyjamesjimmyjames·3y ago·January 11, 2023
GitHub

[Full Changelog](https://github.com/auth0/java-jwt/compare/3.19.3...3.19.4) This patch release does not contain any functional changes, but is being released using an updated signing key for verification as part of our commitment to best security practices. Please review [the README note for additional details.](https://github.com/auth0/java-jwt/blob/v3/README.md)

4.2.1
jimmyjamesjimmyjames·3y ago·October 25, 2022
GitHub

**Security** Bump com.fasterxml.jackson.core:jackson-databind to 2.13.4.2 https://github.com/auth0/java-jwt/pull/630 ([evansims](https://github.com/evansims))

3.19.3
jimmyjamesjimmyjames·3y ago·October 28, 2022
GitHub

📋 Changes

  • Update com.fasterxml.jackson.core:jackson-databind to 2.13.4.2 [\#631](https://github.com/auth0/java-jwt/pull/631) ([jimmyjames](https://github.com/jimmyjames))
4.2.0
auth0-ossauth0-oss·3y ago·October 20, 2022
GitHub

📋 Changes

  • Re-enable japicmp API diff checking [\#619](https://github.com/auth0/java-jwt/pull/619) ([jimmyjames](https://github.com/jimmyjames))
  • Update .shiprc to only update lib version in build.gradle [\#625](https://github.com/auth0/java-jwt/pull/625) ([jimmyjames](https://github.com/jimmyjames))
  • Optimise TokenUtils parsing [\#611](https://github.com/auth0/java-jwt/pull/611) ([noetro](https://github.com/noetro))
  • Update Circle Ship Orb configuration [\#616](https://github.com/auth0/java-jwt/pull/616) ([frederikprijck](https://github.com/frederikprijck))
  • Update Claim#asString documentation [\#615](https://github.com/auth0/java-jwt/pull/615) ([jimmyjames](https://github.com/jimmyjames))
4.1.0
auth0-ossauth0-oss·3y ago·October 10, 2022
GitHub

📋 Changes

  • Make JWT constants final values [\#604](https://github.com/auth0/java-jwt/pull/604) ([poovamraj](https://github.com/poovamraj))
  • Add integration with our Shipping orb [\#612](https://github.com/auth0/java-jwt/pull/612) ([frederikprijck](https://github.com/frederikprijck))
  • Add Ship CLI support [\#609](https://github.com/auth0/java-jwt/pull/609) ([jimmyjames](https://github.com/jimmyjames))
  • Provide straightforward example for JWKS [\#600](https://github.com/auth0/java-jwt/pull/600) ([poovamraj](https://github.com/poovamraj))
  • Update to gradle 6.9.2 [\#608](https://github.com/auth0/java-jwt/pull/608) ([jimmyjames](https://github.com/jimmyjames))
  • Update OSS plugin to latest [\#607](https://github.com/auth0/java-jwt/pull/607) ([jimmyjames](https://github.com/jimmyjames))
  • [SDK-3466] Upgrade Codecov [\#595](https://github.com/auth0/java-jwt/pull/595) ([evansims](https://github.com/evansims))
  • Update README.md [\#590](https://github.com/auth0/java-jwt/pull/590) ([poovamraj](https://github.com/poovamraj))
  • + 2 more
4.0.0
poovamrajpoovamraj·4y ago·June 24, 2022
GitHub

📦 [4.0.0](https://github.com/auth0/java-jwt/tree/4.0.0) (2022-06-24)

  • [Full Changelog](https://github.com/auth0/java-jwt/compare/3.19.2...4.0.0)
  • This is a major release and contains breaking changes!
  • 💡 Check the [Migration Guide](https://github.com/auth0/java-jwt/blob/master/MIGRATION_GUIDE.md) to understand the changes required to migrate your application to v4.

