SciTokens C++ Notebook
======================

This is a special type of jupyter notebook that is able to run C++ code, thanks to the [xeus-cling](https://github.com/jupyter-xeus/xeus-cling)

In this notebook, you will learn how to use the SciTokens C++ library.

- How to create a simple token
- How to validate a token
- How to query a token for access permissions


Getting Started
---------------

First, we need to include the Scitokens library.  The noteboko technology, xeus-cling, has a specific way to include an external library. If you were compiling your own binary you would use the command line option like -lSciTokens.

In [1]:
#include <iostream>
#include <scitokens/scitokens.h>

In [2]:
#pragma cling add_library_path("/srv/conda/envs/notebook/lib")
#pragma cling load("libSciTokens")

Create an example private key and public key.  You can create these private and public keys with the openssl command:

```
$ openssl ecparam -name prime256v1 -genkey -noout -out private-key.pem
$ openssl ec -in private-key.pem -pubout -out public-key.pem
```

In [3]:
const char ec_private[] =
    "-----BEGIN EC PRIVATE KEY-----\n"
    "MHcCAQEEIESSMxT7PLTR9A/aqd+CM0/6vv6fQWqDm0mNx8uE9EbpoAoGCCqGSM49\n"
    "AwEHoUQDQgAE1i+ImZ//iQhOPh0OMfZzdbmPH+3G1ouWezolCugQYWIRqNmwq3zR\n"
    "EnTbe4EmymTpJ1MJTPP/tCEUP3G/QqQuhA==\n"
    "-----END EC PRIVATE KEY-----\n";

In [4]:
const char ec_public[] =
    "-----BEGIN PUBLIC KEY-----\n"
    "MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE1i+ImZ//iQhOPh0OMfZzdbmPH+3G\n"
    "1ouWezolCugQYWIRqNmwq3zREnTbe4EmymTpJ1MJTPP/tCEUP3G/QqQuhA==\n"
    "-----END PUBLIC KEY-----\n";

Now we can start creating our scitoken key which we will use to sign our scitokens.

In [5]:
char *err_msg = nullptr;

SciTokenKey mykey = scitoken_key_create("1", "ES256", ec_public, ec_private, &err_msg);

// Check to make sure the key was made
if (mykey == nullptr) {
    std::cout << err_msg << std::endl;
}

In [6]:
SciToken mytoken = scitoken_create(mykey);

// Check to make sure the token was created
if (mytoken == nullptr) {
    std::cout << "Failed to create token\n";
}

Set a claim value in the token, the `iss` (issuer) claim.

In [7]:
auto rv = scitoken_set_claim_string(
        mytoken, "iss", "https://demo.scitokens.org/gtest", &err_msg);

if (rv != 0) {
    std::cout << err_msg << std::endl;
}

Now, lets serialize the token and print out the token value!

In [12]:
char *value;
rv = scitoken_serialize(mytoken, &value, &err_msg);

if (rv != 0) {
    std::cout << err_msg << std::endl;
} else {
    std::cout << "The (encoded) token value is:" << std::endl;
    std::cout << value << std::endl;
}

The (encoded) token value is:
eyJhbGciOiJFUzI1NiIsImtpZCI6IjEifQ.eyJleHAiOjE3MjM2NTI4ODMsImlhdCI6MTcyMzY1MjI4MywiaXNzIjoiaHR0cHM6XC9cL2RlbW8uc2NpdG9rZW5zLm9yZ1wvZ3Rlc3QiLCJqdGkiOiI1YjZjNzUyMS1kODlkLTQ4MGMtYmE4My0zZjFkYzFhMjM0ODAiLCJuYmYiOjE3MjM2NTIyODN9.XzM80aAxmHRxKUPK69lgnGYLiulQF-EjsIa4zDjvsWAKHSyewaA_nxGUAVg_cu72aYWmXvvQTnxQoJjI6QsxDQ
