1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
use crate::http::HeaderName;
use anyhow::anyhow;
use indexmap::{IndexMap, IndexSet};
#[derive(Debug, serde::Serialize, serde::Deserialize)]
#[non_exhaustive]
pub struct JwsHeader {
pub alg: String,
pub kid: String,
#[serde(default)]
pub tl_version: String,
#[serde(default)]
pub tl_headers: String,
#[serde(default, skip_serializing_if = "Option::is_none")]
pub jku: Option<String>,
}
impl JwsHeader {
pub(crate) fn new_v2(
kid: &str,
headers: &IndexMap<HeaderName<'_>, &[u8]>,
jku: Option<String>,
) -> Self {
let header_keys = headers.keys().fold(String::new(), |mut all, next| {
if !all.is_empty() {
all.push(',');
}
all.push_str(next.0);
all
});
Self {
alg: "ES512".into(),
kid: kid.into(),
tl_version: "2".into(),
tl_headers: header_keys,
jku,
}
}
pub(crate) fn filter_headers<'a>(
&'a self,
headers: &IndexMap<HeaderName<'_>, &'a [u8]>,
) -> anyhow::Result<IndexMap<HeaderName<'a>, &'a [u8]>> {
let required_headers: IndexSet<_> = self
.tl_headers
.split(',')
.filter(|h| !h.is_empty())
.map(HeaderName)
.collect();
let ordered_headers: IndexMap<_, _> = required_headers
.iter()
.map(|h| {
let hval = headers
.get(h)
.ok_or_else(|| anyhow!("Missing tl_header `{}` declared in signature", h))?;
Ok((*h, *hval))
})
.collect::<anyhow::Result<_>>()?;
Ok(ordered_headers)
}
}