Struct graph_core::identity::JsonWebKey

pub struct JsonWebKey {
    pub kty: String,
    pub _use: Option<String>,
    pub key_ops: Vec<String>,
    pub alg: Option<String>,
    pub kid: Option<String>,
    pub x5u: Option<Url>,
    pub x5c: Option<String>,
    pub x5t: Option<String>,
    pub x5t_s256: Option<String>,
    pub additional_fields: HashMap<String, Value>,
}

JSON Web Key (JWK) is a JSON object that represents a cryptographic key. The members of the object represent properties of the key, including its value. RFC 7517

Fields

kty: String

The “kty” (key type) parameter identifies the cryptographic algorithm family used with the key, such as “RSA” or “EC”. “kty” values should either be registered in the IANA “JSON Web Key Types” registry established by [JWA] or be a value that contains a Collision-Resistant Name. The “kty” value is a case-sensitive string. This member MUST be present in a JWK. RFC 7517

_use: Option<String>

The “use” (public key use) parameter identifies the intended use of the public key. The “use” parameter is employed to indicate whether a public key is used for encrypting data or verifying the signature on data. RFC 7517

key_ops: Vec<String>

The “key_ops” (key operations) parameter identifies the operation(s) for which the key is intended to be used. The “key_ops” parameter is intended for use cases in which public, private, or symmetric keys may be present. RFC 7517

alg: Option<String>

The “alg” (algorithm) parameter identifies the algorithm intended for use with the key. The values used should either be registered in the IANA “JSON Web Signature and Encryption Algorithms” registry established by JWA or be a value that contains a Collision-Resistant Name. The “alg” value is a case-sensitive ASCII string. Use of this member is OPTIONAL. RFC 7517

kid: Option<String>

The “kid” (key ID) parameter is used to match a specific key. This is used, for instance, to choose among a set of keys within a JWK Set during key rollover. The structure of the “kid” value is unspecified. When “kid” values are used within a JWK Set, different keys within the JWK Set SHOULD use distinct “kid” values. (One example in which different keys might use the same “kid” value is if they have different “kty” (key type) values but are considered to be equivalent alternatives by the application using them.) The “kid” value is a case-sensitive string. Use of this member is OPTIONAL. When used with JWS or JWE, the “kid” value is used to match a JWS or JWE “kid” Header Parameter value. RFC 7517

x5u: Option<Url>

The “x5u” (X.509 URL) parameter is a URI that refers to a resource for an X.509 public key certificate or certificate chain RFC 7517

x5c: Option<String>

The “x5c” (X.509 certificate chain) parameter contains a chain of one or more PKIX certificates RFC5280. The certificate chain is represented as a JSON array of certificate value strings. Each string in the array is a base64-encoded (Section 4 of RFC4648 – not base64url-encoded) DER ITU.X690.1994 PKIX certificate value. The PKIX certificate containing the key value MUST be the first certificate. This MAY be followed by additional certificates, with each subsequent certificate being the one used to certify the previous one. The key in the first certificate MUST match the public key represented by other members of the JWK. Use of this member is OPTIONAL. RFC 7517

x5t: Option<String>

The “x5t” (X.509 certificate SHA-1 thumbprint) parameter is a base64url-encoded SHA-1 thumbprint (a.k.a. digest) of the DER encoding of an X.509 certificate [RFC5280] Note that certificate thumbprints are also sometimes known as certificate fingerprints. The key in the certificate MUST match the public key represented by other members of the JWK. Use of this member is OPTIONAL RFC 7517

x5t_s256: Option<String>

The “x5t#S256” (X.509 certificate SHA-256 thumbprint) parameter is a base64url-encoded SHA-256 thumbprint (a.k.a. digest) of the DER encoding of an X.509 certificate Note that certificate thumbprints are also sometimes known as certificate fingerprints. The key in the certificate MUST match the public key represented by other members of the JWK. Use of this member is OPTIONAL. RFC 7517

additional_fields: HashMap<String, Value>

Trait Implementations

impl Clone for JsonWebKey

fn clone(&self) -> JsonWebKey

Returns a copy of the value.

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source.

impl Debug for JsonWebKey

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter.

impl<'de> Deserialize<'de> for JsonWebKey

fn deserialize<__D>(__deserializer: __D) -> Result<Self, __D::Error>

where __D: Deserializer<'de>,

Deserialize this value from the given Serde deserializer.

impl Display for JsonWebKey

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter.

impl Hash for JsonWebKey

fn hash<H: Hasher>(&self, state: &mut H)

Feeds this value into the given Hasher.

fn hash_slice<H>(data: &[Self], state: &mut H)

where H: Hasher, Self: Sized,

Feeds a slice of this type into the given Hasher.

impl PartialEq for JsonWebKey

fn eq(&self, other: &JsonWebKey) -> bool

This method tests for self and other values to be equal, and is used by ==.

fn ne(&self, other: &Rhs) -> bool

This method tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.

impl Serialize for JsonWebKey

fn serialize<__S>(&self, __serializer: __S) -> Result<__S::Ok, __S::Error>

where __S: Serializer,

Serialize this value into the given Serde serializer.

impl Eq for JsonWebKey

impl StructuralPartialEq for JsonWebKey