1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
#[cfg(feature = "alloc")]
use alloc::{string::String, vec::Vec};
use sha2::Sha256;
#[cfg(feature = "alloc")]
use crate::buffer::SecretBytes;
use crate::{
alg::KeyAlg,
buffer::{HashBuffer, WriteBuffer},
error::Error,
};
mod encode;
pub use self::encode::{JwkBufferEncoder, JwkEncoder, JwkEncoderMode, JwkSerialize};
mod ops;
pub use self::ops::{KeyOps, KeyOpsSet};
mod parts;
pub use self::parts::JwkParts;
pub trait ToJwk {
fn encode_jwk(&self, enc: &mut dyn JwkEncoder) -> Result<(), Error>;
#[cfg(feature = "alloc")]
#[cfg_attr(docsrs, doc(cfg(feature = "alloc")))]
fn to_jwk_thumbprint(&self, alg: Option<KeyAlg>) -> Result<String, Error> {
let mut v = Vec::with_capacity(43);
write_jwk_thumbprint(self, alg, &mut v)?;
Ok(String::from_utf8(v).unwrap())
}
#[cfg(feature = "alloc")]
#[cfg_attr(docsrs, doc(cfg(feature = "alloc")))]
fn to_jwk_public(&self, alg: Option<KeyAlg>) -> Result<String, Error> {
let mut v = Vec::with_capacity(128);
let mut buf = JwkBufferEncoder::new(&mut v, JwkEncoderMode::PublicKey).alg(alg);
self.encode_jwk(&mut buf)?;
buf.finalize()?;
Ok(String::from_utf8(v).unwrap())
}
#[cfg(feature = "alloc")]
#[cfg_attr(docsrs, doc(cfg(feature = "alloc")))]
fn to_jwk_secret(&self, alg: Option<KeyAlg>) -> Result<SecretBytes, Error> {
let mut v = SecretBytes::with_capacity(128);
let mut buf = JwkBufferEncoder::new(&mut v, JwkEncoderMode::SecretKey).alg(alg);
self.encode_jwk(&mut buf)?;
buf.finalize()?;
Ok(v)
}
}
pub fn write_jwk_thumbprint<K: ToJwk + ?Sized>(
key: &K,
alg: Option<KeyAlg>,
output: &mut dyn WriteBuffer,
) -> Result<(), Error> {
let mut hasher = HashBuffer::<Sha256>::new();
let mut buf = JwkBufferEncoder::new(&mut hasher, JwkEncoderMode::Thumbprint).alg(alg);
key.encode_jwk(&mut buf)?;
buf.finalize()?;
let hash = hasher.finalize();
let mut buf = [0u8; 43];
let len = base64::encode_config_slice(&hash, base64::URL_SAFE_NO_PAD, &mut buf);
output.buffer_write(&buf[..len])?;
Ok(())
}
pub trait FromJwk: Sized {
fn from_jwk(jwk: &str) -> Result<Self, Error> {
JwkParts::from_str(jwk).and_then(Self::from_jwk_parts)
}
fn from_jwk_slice(jwk: &[u8]) -> Result<Self, Error> {
JwkParts::from_slice(jwk).and_then(Self::from_jwk_parts)
}
fn from_jwk_parts(jwk: JwkParts<'_>) -> Result<Self, Error>;
}