Module: JsonWebToken::Jws

Defined in:: lib/json_web_token/jws.rb

Constant Summary collapse

MESSAGE_SIGNATURE_PARTS =

Class Method Summary collapse

Class Method Details

.message_signature(header, payload, key) ⇒ `Object`

tools.ietf.org/html/rfc7515#page-15

# File 'lib/json_web_token/jws.rb', line 14

def message_signature(header, payload, key)
  alg = alg_parameter(header)
  data = signing_input(header, payload)
  "#{data}.#{signature(alg, key, data)}"
end

.unsecured_jws(header, payload) ⇒ `Object`

tools.ietf.org/html/rfc7515#page-47

# File 'lib/json_web_token/jws.rb', line 28

def unsecured_jws(header, payload)
  fail("Invalid 'alg' header parameter") unless alg_parameter(header) == 'none'
  "#{signing_input(header, payload)}." # note trailing '.'
end

.validate(jws, algorithm, key = nil) ⇒ `Object`

tools.ietf.org/html/rfc7515#page-16

# File 'lib/json_web_token/jws.rb', line 21

def validate(jws, algorithm, key = nil)
  compare_alg(jws, algorithm)
  return jws if algorithm == 'none'
  signature_valid?(jws, algorithm, key) ? jws : 'Invalid'
end

Module: JsonWebToken::Jws

Constant Summary collapse

Class Method Summary collapse

Class Method Details

.message_signature(header, payload, key) ⇒ Object

.unsecured_jws(header, payload) ⇒ Object

.validate(jws, algorithm, key = nil) ⇒ Object

.message_signature(header, payload, key) ⇒ `Object`

.unsecured_jws(header, payload) ⇒ `Object`

.validate(jws, algorithm, key = nil) ⇒ `Object`