Main features

  • Predicates based claim verification
  • Support for Instant API and Lambda functions
  • Improved Exceptions API
  • Consistent null handling
  • See the changelog entries for additional details.
4.0.0-beta.0Pre-release
poovamrajpoovamraj·4y ago·May 6, 2022
GitHub

📦 [4.0.0-beta.0](https://github.com/auth0/java-jwt/tree/4.0.0-beta.0) (2022-05-06)

  • [Full Changelog](https://github.com/auth0/java-jwt/compare/3.19.2...4.0.0-beta.0)
  • 💡 Check the [Migration Guide](https://github.com/auth0/java-jwt/blob/master/MIGRATION_GUIDE.md) to understand the changes required to migrate your application to v4.
  • Added
  • JavaDoc updated [\#577](https://github.com/auth0/java-jwt/pull/577) ([poovamraj](https://github.com/poovamraj))
  • Add Migration Guide [\#576](https://github.com/auth0/java-jwt/pull/576) ([jimmyjames](https://github.com/jimmyjames))
  • Expose claim name and header constants [\#574](https://github.com/auth0/java-jwt/pull/574) ([jimmyjames](https://github.com/jimmyjames))
  • Added support for multiple checks on a single claim [\#573](https://github.com/auth0/java-jwt/pull/573) ([poovamraj](https://github.com/poovamraj))
  • Improved README structure [\#571](https://github.com/auth0/java-jwt/pull/571) ([poovamraj](https://github.com/poovamraj))
  • + 31 more
3.19.2
poovamrajpoovamraj·4y ago·May 5, 2022
GitHub

📦 [3.19.2](https://github.com/auth0/java-jwt/tree/3.19.2) (2022-05-05)

  • [Full Changelog](https://github.com/auth0/java-jwt/compare/3.19.1...3.19.2)
  • Security
  • [SDK-3311] Added protection against CVE-2022-21449 [\#579](https://github.com/auth0/java-jwt/pull/579) ([poovamraj](https://github.com/poovamraj))
3.19.1
poovamrajpoovamraj·4y ago·March 30, 2022
GitHub

📦 [3.19.1](https://github.com/auth0/java-jwt/tree/3.19.1) (2022-03-30)

  • [Full Changelog](https://github.com/auth0/java-jwt/compare/3.19.0...3.19.1)
  • Security
  • Security: Bump `jackson-databind` to 2.13.2.2 [\#566](https://github.com/auth0/java-jwt/pull/566) ([evansims](https://github.com/evansims))
3.19.0
jimmyjamesjimmyjames·4y ago·March 14, 2022
GitHub

📋 Changes

  • Deprecate ES256K Algorithm [\#543](https://github.com/auth0/java-jwt/pull/543) ([poovamraj](https://github.com/poovamraj))
  • fix typos in JWTVerifier#verify docstring [\#526](https://github.com/auth0/java-jwt/pull/526) ([OdunlamiZO](https://github.com/OdunlamiZO))
  • Bump `jackson-databind` dependency to 2.13.2 [\#542](https://github.com/auth0/java-jwt/pull/542) ([evansims](https://github.com/evansims))
3.18.3
jimmyjamesjimmyjames·4y ago·January 13, 2022
GitHub

📋 Changes

  • Update jackson dependency [\#523](https://github.com/auth0/java-jwt/pull/523) ([poovamraj](https://github.com/poovamraj))
3.18.2
jimmyjamesjimmyjames·4y ago·January 13, 2022
GitHub

📋 Changes

  • [SDK-2758] Restore withIssuer [\#513](https://github.com/auth0/java-jwt/pull/513) ([jimmyjames](https://github.com/jimmyjames))
  • [SDK-2751] Serialize audience claim when a List [\#512](https://github.com/auth0/java-jwt/pull/512) ([jimmyjames](https://github.com/jimmyjames))
3.18.1
lbalmacedalbalmaceda·4y ago·July 6, 2021
GitHub

📋 Changes

  • Fix min JDK version regression [\#504](https://github.com/auth0/java-jwt/pull/504) ([lbalmaceda](https://github.com/lbalmaceda))
3.18.0
lbalmacedalbalmaceda·4y ago·July 5, 2021
GitHub

💥 This release contains an unintended breaking change that got fixed in `3.18.1`**

  • [Full Changelog](https://github.com/auth0/java-jwt/compare/3.17.0...3.18.0)
  • Changed
  • Update OSS release plugin version [\#501](https://github.com/auth0/java-jwt/pull/501) ([lbalmaceda](https://github.com/lbalmaceda))
3.17.0
lbalmacedalbalmaceda·4y ago·July 5, 2021
GitHub

📋 Changes

  • Add module system support [\#484](https://github.com/auth0/java-jwt/pull/484) ([XakepSDK](https://github.com/XakepSDK))
3.16.0
lbalmacedalbalmaceda·5y ago·June 25, 2021
GitHub

