Flask-jwe

Features:

- Replace key XORing for security to plain AES key encryption in the Redis datastore
- Add `alg` parameter for ES key retrieval to allow for EC and RSA keys

Refactoring:

- Refactor Key Retrieval, Store and Building to simplify the FlaskJWE.get_server_key() function

Open Issues:

- RSA-ES currently does not work as pyjwkest does not support saving CEK for JWE response processing (we are working to provide a pull request to fix this)
- Due to this open issue, this version will not be published to PyPI

Bugfixes:

- Include appropriate `cty` JWE header in response JWE

Bugfixes:

- Remove `request._parsed_content_type` before calling request._parse_content_type() after Content-Type change

Features:

- Allow for JWE `cty` header to reset Content-Type for request after request data replacement

Features:

- Add support for Redis+Sentinel

`(redis+sentinel://server1:port,server2:port/serviceName)`
- Add `jwe_request_required` decorator to require a JWE request for an endpoint (otherwise, JWE requests are optional)
- Add support for key per IP for ECDH-ES keys (turned on by default)
- Add support for internal ECDH-ES private key XOR value such that keys stored on Redis are not the actual keys used for ECDH-ES (turned off by default)
- Add support for Flask request data (*.data, .get_data(), .get_json()*) to be replaced with JWE's decrypted data (turned on by default)

PyPI:

- Add `pyjwkest` dependency to setup.py

Dependencies:

- Remove dependency `python-redis-lock`
- Update `pyjwkest` version requirement to 1.1.7

Features:

- Allow any Flask endpoint to accept content using JWE requests and (*optionally, but by default*) return JWE responses
- Provides support for all modes of JWE encryption as provided by `pyjwkest` 1.1.5

Documentation & Examples:

- Create initial README.md
- Example of Flask-JWE use in test/functest_jwe.py