matrix/authentication-service
1
0
Fork 0
mirror of https://github.com/matrix-org/matrix-authentication-service.git synced 2025-07-31 09:24:31 +03:00
Code Activity

Export list of supported algorithms from mas-jose

Browse Source
This commit is contained in:
Kévin Commaille
2022-09-14 18:17:51 +02:00
committed by Quentin Gliech
parent 940ab48819
commit 19721959f8
2 changed files with 22 additions and 20 deletions
Download Patch File Download Diff File Expand all files Collapse all files

25
crates/handlers/src/oauth2/discovery.rs
View File

@ -13,13 +13,11 @@
// limitations under the License. // limitations under the License.
use axum::{extract::State, response::IntoResponse, Json}; use axum::{extract::State, response::IntoResponse, Json};
use mas_iana::{ use mas_iana::oauth::{
jose::JsonWebSignatureAlg, OAuthAuthorizationEndpointResponseType, OAuthClientAuthenticationMethod,
oauth::{ PkceCodeChallengeMethod,
OAuthAuthorizationEndpointResponseType, OAuthClientAuthenticationMethod,
PkceCodeChallengeMethod,
},
}; };
use mas_jose::jwa::SUPPORTED_SIGNING_ALGORITHMS;
use mas_keystore::Keystore; use mas_keystore::Keystore;
use mas_router::UrlBuilder; use mas_router::UrlBuilder;
use oauth2_types::{ use oauth2_types::{
@ -43,20 +41,7 @@ pub(crate) async fn get(
]); ]);
// Those are the algorithms supported by `mas-jose` // Those are the algorithms supported by `mas-jose`
let client_auth_signing_alg_values_supported = Some(vec![ let client_auth_signing_alg_values_supported = Some(SUPPORTED_SIGNING_ALGORITHMS.to_vec());
JsonWebSignatureAlg::Hs256,
JsonWebSignatureAlg::Hs384,
JsonWebSignatureAlg::Hs512,
JsonWebSignatureAlg::Rs256,
JsonWebSignatureAlg::Rs384,
JsonWebSignatureAlg::Rs512,
JsonWebSignatureAlg::Ps256,
JsonWebSignatureAlg::Ps384,
JsonWebSignatureAlg::Ps512,
JsonWebSignatureAlg::Es256,
JsonWebSignatureAlg::Es384,
JsonWebSignatureAlg::Es256K,
]);
// This is how we can sign stuff // This is how we can sign stuff
let jwt_signing_alg_values_supported = Some(key_store.available_signing_algorithms()); let jwt_signing_alg_values_supported = Some(key_store.available_signing_algorithms());

17
crates/jose/src/jwa/mod.rs
View File

@ -12,6 +12,7 @@
// See the License for the specific language governing permissions and // See the License for the specific language governing permissions and
// limitations under the License. // limitations under the License.
use mas_iana::jose::JsonWebSignatureAlg;
use sha2::{Sha256, Sha384, Sha512}; use sha2::{Sha256, Sha384, Sha512};
mod asymmetric; mod asymmetric;
@ -49,3 +50,19 @@ pub type Es384SigningKey = ecdsa::SigningKey<p384::NistP384>;
pub type Es384VerifyingKey = ecdsa::VerifyingKey<p384::NistP384>; pub type Es384VerifyingKey = ecdsa::VerifyingKey<p384::NistP384>;
pub type Es256KSigningKey = ecdsa::SigningKey<k256::Secp256k1>; pub type Es256KSigningKey = ecdsa::SigningKey<k256::Secp256k1>;
pub type Es256KVerifyingKey = ecdsa::VerifyingKey<k256::Secp256k1>; pub type Es256KVerifyingKey = ecdsa::VerifyingKey<k256::Secp256k1>;
/// All the signing algorithms supported by this crate.
pub const SUPPORTED_SIGNING_ALGORITHMS: [JsonWebSignatureAlg; 12] = [
JsonWebSignatureAlg::Hs256,
JsonWebSignatureAlg::Hs384,
JsonWebSignatureAlg::Hs512,
JsonWebSignatureAlg::Rs256,
JsonWebSignatureAlg::Rs384,
JsonWebSignatureAlg::Rs512,
JsonWebSignatureAlg::Ps256,
JsonWebSignatureAlg::Ps384,
JsonWebSignatureAlg::Ps512,
JsonWebSignatureAlg::Es256,
JsonWebSignatureAlg::Es384,
JsonWebSignatureAlg::Es256K,
];