New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Signed and crypted JWT #15
Comments
Hi @biancini , can you refine what do you mean by signed and encrypted together? Usually you are using:
Or may be i didn't get your question correctly? |
I am usibg JWT library to implement an Open ID connect client. Pass a Request Object by Reference, using the request_uri parameter.Sign the Request Object using the 'RS256' algorithm, then Encrypt the Request Object using the 'RSA1_5' and 'A128CBC-HS256' algorithms. Link here: https://rp.certification.openid.net:8080/test_list And it makes sense because the client had to sign the message with its private key and encrypt it with the public key of the server. How can I do that? |
If you have example (even in psedo-code) of what do you want to achieve it can be helpful :) Regardless are you looking for something like this? string signedObject = Jose.JWT.Encode(token, clientPrivateKey, JwsAlgorithm.RS256);
string encrypted = Jose.JWT.Encode(signedObject, serverPublicKey, JweAlgorithm.RSA1_5, JweEncryption.A128CBC_HS256); |
Yes, this would completely satisfy my need! |
Okay, glad it working :) Feel free to close if you don't have other questions. |
I will give it a try and if it is working I will close the issue. |
It works smooth and easy. |
This is more a question than a real issue.
Wondering if (and how) I could generate a token which is signed with key 1 and crypted with key 2 (and of course with specific algorithms).
The text was updated successfully, but these errors were encountered: