This repository has been archived by the owner on Sep 22, 2020. It is now read-only.

Logangirvin/json serialization #20

Merged

logangirvin merged 43 commits into master from logangirvin/JSONSerialization

Mar 25, 2019

Contributor

logangirvin commented Mar 13, 2019

Introduced support for flattened JSON serialization (#19) on JWS and JWE tokens. More work has to be done for general JSON serialization, however you can encode/sign in flattened format, as well as decrypt and verify from a flattened JSON serialized object as content for the constructor.

logangirvin added 12 commits

March 8, 2019 17:02


          starting work on trying to get JSON Serialization supported.

4f675a1


          added a sign function for Flattened JSON JWS

1cd823a


          JWE and decrypt support JSON Serialization?

f31cdca


          fixed decrypt for AAD tags, added encrypt flat.

bca4b51


          a comment of explanation and type safety. Added JWS constructor tests.

17faeaa


          getHeaders JWS tests

e652e55


          Just left a single line that shouldn't happen on getSignature untested.

5b124ff


          fixed final JWS test and started on JWE constructor tests.

e17dd7c


          finished constructor tests.

05b0d93


          why was I not using getHeader?

09c7967


          fixed aad to what I believe is RFC spec?

b9a4b4b


          added getHeader tests.

652377e

logangirvin added enhancement review labels

logangirvin self-assigned this

logangirvin requested review from thehenrytsai and PreetiRastogi

March 13, 2019 23:15


          fixed lint.

061aed7

thehenrytsai reviewed

View reviewed changes

lib/security/JweToken.ts Outdated Show resolved Hide resolved

thehenrytsai reviewed

View reviewed changes

lib/security/JweToken.ts Outdated Show resolved Hide resolved

thehenrytsai reviewed

View reviewed changes

lib/security/JweToken.ts Outdated Show resolved Hide resolved

thehenrytsai reviewed

View reviewed changes

lib/security/JweToken.ts Outdated Show resolved Hide resolved

thehenrytsai reviewed

View reviewed changes

lib/security/JweToken.ts Outdated Show resolved Hide resolved

thehenrytsai reviewed

View reviewed changes

lib/security/JweToken.ts Outdated Show resolved Hide resolved

thehenrytsai reviewed

View reviewed changes

lib/security/JweToken.ts Outdated Show resolved Hide resolved

thehenrytsai reviewed

View reviewed changes

lib/security/JweToken.ts Outdated Show resolved Hide resolved

thehenrytsai reviewed

View reviewed changes

lib/security/JweToken.ts Outdated Show resolved Hide resolved

thehenrytsai reviewed

View reviewed changes

lib/security/JweToken.ts Outdated Show resolved Hide resolved

thehenrytsai reviewed

View reviewed changes

lib/security/JweToken.ts Outdated Show resolved Hide resolved

thehenrytsai reviewed

View reviewed changes

lib/security/JweToken.ts Outdated

+                    iv = Buffer.from(Base64Url.toBase64(base64EncodedValues[2]), 'base64');
+                    ciphertext = Buffer.from(Base64Url.toBase64(base64EncodedValues[3]), 'base64');
+                    authTag = Buffer.from(Base64Url.toBase64(base64EncodedValues[4]), 'base64');
+                    // 15. Let the Additional Authentication Data (AAD) be ASCII(encodedprotectedHeader)

thehenrytsai Mar 14, 2019

Sanity: missing '3.', and seems odd that '15.' appears here.

logangirvin added 25 commits

March 15, 2019 11:57


          adding symmetric keys to the other crypto suites.

785dee5


          added to the crypto factory.

1b1dbce


          fixed tests. TIme to see how much of the JWE RFC I got wrong.

074019d


          These should be exported...

ad4367e


          so HMAC might be wrong.

bb1afaf


          this is going surprisngly well.

dec2e19


          I believe the refactor was a somewhat success.

92c5b4a


          I'm not sure what this test was trying to accomplish. Its not in the …

61d6e2f

…spec, or rather optional to reject.


          changing functionality woo.

4676dc6


          fixing the constructor check back for JWS.

5dffda7


          fixed up compact JWE..

f11f207


          forgot to check the length on JWE.

f02c751


          I just realized what these constructor tests were for.


          the progressive amount of check edge cases on JWE is daunting.

68079fa


          the most frustrating and questionable behaviors I've seen from typesc…

0aca906

…ript but okay.


          fixed primary JWS/JWE tests to cover most branches.

0cf997c


          Fixed the AL which fixed the HMAC.

a009437


          unit test validated hmac.

4746e9e


          AES fully covered.

0827ba2


          HMAC fully validated.

3c7f0e4


          lint and added data for RSA-OAEP AES GCM validation

4c58a81


          most of the validation works. I'm having difficulties getting the CEK…

… to re-encrypt to match the expected output.


          RSA JWS validated

6e2c339


          fixed lint.

ac2c783


          addressed code comments.

a63ce96

logangirvin requested a review from thehenrytsai

March 19, 2019 21:34


          adding RFC specs to validation values

65fdabd

codeglobally self-requested a review

March 25, 2019 17:23

codeglobally approved these changes

View reviewed changes

logangirvin merged commit 6025d1e into master

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Labels

enhancement review