jaws 1.0.4

JSON Algorithms and Web Signing
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109

use std::fmt;

use base64ct::Encoding;
use bytes::Bytes;

pub use signature::*;

/// A signature which has not been matched to an algorithm or key.
///
/// This is a basic signature `struct` which can be used to store any signature
/// on the heap. It is used to store the signature of a JWT before it is verified,
/// or if a signature has a variable length.
#[derive(Clone, PartialEq, Eq, Hash)]
pub struct SignatureBytes(Bytes);

impl SignatureBytes {
    /// Create a new signature from a base64url-encoded string.
    pub fn from_b64url(data: &str) -> std::result::Result<Self, base64ct::Error> {
        Ok(Self(Bytes::from(base64ct::Base64UrlUnpadded::decode_vec(
            data,
        )?)))
    }
}

impl fmt::Debug for SignatureBytes {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        f.debug_tuple("SignatureBytes")
            .field(&base64ct::Base64UrlUnpadded::encode_string(self.0.as_ref()))
            .finish()
    }
}

impl AsRef<[u8]> for SignatureBytes {
    fn as_ref(&self) -> &[u8] {
        &self.0
    }
}

impl From<&[u8]> for SignatureBytes {
    fn from(bytes: &[u8]) -> Self {
        SignatureBytes(bytes.to_owned().into())
    }
}

impl From<Bytes> for SignatureBytes {
    fn from(bytes: Bytes) -> Self {
        SignatureBytes(bytes)
    }
}

impl From<SignatureBytes> for Bytes {
    fn from(bytes: SignatureBytes) -> Self {
        bytes.0.clone()
    }
}

impl From<Vec<u8>> for SignatureBytes {
    fn from(bytes: Vec<u8>) -> Self {
        SignatureBytes(bytes.into())
    }
}

impl signature::SignatureEncoding for SignatureBytes {
    type Repr = Bytes;
}

#[cfg(feature = "spki")]
impl spki::SignatureBitStringEncoding for SignatureBytes {
    fn to_bitstring(&self) -> spki::der::Result<spki::der::asn1::BitString> {
        spki::der::asn1::BitString::from_bytes(self.0.as_ref())
    }
}

#[cfg(feature = "der")]
impl<'c> der::Decode<'c> for SignatureBytes {
    fn decode<R: der::Reader<'c>>(reader: &mut R) -> der::Result<Self> {
        use der::Encode;

        let header = reader.peek_header()?;
        header.tag.assert_eq(der::Tag::Sequence)?;

        let len = (header.encoded_len()? + header.length)?;
        let mut buf = Vec::with_capacity(usize::try_from(len)?);
        let slice = buf
            .get_mut(..usize::try_from(len)?)
            .ok_or_else(|| reader.error(der::Tag::Sequence.length_error().kind()))?;

        reader.read_into(slice)?;
        Ok(Self::from(buf))
    }
}

#[cfg(feature = "der")]
impl der::Tagged for SignatureBytes {
    fn tag(&self) -> der::Tag {
        der::Tag::Sequence
    }
}

#[cfg(feature = "der")]
impl der::Encode for SignatureBytes {
    fn encoded_len(&self) -> der::Result<der::Length> {
        der::Length::try_from(self.0.len())
    }

    fn encode(&self, writer: &mut impl der::Writer) -> der::Result<()> {
        writer.write(self.0.as_ref())
    }
}