Changelog

1.0.0 (2016-05-07)

• Enhancements
  • Documentation! Many thanks to @soumyaray for the motivation to improve documentation.
  • Support for OpenSSH octet key pairs (for Ed25519).
  • Better key management behavior associated with ECDH-ES algorithms.

0.3.1 (2016-05-05)

• Fixes
  • Fix bug with PBES2 based encryption.

0.3.0 (2016-05-05)

• Enhancements
  • Added merge functions:
  • JOSE::JWE#merge
  • JOSE::JWK#merge
  • JOSE::JWS#merge
  • JOSE::JWT#merge
  • Added block_encryptor and signer functions:
  • JOSE::JWK#block_encryptor
  • JOSE::JWK#signer
  • Support for "alg", "enc", and "use" on keys.

Examples of new functionality:

# Let's generate a 64 byte octet key
jwk = JOSE::JWK.generate_key([:oct, 64])
# => {"k"=>"FXSy7PufOayusvfyKQzdxCegm7yWIMp1b0LD13v57Nq2wF_B-fcr7LDOkufDikmFFsVYWLgrA2zEB--_qqDn3g", "kty"=>"oct"}

# Based on the key's size and type, a default signer (JWS) can be determined
jwk.signer
# => {"alg"=>"HS512"}

# Based on the key's size and type, a default encryptor (JWE) can be determined
jwk.block_encryptor
# => {"alg"=>"dir", "enc"=>"A256CBC-HS512"}

# Keys can be generated based on the signing algorithm (JWS)
JOSE::JWS.generate_key({'alg' => 'HS256'})
# => {"alg"=>"HS256", "k"=>"UuP3Tw2xbGV5N3BGh34cJNzzC2R1zU7i4rOnF9A8nqY", "kty"=>"oct", "use"=>"sig"}

# Keys can be generated based on the encryption algorithm (JWE)
JOSE::JWE.generate_key({'alg' => 'dir', 'enc' => 'A128GCM'})
# => {"alg"=>"dir", "enc"=>"A128GCM", "k"=>"8WNdBjXXwg6QTwrrOnvEPw", "kty"=>"oct", "use"=>"enc"}

# Example of merging a map into an existing JWS (also works with JWE, JWK, and JWT)
jws = JOSE::JWS.from({'alg' => 'HS256'})
jws.merge({'typ' => 'JWT'})
# => {"alg"=>"HS256", "typ"=>"JWT"}

0.2.0 (2016-02-25)

• Enhancements
  • Add JOSE.__crypto_fallback__ which can be set directly or with the JOSE_CRYPTO_FALLBACK environment variable. EdDSA and EdDH algorithms not natively supported are disabled by default.
  • Support OKP key type with the following curves:
  • Ed25519 (external RbNaCl or fallback supported)
  • Ed25519ph (external RbNaCl or fallback supported)
  • X25519 (external RbNaCl or fallback supported)
  • Ed448 (no external, but fallback supported)
  • Ed448ph (no external, but fallback supported)
  • X448 (no external, but fallback supported)
  • Support SHA-3 functions for use with Ed448 and Ed448ph.
  • Add JOSE::JWK#shared_secret for computing the shared secret between two EC or OKP keys.

0.1.0 (2015-11-24)

• Initial Release

• Algorithm Support

  • JSON Web Encryption (JWE) RFC 7516
  • "alg" RFC 7518 Section 4
    • RSA1_5
    • RSA-OAEP
    • RSA-OAEP-256
    • A128KW
    • A192KW
    • A256KW
    • dir
    • ECDH-ES
    • ECDH-ES+A128KW
    • ECDH-ES+A192KW
    • ECDH-ES+A256KW
    • A128GCMKW
    • A192GCMKW
    • A256GCMKW
    • PBES2-HS256+A128KW
    • PBES2-HS384+A192KW
    • PBES2-HS512+A256KW
  • "enc" RFC 7518 Section 5
    • A128CBC-HS256
    • A192CBC-HS384
    • A256CBC-HS512
    • A128GCM
    • A192GCM
    • A256GCM
  • "zip" RFC 7518 Section 7.3
    • DEF
  • JSON Web Key (JWK) RFC 7517
  • "alg" RFC 7518 Section 6
    • EC
    • RSA
    • oct
  • JSON Web Signature (JWS) RFC 7515
  • "alg" RFC 7518 Section 3
    • HS256
    • HS384
    • HS512
    • RS256
    • RS384
    • RS512
    • ES256
    • ES384
    • ES512
    • PS256
    • PS384
    • PS512
    • none