Class: JSON::JWK

Inherits:

ActiveSupport::HashWithIndifferentAccess

• Object
• ActiveSupport::HashWithIndifferentAccess
• JSON::JWK

Defined in:

lib/json/jwk.rb,
lib/json/jwk/set.rb,
lib/json/jwk/jwkizable.rb

Defined Under Namespace

Modules: JWKizable Classes: Set, UnknownAlgorithm

Class Method Summary

• .decode(jwk) ⇒ Object

Instance Method Summary

• #content_type ⇒ Object
• #initialize(constructor = {}, ex_params = {}) ⇒ JWK constructor

  A new instance of JWK.

• #thumbprint(digest = OpenSSL::Digest::SHA256.new) ⇒ Object
• #to_key ⇒ Object

Constructor Details

#initialize(constructor = {}, ex_params = {}) ⇒ JWK

Returns a new instance of JWK.

# File 'lib/json/jwk.rb', line 5

def initialize(constructor = {}, ex_params = {})
  if constructor.is_a? OpenSSL::PKey::PKey
    if constructor.respond_to? :to_jwk
      super constructor.to_jwk(ex_params)
    else
      raise UnknownAlgorithm.new('Unknown Key Type')
    end
  else
    super constructor
    merge! ex_params
  end
end

Class Method Details

.decode(jwk) ⇒ Object

# File 'lib/json/jwk.rb', line 99

def decode(jwk)
  # NOTE:
  #  returning OpenSSL::PKey::RSA/EC instance for backward compatibility.
  #  use `new` if you want JSON::JWK instance.
  new(jwk).to_key
end

Instance Method Details

#content_type ⇒ Object

# File 'lib/json/jwk.rb', line 18

def content_type
  'application/jwk+json'
end

#thumbprint(digest = OpenSSL::Digest::SHA256.new) ⇒ Object

# File 'lib/json/jwk.rb', line 22

def thumbprint(digest = OpenSSL::Digest::SHA256.new)
  digest = case digest
  when OpenSSL::Digest
    digest
  when String, Symbol
    OpenSSL::Digest.new digest.to_s
  else
    raise UnknownAlgorithm.new('Unknown Digest Algorithm')
  end
  UrlSafeBase64.encode64 digest.digest(normalize.to_json)
end

#to_key ⇒ Object

# File 'lib/json/jwk.rb', line 34

def to_key
  case self[:kty].try(:to_sym)
  when :RSA
    e, n, d = [:e, :n, :d].collect do |key|
      if self[key]
        OpenSSL::BN.new UrlSafeBase64.decode64(self[key]), 2
      end
    end
    key = OpenSSL::PKey::RSA.new
    key.e = e
    key.n = n
    key.d = d if d
    key
  when :EC
    if RUBY_VERSION >= '2.0.0'
      key = OpenSSL::PKey::EC.new full_curve_name
      x, y = [self[:x], self[:y]].collect do |decoded|
        OpenSSL::BN.new UrlSafeBase64.decode64(decoded), 2
      end
      key.public_key = OpenSSL::PKey::EC::Point.new(key.group).mul(x, y)
      key
    else
      raise UnknownAlgorithm.new('This feature requires Ruby 2.0+')
    end
  else
    raise UnknownAlgorithm.new('Unknown Key Type')
  end
end