📋 Changes

  • Improve Javadoc generation [\#496](https://github.com/auth0/java-jwt/pull/496) ([Marcono1234](https://github.com/Marcono1234))
  • Add package-info.java for internal `impl` package [\#495](https://github.com/auth0/java-jwt/pull/495) ([Marcono1234](https://github.com/Marcono1234))
3.15.0
jimmyjamesjimmyjames·5y ago·April 14, 2021
GitHub

📋 Changes

  • Remove jcenter [\#482](https://github.com/auth0/java-jwt/pull/482) ([jimmyjames](https://github.com/jimmyjames))
  • Move form commons-codec Base64 to j.u.Base64 [\#478](https://github.com/auth0/java-jwt/pull/478) ([XakepSDK](https://github.com/XakepSDK))
3.14.0
jimmyjamesjimmyjames·5y ago·April 5, 2021
GitHub

📋 Changes

  • Add withPayload to JWTCreator.Builder [\#475](https://github.com/auth0/java-jwt/pull/475) ([jimmyjames](https://github.com/jimmyjames))
3.13.0
jimmyjamesjimmyjames·5y ago·February 5, 2021
GitHub

📋 Changes

  • Add ability to verify audience contains at least one of those expected [\#472](https://github.com/auth0/java-jwt/pull/472) ([jimmyjames](https://github.com/jimmyjames))
  • Add toString to Claim objects [SDK-2225] [\#469](https://github.com/auth0/java-jwt/pull/469) ([jimmyjames](https://github.com/jimmyjames))
3.12.1
jimmyjamesjimmyjames·5y ago·January 21, 2021
GitHub

📋 Changes

  • Update jackson-databind to 2.11.0 [\#464](https://github.com/auth0/java-jwt/pull/464) ([darveshsingh](https://github.com/darveshsingh))
3.12.0
jimmyjamesjimmyjames·5y ago·January 11, 2021
GitHub

📋 Changes

  • Thread-safe classes should be Shared statically [\#462](https://github.com/auth0/java-jwt/pull/462) ([LeeHainie](https://github.com/LeeHainie))
  • Update jackson-databind to 2.10.5.1 (fixes CVE-2020-25649) [\#463](https://github.com/auth0/java-jwt/pull/463) ([overheadhunter](https://github.com/overheadhunter))
  • Target Java 8 [\#455](https://github.com/auth0/java-jwt/pull/455) ([lbalmaceda](https://github.com/lbalmaceda))
3.11.0
jimmyjamesjimmyjames·5y ago·September 28, 2020
GitHub

📋 Changes

  • Add ability to verify claim presence [\#442](https://github.com/auth0/java-jwt/pull/442) ([jimmyjames](https://github.com/jimmyjames))
  • Add Support for secp256k1 algorithms (AKA ES256K) [\#439](https://github.com/auth0/java-jwt/pull/439) ([jimmyjames](https://github.com/jimmyjames))
  • Fix and document thread-safety [\#427](https://github.com/auth0/java-jwt/pull/427) ([lbalmaceda](https://github.com/lbalmaceda))
  • Wrap IllegalArgumentException into JWTDecodeException [\#426](https://github.com/auth0/java-jwt/pull/426) ([lbalmaceda](https://github.com/lbalmaceda))
3.10.2
jimmyjamesjimmyjames·6y ago·March 30, 2020
GitHub

📋 Changes

  • JavaDoc fix [\#413](https://github.com/auth0/java-jwt/pull/413) ([jimmyjames](https://github.com/jimmyjames))
  • Check varargs null values in JWTVerifier [\#412](https://github.com/auth0/java-jwt/pull/412) ([jimmyjames](https://github.com/jimmyjames))
3.10.1
jimmyjamesjimmyjames·6y ago·March 16, 2020
GitHub

📦 [3.10.1](https://github.com/auth0/java-jwt/tree/3.10.1) (2020-03-13)

  • [Full Changelog](https://github.com/auth0/java-jwt/compare/3.10.0...3.10.1)
  • Changed
  • Update Jackson and Commons Codec dependencies [\#407](https://github.com/auth0/java-jwt/pull/407) ([jimmyjames](https://github.com/jimmyjames))
  • Security
  • Update jackson-databind to 2.10.2 [\#399](https://github.com/auth0/java-jwt/pull/399) ([gexclaude](https://github.com/gexclaude))
View all releases on GitHub
← Back to java-jwt wiki