fixed

deatil · deatil · commit 12ea0d318adf · 2025-02-26T11:17:07.000+08:00
diff --git a/README.md b/README.md
@@ -83,11 +83,11 @@ pub fn main() !void {
     std.debug.print("make jwt: {s} \n", .{token_string});
 
     const p = jwt.SigningMethodEdDSA.init(alloc);
-    var parsed = try p.parse(token_string, kp.public_key);
+    var token = try p.parse(token_string, kp.public_key);
     
     // output: 
     // claims aud: example.com
-    const claims2 = try parsed.getClaims();
+    const claims2 = try token.getClaims();
     std.debug.print("claims aud: {s} \n", .{claims2.object.get("aud").?.string});
 }
 ~~~
diff --git a/build.zig.zon b/build.zig.zon
@@ -1,7 +1,7 @@
 .{
     .name = "zig-jwt",
     .description = "A JWT (JSON Web Token) library for zig.",
-    .version = "1.0.11",
+    .version = "1.0.12",
     .paths = .{
         "build.zig",
         "build.zig.zon",
diff --git a/src/jwt.zig b/src/jwt.zig
@@ -85,14 +85,16 @@ pub fn JWT(comptime Signer: type, comptime SecretKeyType: type, comptime PublicK
             try t.setHeader(header);
             try t.setClaims(claims);
 
-            const signing_string = try t.signingString();
             defer t.deinit();
 
-            const signature = try self.signer.sign(signing_string, secret_key);
-            t.withSignature(signature);
+            const signing_string = try t.signingString();
+            defer self.alloc.free(signing_string);
 
+            const signature = try self.signer.sign(signing_string, secret_key);
             defer self.alloc.free(signature);
 
+            t.withSignature(signature);
+
             const signed_token = try t.signedString();
             return signed_token;
         }
@@ -111,13 +113,16 @@ pub fn JWT(comptime Signer: type, comptime SecretKeyType: type, comptime PublicK
             }
 
             const signature = t.getSignature();
-    
+            defer self.alloc.free(signature);
+
             const token_sign = try self.alloc.alloc(u8, signature.len);
             @memcpy(token_sign[0..], signature[0..]);
 
             defer self.alloc.free(token_sign);
 
             const signing_string = try t.signingString();
+            defer self.alloc.free(signing_string);
+            
             if (!self.signer.verify(signing_string, token_sign, public_key)) {
                 return Error.JWTVerifyFail;
             }
