Thomas Bellebaum
Thomas Bellebaum
The current method for calculating JWK `kid`s is something like ```ruby def generate_kid(ec_keypair) _crv, x_octets, y_octets = keypair_components(ec_keypair) sequence = OpenSSL::ASN1::Sequence([OpenSSL::ASN1::Integer.new(OpenSSL::BN.new(x_octets, BINARY)), OpenSSL::ASN1::Integer.new(OpenSSL::BN.new(y_octets, BINARY))]) OpenSSL::Digest::SHA256.hexdigest(sequence.to_der) end ``` for EC and...
This is a sort of "Lessons Learned" combined with a few suggestions this project might want to consider. ### Story time I have a server that has to verify and...
Hey there :) We were having a bit of trouble generating RSA keys from JSON Web Keys (JWK, [RFC 7517](https://www.rfc-editor.org/rfc/rfc7517.html)). Linking the original issue: https://github.com/jwt/ruby-jwt/issues/523 We had this working fine...
Hey, I was trying to use a JWK inside a block in `JWT.decode`, since I cannot use the `jwks` option because (for backwards compatibility reasons) I need a special handling...
This PR will allow to derive most standardized common parameters from already specified parameters. This is a follow-up to a few points which could not be addressed in #520, but...
This came up while reworking the JWK stuff for #520 The function `create_rsa_key` for OpenSSL version 3 looks like this: https://github.com/jwt/ruby-jwt/blob/b4f9f1d483086054e812dc6ce5655466b6de3858/lib/jwt/jwk/rsa.rb#L93-L106 I like the approach of converting a JWK to...
This Issue fits into all your categories, hence here without a template :) ## The problem This project seems to try to rely on Keycloak in a way which is...
There is a possibility that one day a dedicated entity will find a nontrivial relationship in the generators used for a particular parameter set. This is about as hard as...
There is a collision in the domain separation tags in CoreSign (used in the calculation of `e`): ``` 1. signature_dst, an octet string representing the domain separation tag: api_id ||...
Hi all, I am trying to implement the IETF-draft in C using no dynamically allocated memory, thus suitable for e.g. embedded devices with no heap implementation. There are only a...