diff --git a/atlassian-connect-core.cabal b/atlassian-connect-core.cabal
--- a/atlassian-connect-core.cabal
+++ b/atlassian-connect-core.cabal
@@ -5,7 +5,7 @@
 -- see: https://github.com/sol/hpack
 
 name:           atlassian-connect-core
-version:        0.10.0.1
+version:        0.10.0.2
 synopsis:       Atlassian Connect snaplet for the Snap Framework and helper code.
 description:    This library allows you to quickly get an Atlassian Connect application running
                 on top of the Snap Framework. It provides best practices and helper functions to get you moving
@@ -76,7 +76,7 @@
     , http-client-tls >=0.2
     , http-media ==0.8.*
     , http-types >=0.8
-    , jwt ==0.10.*
+    , jwt >=0.10 && <0.12
     , mtl ==2.*
     , network-api-support >=0.2
     , snap >=0.14
diff --git a/src/Snap/AtlassianConnect/HostRequest.hs b/src/Snap/AtlassianConnect/HostRequest.hs
--- a/src/Snap/AtlassianConnect/HostRequest.hs
+++ b/src/Snap/AtlassianConnect/HostRequest.hs
@@ -156,11 +156,9 @@
   return $ JWT.encodeSigned signer header (createClaims pluginKey' fromTime queryStringHash)
   where
       signer = JWT.hmacSecret sharedSecret'
-      header = JWT.JOSEHeader
+      header = mempty
         { JWT.alg = Just JWT.HS256
-        , JWT.kid = Nothing
         , JWT.typ = Just "JWT"
-        , JWT.cty = Nothing
         }
 
 createClaims :: CD.PluginKey -> P.POSIXTime -> T.Text -> JWT.JWTClaimsSet
diff --git a/src/Snap/AtlassianConnect/OAuth.hs b/src/Snap/AtlassianConnect/OAuth.hs
--- a/src/Snap/AtlassianConnect/OAuth.hs
+++ b/src/Snap/AtlassianConnect/OAuth.hs
@@ -105,11 +105,9 @@
         Just claims -> return . Just $ JWT.encodeSigned signer header claims
     where
         signer = JWT.hmacSecret . AC.sharedSecret $ tenant
-        header = JWT.JOSEHeader
+        header = mempty
             { JWT.alg = Just JWT.HS256
-            , JWT.kid = Nothing
             , JWT.typ = Just "JWT"
-            , JWT.cty = Nothing
             }
 
 -- These claims are documented here: https://developer.atlassian.com/cloud/jira/platform/oauth-2-jwt-bearer-token-authorization-grant-type/
