1
  2
  3
  4
  5
  6
  7
  8
  9
 10
 11
 12
 13
 14
 15
 16
 17
 18
 19
 20
 21
 22
 23
 24
 25
 26
 27
 28
 29
 30
 31
 32
 33
 34
 35
 36
 37
 38
 39
 40
 41
 42
 43
 44
 45
 46
 47
 48
 49
 50
 51
 52
 53
 54
 55
 56
 57
 58
 59
 60
 61
 62
 63
 64
 65
 66
 67
 68
 69
 70
 71
 72
 73
 74
 75
 76
 77
 78
 79
 80
 81
 82
 83
 84
 85
 86
 87
 88
 89
 90
 91
 92
 93
 94
 95
 96
 97
 98
 99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119

use std::collections::HashMap;

/// Json Web Keys structure defined by [RFC](https://tools.ietf.org/html/rfc7517)
///
#[derive(Serialize, Deserialize, Clone, Debug, PartialEq, Default)]
pub struct Jwk {
    #[serde(skip_serializing_if = "Option::is_none")]
    pub kty: Option<String>,
    #[serde(rename = "use", skip_serializing_if = "Option::is_none")]
    pub use_: Option<String>,
    #[serde(skip_serializing_if = "Option::is_none")]
    pub crv: Option<String>,
    pub key_ops: Vec<KeyOps>,
    pub alg: KeyAlgorithm,
    #[serde(skip_serializing_if = "Option::is_none")]
    pub kid: Option<String>,
    #[serde(flatten)]
    other: HashMap<String, String>,
}

impl Jwk {
    /// Constructor with all default, empty or `None` values.
    ///
    pub fn new() -> Self {
        Self::default()
    }
    /// Creates `epk` jwk entry with required properties.
    /// Correctness is not verified by this constructor and totaly rely on caller.
    ///
    pub fn ephemeral(mut self, kty: String, crv: String, x: String, y: String)
        -> Self {
        self.kty = Some(kty);
        self.crv = Some(crv);
        self.other.insert("x".into(), x);
        self.other.insert("y".into(), y);
        self
    }
    /// Insert new custom, non-defined by spec, header.
    ///
    pub fn add_other_header(&mut self, k: String, v: String) {
        self.other.insert(k, v);
    }
}

// WARN: Does not support other key operation types ATM.
#[derive(Serialize, Deserialize, Clone, Debug, PartialEq)]
#[serde(rename_all = "camelCase")]
pub enum KeyOps {
    Sign,
    Verify,
    Encrypt,
    Decrypt,
    WrapKey,
    UnwrapKey,
    DeriveKey,
    DeriveBits,
    Other,
}

/// `alg` field values provided by [RFC](https://tools.ietf.org/html/rfc7518)
///
#[derive(Serialize, Deserialize, Clone, Debug, PartialEq)]
pub enum KeyAlgorithm {
    HS256,
    HS384,
    HS512,
    RS256,
    RS384,
    RS512,
    ES256,
    ES384,
    ES512,
    PS384,
    PS512,
    RSA1_5,
    #[serde(rename = "RSA-OAEP")]
    RsaOaep,
    #[serde(rename = "RSA-OAEP-256")]
    RsaOaep256,
    A128KW,
    A256KW,
    #[serde(rename = "dir")]
    Dir,
    #[serde(rename = "ECDH-ES")]
    EcdhEs,
    #[serde(rename = "ECDH-ES+A128KW")]
    EcdhEsPlusA128kw,
    #[serde(rename = "ECDH-ES+A192KW")]
    EcdhEsPulsA192kw,
    #[serde(rename = "ECDH-ES+A256KW")]
    EcdhEsA256kw,
    A128GCMKW,
    A192GCMKW,
    A256GCMKW,
    #[serde(rename = "PBES2-HS256+A128KW")]
    Pbes2Hs256A128kw,
    #[serde(rename = "PBES2-HS384+A192KW")]
    Pbes2Hs384A192kw,
    #[serde(rename = "PBES2-HS512+A256KW")]
    Pbes2Hs512A256kw,
    #[serde(rename = "EdDSA")]
    EdDsa,
    #[serde(rename = "none")]
    None,
}

impl std::string::ToString for KeyAlgorithm {
    fn to_string(&self) -> String {
        // can't fail on enums
        serde_json::to_string(&self).unwrap()
    }
}

impl std::default::Default for KeyAlgorithm {
    fn default() -> Self {
        KeyAlgorithm::None
    }
}