prosody: spec/util_jwt_spec.lua@899c057781cd (annotated)

10664 c4ded3be7cc0 util.jwt: Basic JSON Web Token library supporting HS256 tokens Kim Alvefur <zash@zash.se> parents: diff changeset	1	local jwt = require "util.jwt";
12704 899c057781cd spec: Move test crypto keys to a shared file for clarity and easy maintenance Matthew Wild <mwild1@gmail.com> parents: 12703 diff changeset	2	local test_keys = require "spec.inputs.test_keys";
10664 c4ded3be7cc0 util.jwt: Basic JSON Web Token library supporting HS256 tokens Kim Alvefur <zash@zash.se> parents: diff changeset	3
c4ded3be7cc0 util.jwt: Basic JSON Web Token library supporting HS256 tokens Kim Alvefur <zash@zash.se> parents: diff changeset	4	describe("util.jwt", function ()
c4ded3be7cc0 util.jwt: Basic JSON Web Token library supporting HS256 tokens Kim Alvefur <zash@zash.se> parents: diff changeset	5	it("validates", function ()
c4ded3be7cc0 util.jwt: Basic JSON Web Token library supporting HS256 tokens Kim Alvefur <zash@zash.se> parents: diff changeset	6	local key = "secret";
c4ded3be7cc0 util.jwt: Basic JSON Web Token library supporting HS256 tokens Kim Alvefur <zash@zash.se> parents: diff changeset	7	local token = jwt.sign(key, { payload = "this" });
c4ded3be7cc0 util.jwt: Basic JSON Web Token library supporting HS256 tokens Kim Alvefur <zash@zash.se> parents: diff changeset	8	assert.string(token);
c4ded3be7cc0 util.jwt: Basic JSON Web Token library supporting HS256 tokens Kim Alvefur <zash@zash.se> parents: diff changeset	9	local ok, parsed = jwt.verify(key, token);
c4ded3be7cc0 util.jwt: Basic JSON Web Token library supporting HS256 tokens Kim Alvefur <zash@zash.se> parents: diff changeset	10	assert.truthy(ok)
c4ded3be7cc0 util.jwt: Basic JSON Web Token library supporting HS256 tokens Kim Alvefur <zash@zash.se> parents: diff changeset	11	assert.same({ payload = "this" }, parsed);
12703 b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	12
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	13
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	14
10664 c4ded3be7cc0 util.jwt: Basic JSON Web Token library supporting HS256 tokens Kim Alvefur <zash@zash.se> parents: diff changeset	15	end);
c4ded3be7cc0 util.jwt: Basic JSON Web Token library supporting HS256 tokens Kim Alvefur <zash@zash.se> parents: diff changeset	16	it("rejects invalid", function ()
c4ded3be7cc0 util.jwt: Basic JSON Web Token library supporting HS256 tokens Kim Alvefur <zash@zash.se> parents: diff changeset	17	local key = "secret";
c4ded3be7cc0 util.jwt: Basic JSON Web Token library supporting HS256 tokens Kim Alvefur <zash@zash.se> parents: diff changeset	18	local token = jwt.sign("wrong", { payload = "this" });
c4ded3be7cc0 util.jwt: Basic JSON Web Token library supporting HS256 tokens Kim Alvefur <zash@zash.se> parents: diff changeset	19	assert.string(token);
10665 4eee1aaa9405 util.jwt: Remove unused return value from tests [luacheck] Kim Alvefur <zash@zash.se> parents: 10664 diff changeset	20	local ok = jwt.verify(key, token);
10664 c4ded3be7cc0 util.jwt: Basic JSON Web Token library supporting HS256 tokens Kim Alvefur <zash@zash.se> parents: diff changeset	21	assert.falsy(ok)
c4ded3be7cc0 util.jwt: Basic JSON Web Token library supporting HS256 tokens Kim Alvefur <zash@zash.se> parents: diff changeset	22	end);
12700 27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	23
12703 b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	24	it("validates HS256", function ()
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	25	local verify = jwt.new_verifier("HS256", "your-256-bit-secret");
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	26
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	27	local result = {verify([[eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ.SflKxwRJSMeKKF2QT4fwpMeJf36POk6yJV_adQssw5c]])};
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	28	assert.same({
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	29	true; -- success
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	30	{ -- payload
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	31	sub = "1234567890";
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	32	name = "John Doe";
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	33	iat = 1516239022;
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	34	};
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	35	}, result);
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	36
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	37	end);
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	38
12700 27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	39	it("validates ES256", function ()
12704 899c057781cd spec: Move test crypto keys to a shared file for clarity and easy maintenance Matthew Wild <mwild1@gmail.com> parents: 12703 diff changeset	40	local private_key = test_keys.ecdsa_private_pem;
12700 27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	41	local sign = jwt.new_signer("ES256", private_key);
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	42
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	43	local token = sign({
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	44	sub = "1234567890";
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	45	name = "John Doe";
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	46	admin = true;
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	47	iat = 1516239022;
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	48	});
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	49
12704 899c057781cd spec: Move test crypto keys to a shared file for clarity and easy maintenance Matthew Wild <mwild1@gmail.com> parents: 12703 diff changeset	50	local public_key = test_keys.ecdsa_public_pem;
12700 27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	51	local verify = jwt.new_verifier("ES256", public_key);
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	52
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	53	local result = {verify(token)};
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	54	assert.same({
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	55	true; -- success
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	56	{ -- payload
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	57	sub = "1234567890";
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	58	name = "John Doe";
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	59	admin = true;
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	60	iat = 1516239022;
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	61	};
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	62	}, result);
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	63
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	64	local result = {verify[[eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiYWRtaW4iOnRydWUsImlhdCI6MTUxNjIzOTAyMn0.tyh-VfuzIxCyGYDlkBA7DfyjrqmSHu6pQ2hoZuFqUSLPNY2N0mpHb3nk5K17HWP_3cYHBw7AhHale5wky6-sVA]]};
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	65	assert.same({
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	66	true; -- success
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	67	{ -- payload
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	68	sub = "1234567890";
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	69	name = "John Doe";
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	70	admin = true;
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	71	iat = 1516239022;
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	72	};
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	73	}, result);
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	74	end);
27a72982e331 util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild <mwild1@gmail.com> parents: 10665 diff changeset	75
12703 b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	76	it("validates RS256", function ()
12704 899c057781cd spec: Move test crypto keys to a shared file for clarity and easy maintenance Matthew Wild <mwild1@gmail.com> parents: 12703 diff changeset	77	local private_key = test_keys.rsa_private_pem;
12703 b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	78	local sign = jwt.new_signer("RS256", private_key);
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	79
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	80	local token = sign({
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	81	sub = "1234567890";
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	82	name = "John Doe";
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	83	admin = true;
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	84	iat = 1516239022;
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	85	});
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	86
12704 899c057781cd spec: Move test crypto keys to a shared file for clarity and easy maintenance Matthew Wild <mwild1@gmail.com> parents: 12703 diff changeset	87	local public_key = test_keys.rsa_public_pem;
12703 b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	88	local verify = jwt.new_verifier("RS256", public_key);
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	89
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	90	local result = {verify(token)};
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	91	assert.same({
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	92	true; -- success
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	93	{ -- payload
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	94	sub = "1234567890";
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	95	name = "John Doe";
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	96	admin = true;
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	97	iat = 1516239022;
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	98	};
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	99	}, result);
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	100
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	101	local result = {verify[[eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiYWRtaW4iOnRydWUsImlhdCI6MTUxNjIzOTAyMn0.NHVaYe26MbtOYhSKkoKYdFVomg4i8ZJd8_-RU8VNbftc4TSMb4bXP3l3YlNWACwyXPGffz5aXHc6lty1Y2t4SWRqGteragsVdZufDn5BlnJl9pdR_kdVFUsra2rWKEofkZeIC4yWytE58sMIihvo9H1ScmmVwBcQP6XETqYd0aSHp1gOa9RdUPDvoXQ5oqygTqVtxaDr6wUFKrKItgBMzWIdNZ6y7O9E0DhEPTbE9rfBo6KTFsHAZnMg4k68CDp2woYIaXbmYTWcvbzIuHO7_37GT79XdIwkm95QJ7hYC9RiwrV7mesbY4PAahERJawntho0my942XheVLmGwLMBkQ]]};
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	102	assert.same({
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	103	true; -- success
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	104	{ -- payload
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	105	sub = "1234567890";
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	106	name = "John Doe";
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	107	admin = true;
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	108	iat = 1516239022;
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	109	};
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	110	}, result);
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	111	end);
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	112
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	113	it("validates PS256", function ()
12704 899c057781cd spec: Move test crypto keys to a shared file for clarity and easy maintenance Matthew Wild <mwild1@gmail.com> parents: 12703 diff changeset	114	local private_key = test_keys.rsa_private_pem;
12703 b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	115	local sign = jwt.new_signer("PS256", private_key);
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	116
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	117	local token = sign({
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	118	sub = "1234567890";
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	119	name = "John Doe";
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	120	admin = true;
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	121	iat = 1516239022;
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	122	});
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	123
12704 899c057781cd spec: Move test crypto keys to a shared file for clarity and easy maintenance Matthew Wild <mwild1@gmail.com> parents: 12703 diff changeset	124	local public_key = test_keys.rsa_public_pem;
12703 b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	125	local verify = jwt.new_verifier("PS256", public_key);
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	126
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	127	local result = {verify(token)};
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	128	assert.same({
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	129	true; -- success
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	130	{ -- payload
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	131	sub = "1234567890";
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	132	name = "John Doe";
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	133	admin = true;
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	134	iat = 1516239022;
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	135	};
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	136	}, result);
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	137
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	138	local result = {verify[[eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiYWRtaW4iOnRydWUsImlhdCI6MTUxNjIzOTAyMn0.iOeNU4dAFFeBwNj6qdhdvm-IvDQrTa6R22lQVJVuWJxorJfeQww5Nwsra0PjaOYhAMj9jNMO5YLmud8U7iQ5gJK2zYyepeSuXhfSi8yjFZfRiSkelqSkU19I-Ja8aQBDbqXf2SAWA8mHF8VS3F08rgEaLCyv98fLLH4vSvsJGf6ueZSLKDVXz24rZRXGWtYYk_OYYTVgR1cg0BLCsuCvqZvHleImJKiWmtS0-CymMO4MMjCy_FIl6I56NqLE9C87tUVpo1mT-kbg5cHDD8I7MjCW5Iii5dethB4Vid3mZ6emKjVYgXrtkOQ-JyGMh6fnQxEFN1ft33GX2eRHluK9eg]]};
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	139	assert.same({
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	140	true; -- success
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	141	{ -- payload
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	142	sub = "1234567890";
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	143	name = "John Doe";
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	144	admin = true;
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	145	iat = 1516239022;
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	146	};
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	147	}, result);
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	148	end);
b3d0c1457584 util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild <mwild1@gmail.com> parents: 12700 diff changeset	149
10664 c4ded3be7cc0 util.jwt: Basic JSON Web Token library supporting HS256 tokens Kim Alvefur <zash@zash.se> parents: diff changeset	150	end);
c4ded3be7cc0 util.jwt: Basic JSON Web Token library supporting HS256 tokens Kim Alvefur <zash@zash.se> parents: diff changeset	151

author	Matthew Wild <mwild1@gmail.com>
	Sat, 02 Jul 2022 12:36:52 +0100
changeset 12704	899c057781cd
parent 12703	b3d0c1457584
child 12705	8e402a2ae1b8
permissions	-rw-r--r--