jwt

package

v1.1.1 Latest Latest Go to latest Published: Feb 22, 2024 License: Apache-2.0 Imports: 10 Imported by: 16

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/trustbloc/vc-go

Links

Open Source Insights

Documentation ¶

Index ¶

Constants
func CheckHeaders(headers map[string]interface{}) error
func CheckProof(jwtSerialized string, proofChecker ProofChecker, expectedProofIssuer *string, ...) error
func IsJWS(s string) bool
func IsJWTUnsecured(s string) bool
func PayloadToMap(i interface{}) (map[string]interface{}, error)
type Claims
type JSONWebToken
type JoseSigner
- func NewJOSESigner(params SignParameters, signer ProofCreator) (*JoseSigner, error)
- func (s JoseSigner) Headers() jose.Headers
- func (s JoseSigner) Sign(data []byte) ([]byte, error)
type ParseOpt
type ProofChecker
type ProofCreator
type SignParameters

Constants ¶

View Source

const (
	// TypeJWT defines JWT type.
	TypeJWT = "JWT"
	// TypeSDJWT defines SD-JWT type v5+.
	TypeSDJWT = "SD-JWT"

	// AlgorithmNone used to indicate unsecured JWT.
	AlgorithmNone = "none"
)

Variables ¶

This section is empty.

Functions ¶

func CheckHeaders ¶ added in v1.1.0

func CheckHeaders(headers map[string]interface{}) error

CheckHeaders checks jwt headers.

func CheckProof ¶ added in v1.1.0

func CheckProof(jwtSerialized string, proofChecker ProofChecker,
	expectedProofIssuer *string, detachedPayload []byte) error

CheckProof checks that jwt have correct signature.

func IsJWS ¶

func IsJWS(s string) bool

IsJWS checks if JWT is a JWS of valid structure.

func IsJWTUnsecured ¶

func IsJWTUnsecured(s string) bool

IsJWTUnsecured checks if JWT is an unsecured JWT of valid structure.

func PayloadToMap ¶

func PayloadToMap(i interface{}) (map[string]interface{}, error)

PayloadToMap transforms interface to map.

Types ¶

type Claims ¶

type Claims jwt.Claims

Claims defines JSON Web Token Claims (https://tools.ietf.org/html/rfc7519#section-4)

type JSONWebToken ¶

type JSONWebToken struct {
	Headers jose.Headers

	Payload map[string]interface{}
	// contains filtered or unexported fields
}

JSONWebToken defines JSON Web Token (https://tools.ietf.org/html/rfc7519)

func NewJoseSigned ¶ added in v1.1.0

func NewJoseSigned(claims interface{}, headers jose.Headers, signer jose.Signer) (*JSONWebToken, error)

NewJoseSigned creates new signed JSON Web Token based on input claims.

func NewSigned ¶

func NewSigned(claims interface{}, signParams SignParameters, signer ProofCreator) (*JSONWebToken, error)

NewSigned creates new signed JSON Web Token based on input claims.

func NewUnsecured ¶

func NewUnsecured(claims interface{}) (*JSONWebToken, error)

NewUnsecured creates new unsecured JSON Web Token based on input claims.

func Parse ¶

func Parse(jwtSerialized string, opts ...ParseOpt) (*JSONWebToken, []byte, error)

Parse parses input JWT in serialized form into JSON Web Token.

func ParseAndCheckProof ¶ added in v1.1.0

func ParseAndCheckProof(jwtSerialized string,
	proofChecker ProofChecker, checkIssuer bool, opts ...ParseOpt) (*JSONWebToken, []byte, error)

ParseAndCheckProof parses input JWT in serialized form into JSON Web Token and check signature proof. if checkIssuer set to true, will check if issuer set by "iss" own key set by "kid" header.

func (*JSONWebToken) DecodeClaims ¶

func (j *JSONWebToken) DecodeClaims(c interface{}) error

DecodeClaims fills input c with claims of a token.

func (*JSONWebToken) LookupStringHeader ¶

func (j *JSONWebToken) LookupStringHeader(name string) string

LookupStringHeader makes look up of particular header with string value.

func (*JSONWebToken) Serialize ¶

func (j *JSONWebToken) Serialize(detached bool) (string, error)

Serialize makes (compact) serialization of token.

type JoseSigner ¶ added in v1.1.0

type JoseSigner struct {
	// contains filtered or unexported fields
}

JoseSigner implement jose.proofCreator interface.

func NewJOSESigner ¶ added in v1.1.0

func NewJOSESigner(params SignParameters, signer ProofCreator) (*JoseSigner, error)

NewJOSESigner wraps ProofCreator into jose signer.

func (JoseSigner) Headers ¶ added in v1.1.0

func (s JoseSigner) Headers() jose.Headers

Headers returns headers.

func (JoseSigner) Sign ¶ added in v1.1.0

func (s JoseSigner) Sign(data []byte) ([]byte, error)

Sign returns signature.

func DecodeClaimsTo ¶ added in v1.1.0

func DecodeClaimsTo(decodeDestination interface{}) ParseOpt

DecodeClaimsTo if set claims will be decoded into object pointed by decodeDestination argument.

func WithIgnoreClaimsMapDecoding ¶

func WithIgnoreClaimsMapDecoding(ignoreClaimsMapDecoding bool) ParseOpt

WithIgnoreClaimsMapDecoding option is for ignore decoding claims into .Payload map[string]interface. Decoding to map[string]interface is pretty expensive, so this option can be used for performance critical operations.

func WithJWTDetachedPayload ¶

func WithJWTDetachedPayload(payload []byte) ParseOpt

WithJWTDetachedPayload option is for definition of JWT detached payload.

type ProofChecker ¶ added in v1.1.0

type ProofChecker interface {
	// CheckJWTProof check jwt proof.
	CheckJWTProof(headers jose.Headers, expectedProofIssuer string, msg, signature []byte) error
}

ProofChecker used to check proof of jwt vc.

type ProofCreator ¶ added in v1.1.0

type ProofCreator interface {
	SignJWT(params SignParameters, data []byte) ([]byte, error)
	CreateJWTHeaders(params SignParameters) (jose.Headers, error)
}

ProofCreator defines signer interface which is used to sign VC JWT.

type SignParameters ¶ added in v1.1.0

type SignParameters struct {
	KeyID             string
	JWTAlg            string
	AdditionalHeaders jose.Headers
}

SignParameters contains parameters of signing for jwt vc.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL