jwtutil

package

v0.0.1 Latest Latest Go to latest Published: Mar 10, 2023 License: Apache-2.0 Imports: 7 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Package jwtutil simplifies generating properly formatted web tokens for our use.

This section is empty.

This section is empty.

func LoadTestKeys(t *testing.T) jwk.Set

LoadTestKeys is a helper method to load test keys, which obviously should not be used in production...

func MakeAgentJWT(agent string, clock jwt.Clock) (string, error)

MakeAgentJWT will return a token with provided type, name, and agent name embedded in the claims.

func MakeServiceJWT(epType string, epName string, agent string, clock jwt.Clock) (string, error)

MakeServiceJWT will return a token with provided type, name, and agent name embedded in the claims.

func MutateHeader(data string, clock jwt.Clock) (signed []byte, err error)

MutateHeader will take a header value (as a string) and return a JWT which we can later use in UnmutateHeader to recover the original string value.

func MutationIsRegistered() bool

MutationIsRegistered indicates if RegisterMutationKeyset was called at least once.

func RegisterAgentKeyset(keyset jwk.Set, signingKeyName string) error

RegisterAgentKeyset registers (or re-registers) a new keyset and signing key name.

func RegisterMutationKeyset(keyset jwk.Set, signingKeyName string) error

RegisterMutationKeyset registers (or re-registers) a new keyset and signing key name.

func RegisterServiceKeyset(keyset jwk.Set, signingKeyName string) error

RegisterServiceKeyset registers (or re-registers) a new keyset and signing key name.

func UnmutateHeader(tokenString []byte, clock jwt.Clock) (username string, err error)

UnmutateHeader checks the mutated data and returns the unmutated original content.

func UnregisterMutationKeyset()

UnregisterMutationKeyset removes the registration. This is mostly for testing.

func ValidateAgentJWT(tokenString string, clock jwt.Clock) (string, error)

ValidateAgentJWT will validate and return the enbedded claims.

func ValidateServiceJWT(tokenString string, clock jwt.Clock) (epType string, epName string, agent string, err error)

ValidateServiceJWT will validate and return the enbedded claims.

This section is empty.