#+title: What's new in webidoidc?
#+language: en
#+author: Vivien Kraus
#+email: vivien@planete-kraus.eu

* Initial features
** Add base64 encoding and decoding
** A random number generator
The code provides a thread-safe, parallel, random number generator.
** Generating a key pair
There is a function to generate a RSA or ECC key pair.
** Strip a public key
In order to avoid leaking the private components of a key, the
=strip-key= function keeps only the required parts.
** Hash some data
The function =hash= takes a string, and hashes its UTF-8 encoding.
** Hash a key
In DPoP, the identity provider hashes the client's key in the access
token so that resource servers can verify that the client uses the
correct key.
** Sign and verify signatures
The function =sign= creates a signature with a known JWA, and =verify=
verifies the signature.
** Encode and decode a JWS
The decoding function lets you fetch a key for validation.
** Web cache
Since DPoP and OIDC fetch a lot of things from the internet, it is in
our interest to add a web cache.
# Local Variables:
# mode: org
# End: