mjwt/verifier.go

package mjwt

import (
	"crypto/rsa"
	"crypto/x509"
	"encoding/pem"
	"github.com/golang-jwt/jwt/v4"
	"os"
)

// defaultMJwtVerifier implements Verifier and uses a rsa.PublicKey to validate
// MJWT tokens
type defaultMJwtVerifier struct {
	pub *rsa.PublicKey
}

var _ Verifier = &defaultMJwtVerifier{}

// NewMJwtVerifier creates a new defaultMJwtVerifier using the rsa.PublicKey
func NewMJwtVerifier(key *rsa.PublicKey) Verifier {
	return newMJwtVerifier(key)
}

func newMJwtVerifier(key *rsa.PublicKey) *defaultMJwtVerifier {
	return &defaultMJwtVerifier{pub: key}
}

// NewMJwtVerifierFromFile creates a new defaultMJwtVerifier using the path of a
// rsa.PublicKey file
func NewMJwtVerifierFromFile(file string) (Verifier, error) {
	// read file
	f, err := os.ReadFile(file)
	if err != nil {
		return nil, err
	}

	// decode pem block
	block, _ := pem.Decode(f)

	// parse public key from pem block
	pub, err := x509.ParsePKCS1PublicKey(block.Bytes)
	if err != nil {
		return nil, err
	}

	// create verifier using rsa.PublicKey
	return NewMJwtVerifier(pub), nil
}

// VerifyJwt validates and parses MJWT tokens and returns the claims
func (d *defaultMJwtVerifier) VerifyJwt(token string, claims baseTypeClaim) (*jwt.Token, error) {
	withClaims, err := jwt.ParseWithClaims(token, claims, func(token *jwt.Token) (interface{}, error) {
		return d.pub, nil
	})
	if err != nil {
		return nil, err
	}
	return withClaims, claims.Valid()
}

func (d *defaultMJwtVerifier) PublicKey() *rsa.PublicKey { return d.pub }
First commit 2022-12-04 13:42:35 +00:00			`package mjwt`

			`import (`
			`"crypto/rsa"`
			`"crypto/x509"`
			`"encoding/pem"`
			`"github.com/golang-jwt/jwt/v4"`
			`"os"`
			`)`

Add test for NewMJwtVerifierFromFile 2023-06-19 11:40:28 +01:00			`// defaultMJwtVerifier implements Verifier and uses a rsa.PublicKey to validate`
Add comments to all of this 2023-06-18 18:09:49 +01:00			`// MJWT tokens`
First commit 2022-12-04 13:42:35 +00:00			`type defaultMJwtVerifier struct {`
			`pub *rsa.PublicKey`
			`}`

Thunder and lightning caused a powercut just committing my progress before continuing 2023-06-18 13:03:41 +01:00			`var _ Verifier = &defaultMJwtVerifier{}`
First commit 2022-12-04 13:42:35 +00:00
Add comments to all of this 2023-06-18 18:09:49 +01:00			`// NewMJwtVerifier creates a new defaultMJwtVerifier using the rsa.PublicKey`
Thunder and lightning caused a powercut just committing my progress before continuing 2023-06-18 13:03:41 +01:00			`func NewMJwtVerifier(key *rsa.PublicKey) Verifier {`
First commit 2022-12-04 13:42:35 +00:00			`return newMJwtVerifier(key)`
			`}`

			`func newMJwtVerifier(key rsa.PublicKey) defaultMJwtVerifier {`
			`return &defaultMJwtVerifier{pub: key}`
			`}`

Add comments to all of this 2023-06-18 18:09:49 +01:00			`// NewMJwtVerifierFromFile creates a new defaultMJwtVerifier using the path of a`
			`// rsa.PublicKey file`
Thunder and lightning caused a powercut just committing my progress before continuing 2023-06-18 13:03:41 +01:00			`func NewMJwtVerifierFromFile(file string) (Verifier, error) {`
Add comments to all of this 2023-06-18 18:09:49 +01:00			`// read file`
First commit 2022-12-04 13:42:35 +00:00			`f, err := os.ReadFile(file)`
			`if err != nil {`
			`return nil, err`
			`}`
Add comments to all of this 2023-06-18 18:09:49 +01:00
			`// decode pem block`
First commit 2022-12-04 13:42:35 +00:00			`block, _ := pem.Decode(f)`
Add comments to all of this 2023-06-18 18:09:49 +01:00
			`// parse public key from pem block`
First commit 2022-12-04 13:42:35 +00:00			`pub, err := x509.ParsePKCS1PublicKey(block.Bytes)`
			`if err != nil {`
			`return nil, err`
			`}`

Add comments to all of this 2023-06-18 18:09:49 +01:00			`// create verifier using rsa.PublicKey`
			`return NewMJwtVerifier(pub), nil`
Add SignJwt to Provider 2022-12-09 13:22:10 +00:00			`}`

Add comments to all of this 2023-06-18 18:09:49 +01:00			`// VerifyJwt validates and parses MJWT tokens and returns the claims`
First commit 2022-12-04 13:42:35 +00:00			`func (d defaultMJwtVerifier) VerifyJwt(token string, claims baseTypeClaim) (jwt.Token, error) {`
			`withClaims, err := jwt.ParseWithClaims(token, claims, func(token *jwt.Token) (interface{}, error) {`
			`return d.pub, nil`
			`})`
			`if err != nil {`
			`return nil, err`
			`}`
			`return withClaims, claims.Valid()`
			`}`
Allow access to public and private keys 2023-10-25 17:37:55 +01:00
			`func (d defaultMJwtVerifier) PublicKey() rsa.PublicKey { return d.pub }`