From 653ffa0ba77b4b455f90ae0fa57e003028a64f05 Mon Sep 17 00:00:00 2001 From: Jody McIntyre Date: Wed, 22 Jan 2025 16:11:21 -0500 Subject: [PATCH] Add note to SigningMethod docs SigningMethod is not checked when a user-defined KeyFunc is provided. This is explained in the KeyFunc documentation, but we managed to overlook this when configuring echo-jwt. This commit adds a note to the SigningMethod documentation to help prevent others from making the same mistake. --- jwt.go | 1 + 1 file changed, 1 insertion(+) diff --git a/jwt.go b/jwt.go index 1e97d30..1ce6678 100644 --- a/jwt.go +++ b/jwt.go @@ -57,6 +57,7 @@ type Config struct { SigningKeys map[string]interface{} // Signing method used to check the token's signing algorithm. + // SigningMethod is not checked when a user-defined KeyFunc is provided. // Optional. Default value HS256. SigningMethod string