-init oidc RSA256 feature

author: Tristan Schwieren <tristan.schwieren@tum.de> 2022-04-11 13:29:20 +0200
committer: Martin Schanzenbach <schanzen@gnunet.org> 2022-06-09 11:43:01 +0200
commit: 349b4e37123368e3f03d563770d72bcbfd8109ad (patch)
tree: 865732d15ee62fa5c7e5d651445ea276a4d4756d /src/reclaim/oidc_helper.h
parent: 79eff4349f89d13a8cc707550f6bb7d5fe8c99c3 (diff)
download: gnunet-349b4e37123368e3f03d563770d72bcbfd8109ad.tar.gz
gnunet-349b4e37123368e3f03d563770d72bcbfd8109ad.zip
1 files changed, 33 insertions, 14 deletions
diff --git a/src/reclaim/oidc_helper.h b/src/reclaim/oidc_helper.h
index 2a8b7bbae..ea106b4f2 100644
--- a/src/reclaim/oidc_helper.h
+++ b/src/reclaim/oidc_helper.h
@@ -28,14 +28,12 @@
 #define JWT_H
 #define JWT_ALG "alg"
-/* Use 512bit HMAC */
-#define JWT_ALG_VALUE "HS512"
 #define JWT_TYP "typ"
 #define JWT_TYP_VALUE "jwt"
+#define JWT_ALG_VALUE_HMAC "HS512"
+#define JWT_ALG_VALUE_RSA "RS256"
 #define SERVER_ADDRESS "https://api.reclaim"
 enum OIDC_VerificationOptions
@@ -52,7 +50,28 @@ enum OIDC_VerificationOptions
 };
 /**
- * Create a JWT from attributes
+ * Create a JWT using RSA256 from attributes
+ *
+ * @param aud_key the public of the audience
+ * @param sub_key the public key of the subject
+ * @param attrs the attribute list
+ * @param presentations credential presentation list (may be empty)
+ * @param expiration_time the validity of the token
+ * @param secret_key the key used to sign the JWT
+ * @return a new base64-encoded JWT string.
+ */
+char *
+OIDC_generate_id_token_rsa (const struct GNUNET_IDENTITY_PublicKey *aud_key,
+                            const struct GNUNET_IDENTITY_PublicKey *sub_key,
+                            const struct GNUNET_RECLAIM_AttributeList *attrs,
+                            const struct
+                            GNUNET_RECLAIM_PresentationList *presentations,
+                            const struct GNUNET_TIME_Relative *expiration_time,
+                            const char *nonce,
+                            const json_t *secret_rsa_key);
+/**
+ * Create a JWT using HMAC (HS256) from attributes
 *
 * @param aud_key the public of the audience
 * @param sub_key the public key of the subject
@@ -63,14 +82,14 @@ enum OIDC_VerificationOptions
 * @return a new base64-encoded JWT string.
 */
 char*
-OIDC_generate_id_token (const struct GNUNET_IDENTITY_PublicKey *aud_key,
+OIDC_generate_id_token_hmac (const struct GNUNET_IDENTITY_PublicKey *aud_key,
-                        const struct GNUNET_IDENTITY_PublicKey *sub_key,
+                             const struct GNUNET_IDENTITY_PublicKey *sub_key,
-                        const struct GNUNET_RECLAIM_AttributeList *attrs,
+                             const struct GNUNET_RECLAIM_AttributeList *attrs,
-                        const struct
+                             const struct
-                        GNUNET_RECLAIM_PresentationList *presentations,
+                             GNUNET_RECLAIM_PresentationList *presentations,
-                        const struct GNUNET_TIME_Relative *expiration_time,
+                             const struct GNUNET_TIME_Relative *expiration_time,
-                        const char *nonce,
+                             const char *nonce,
-                        const char *secret_key);
+                             const char *secret_key);
 /**
 * Builds an OIDC authorization code including
author	Tristan Schwieren <tristan.schwieren@tum.de>	2022-04-11 13:29:20 +0200
committer	Martin Schanzenbach <schanzen@gnunet.org>	2022-06-09 11:43:01 +0200
commit	349b4e37123368e3f03d563770d72bcbfd8109ad (patch)
tree	865732d15ee62fa5c7e5d651445ea276a4d4756d /src/reclaim/oidc_helper.h
parent	79eff4349f89d13a8cc707550f6bb7d5fe8c99c3 (diff)
download	gnunet-349b4e37123368e3f03d563770d72bcbfd8109ad.tar.gz gnunet-349b4e37123368e3f03d563770d72bcbfd8109ad.zip