mirror of
https://github.com/1f349/mjwt.git
synced 2024-11-14 15:31:36 +00:00
62 lines
1.5 KiB
Go
62 lines
1.5 KiB
Go
package mjwt
|
|
|
|
import (
|
|
"crypto/rsa"
|
|
"crypto/x509"
|
|
"encoding/pem"
|
|
"github.com/golang-jwt/jwt/v4"
|
|
"os"
|
|
)
|
|
|
|
// defaultMJwtVerifier implements Verifier and uses a rsa.PublicKey to validate
|
|
// MJWT tokens
|
|
type defaultMJwtVerifier struct {
|
|
pub *rsa.PublicKey
|
|
}
|
|
|
|
var _ Verifier = &defaultMJwtVerifier{}
|
|
|
|
// NewMJwtVerifier creates a new defaultMJwtVerifier using the rsa.PublicKey
|
|
func NewMJwtVerifier(key *rsa.PublicKey) Verifier {
|
|
return newMJwtVerifier(key)
|
|
}
|
|
|
|
func newMJwtVerifier(key *rsa.PublicKey) *defaultMJwtVerifier {
|
|
return &defaultMJwtVerifier{pub: key}
|
|
}
|
|
|
|
// NewMJwtVerifierFromFile creates a new defaultMJwtVerifier using the path of a
|
|
// rsa.PublicKey file
|
|
func NewMJwtVerifierFromFile(file string) (Verifier, error) {
|
|
// read file
|
|
f, err := os.ReadFile(file)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
// decode pem block
|
|
block, _ := pem.Decode(f)
|
|
|
|
// parse public key from pem block
|
|
pub, err := x509.ParsePKCS1PublicKey(block.Bytes)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
// create verifier using rsa.PublicKey
|
|
return NewMJwtVerifier(pub), nil
|
|
}
|
|
|
|
// VerifyJwt validates and parses MJWT tokens and returns the claims
|
|
func (d *defaultMJwtVerifier) VerifyJwt(token string, claims baseTypeClaim) (*jwt.Token, error) {
|
|
withClaims, err := jwt.ParseWithClaims(token, claims, func(token *jwt.Token) (interface{}, error) {
|
|
return d.pub, nil
|
|
})
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return withClaims, claims.Valid()
|
|
}
|
|
|
|
func (d *defaultMJwtVerifier) PublicKey() *rsa.PublicKey { return d.pub }
|