Class: JOSE::JWE::ALG_RSA

Inherits:

Struct

• Object
• Struct
• JOSE::JWE::ALG_RSA

Defined in:

lib/jose/jwe/alg_rsa.rb

Instance Attribute Summary

• #rsa_oaep_md ⇒ Object

  Returns the value of attribute rsa_oaep_md.

• #rsa_padding ⇒ Object

  Returns the value of attribute rsa_padding.

Class Method Summary

• .from_map(fields) ⇒ Object

  JOSE::JWE callbacks.

Instance Method Summary

• #algorithm ⇒ Object

  API functions.

• #generate_key(fields, enc) ⇒ Object

  JOSE::JWE::ALG callbacks.

• #key_decrypt(key, enc, encrypted_key) ⇒ Object
• #key_encrypt(key, enc, decrypted_key) ⇒ Object
• #next_cek(key, enc) ⇒ Object
• #to_map(fields) ⇒ Object

Instance Attribute Details

#rsa_oaep_md ⇒ Object

Returns the value of attribute rsa_oaep_md

Returns:

• (Object) —

  the current value of rsa_oaep_md

# File 'lib/jose/jwe/alg_rsa.rb', line 1

def rsa_oaep_md
  @rsa_oaep_md
end

#rsa_padding ⇒ Object

Returns the value of attribute rsa_padding

Returns:

• (Object) —

  the current value of rsa_padding

# File 'lib/jose/jwe/alg_rsa.rb', line 1

def rsa_padding
  @rsa_padding
end

Class Method Details

.from_map(fields) ⇒ Object

JOSE::JWE callbacks

# File 'lib/jose/jwe/alg_rsa.rb', line 5

def self.from_map(fields)
  rsa_padding = nil
  rsa_oaep_md = nil
  case fields['alg']
  when 'RSA1_5'
    rsa_padding = :rsa_pkcs1_padding
  when 'RSA-OAEP'
    rsa_padding = :rsa_pkcs1_oaep_padding
    rsa_oaep_md = OpenSSL::Digest::SHA1
  when 'RSA-OAEP-256'
    rsa_padding = :rsa_pkcs1_oaep_padding
    rsa_oaep_md = OpenSSL::Digest::SHA256
  else
    raise ArgumentError, "invalid 'alg' for JWE: #{fields['alg'].inspect}"
  end
  return new(rsa_padding, rsa_oaep_md), fields.except('alg')
end

Instance Method Details

#algorithm ⇒ Object

API functions

# File 'lib/jose/jwe/alg_rsa.rb', line 55

def algorithm
  if rsa_padding == :rsa_pkcs1_padding
    'RSA1_5'
  elsif rsa_padding == :rsa_pkcs1_oaep_padding
    if rsa_oaep_md == OpenSSL::Digest::SHA1
      'RSA-OAEP'
    elsif rsa_oaep_md == OpenSSL::Digest::SHA256
      'RSA-OAEP-256'
    else
      raise ArgumentError, "unhandled JOSE::JWE::ALG_RSA rsa_oaep_md: #{rsa_oaep_md.inspect}"
    end
  else
    raise ArgumentError, "unhandled JOSE::JWE::ALG_RSA rsa_padding: #{rsa_padding.inspect}"
  end
end

#generate_key(fields, enc) ⇒ Object

JOSE::JWE::ALG callbacks

# File 'lib/jose/jwe/alg_rsa.rb', line 29

def generate_key(fields, enc)
  return JOSE::JWE::ALG.generate_key([:rsa, 2048], algorithm, enc.algorithm)
end

#key_decrypt(key, enc, encrypted_key) ⇒ Object

# File 'lib/jose/jwe/alg_rsa.rb', line 33

def key_decrypt(key, enc, encrypted_key)
  if key.is_a?(JOSE::JWK)
    return key.kty.decrypt_private(encrypted_key, rsa_padding: rsa_padding, rsa_oaep_md: rsa_oaep_md)
  else
    raise ArgumentError, "'key' must be a JOSE::JWK"
  end
end

#key_encrypt(key, enc, decrypted_key) ⇒ Object

# File 'lib/jose/jwe/alg_rsa.rb', line 41

def key_encrypt(key, enc, decrypted_key)
  if key.is_a?(JOSE::JWK)
    return key.kty.encrypt_public(decrypted_key, rsa_padding: rsa_padding, rsa_oaep_md: rsa_oaep_md), self
  else
    raise ArgumentError, "'key' must be a JOSE::JWK"
  end
end

#next_cek(key, enc) ⇒ Object

# File 'lib/jose/jwe/alg_rsa.rb', line 49

def next_cek(key, enc)
  return enc.next_cek, self
end

#to_map(fields) ⇒ Object

# File 'lib/jose/jwe/alg_rsa.rb', line 23

def to_map(fields)
  return fields.put('alg', algorithm)
end