module JWT::JWA::Ps

Constants

SUPPORTED

RSASSA-PSS signing algorithms

Public Instance Methods

sign(algorithm, msg, key) click to toggle source
# File lib/jwt/jwa/ps.rb, line 12
def sign(algorithm, msg, key)
  unless key.is_a?(::OpenSSL::PKey::RSA)
    raise EncodeError, "The given key is a #{key_class}. It has to be an OpenSSL::PKey::RSA instance."
  end

  translated_algorithm = algorithm.sub('PS', 'sha')

  key.sign_pss(translated_algorithm, msg, salt_length: :digest, mgf1_hash: translated_algorithm)
end
verify(algorithm, public_key, signing_input, signature) click to toggle source
# File lib/jwt/jwa/ps.rb, line 22
def verify(algorithm, public_key, signing_input, signature)
  translated_algorithm = algorithm.sub('PS', 'sha')
  public_key.verify_pss(translated_algorithm, signature, signing_input, salt_length: :auto, mgf1_hash: translated_algorithm)
rescue OpenSSL::PKey::PKeyError
  raise JWT::VerificationError, 'Signature verification raised'
end