Comments (5)
benmcollins
commented on July 18, 2024
I'm not familiar with the file you reference. Can you supply your code? In what way does it fail? Did you check errno to see what might have been the cause?
from libjwt.
benmcollins
commented on July 18, 2024
http://benmcollins.github.io/libjwt/group__jwt__encode.html#gae660380bf45c955fd8909b14dae2441a
from libjwt.
MikeEdmansTest
commented on July 18, 2024
The errno is 22 .Code below:
static void GetIatExp(char* iat, char* exp, int time_size) {
time_t now_seconds = time(NULL);
snprintf(iat, time_size, "%lu", now_seconds);
snprintf(exp, time_size, "%lu", now_seconds + 3600);
}
static char* CreateJwt(const char* ec_private_path, const char* project_id) {
char iat_time[sizeof(time_t) * 3 + 2];
char exp_time[sizeof(time_t) * 3 + 2];
uint8_t* key = NULL; // Stores the Base64 encoded certificate
size_t key_len = 0;
jwt_t *jwt = NULL;
int ret = 0;
char *out = NULL;
// Read private key from file
FILE *fp = fopen(ec_private_path, "r");
if (fp == (void*) NULL) {
printf("Could not open file: %s\n", ec_private_path);
return "";
}
fseek(fp, 0L, SEEK_END);
key_len = ftell(fp);
fseek(fp, 0L, SEEK_SET);
key = (uint8_t *)malloc(sizeof(uint8_t) * (key_len + 1)); // certificate length + \0
fread(key, 1, key_len, fp);
key[key_len] = '\0';
fclose(fp);
// Get JWT parts
GetIatExp(iat_time, exp_time, sizeof(iat_time));
jwt_new(&jwt);
// Write JWT
ret = jwt_add_grant(jwt, "iat", iat_time);
if (ret) {
printf("Error setting issue timestamp: %d", ret);
}
ret = jwt_add_grant(jwt, "exp", exp_time);
if (ret) {
printf("Error setting expiration: %d", ret);
}
ret = jwt_add_grant(jwt, "aud", project_id);
if (ret) {
printf("Error adding audience: %d", ret);
}
ret = jwt_set_alg(jwt, JWT_ALG_ES256, key, key_len);
if (ret) {
printf("Error during set alg: %d", ret);
}
out = jwt_encode_str(jwt);
if (out==0)
qDebug() <<"errno", errno;
// Print JWT
qDebug() <<"JWT: [%s]", out;
jwt_free(jwt);
free(key);
return out;
}
from libjwt.
benmcollins
commented on July 18, 2024
For one, I would suggest doing:
jwt_add_grant_int(jwt, "iat", now_seconds);
jwt_add_grant_int(jwt, "exp", now_seconds + 3600);
To save yourself some string manipulation and effort.
So there's lots of places in jwt_sign_sha_pem() that can cause EINVAL and all of them revolve around your key. Can you verify your private EC256 key is:
-
The correct curve. You are using EC256, so it should be a 256-bit EC key. What curve did you use?
-
That the private key file is in the right format. It should be a PEM file, and be in this format:
-----BEGIN EC PRIVATE KEY-----
MIGkAgEBBDBeLCgapjZmvTatMHaYX3A02+0Ys3Tr8kda+E9DFnmCSiCOEig519fT
13edeU8YdDugBwYFK4EEACKhZANiAASibEL3JxzwCRdLBZCm7WQ3kWaDL+wP8omo
3e2VJmZQRnfDdzopgl8r3s8w5JlBpR17J0Gir8g6CVBA6PzMuq5urkilppSINDnR
4mDv0+9e4uJVQf3xwEv+jywNUH+wbPM=
-----END EC PRIVATE KEY-----
from libjwt.
MikeEdmansTest
commented on July 18, 2024
Bingo! You were right , the PEM file was RS256 and the algorithm was set to ES256. All working now - thanks for your help!
from libjwt.
Related Issues (20)
- NEWS file? HOT 3
- Compile error in C++ code HOT 3
- jansson.h is missing HOT 4
- Compiling under SSL 3.x triggers warnings. HOT 4
- fatal error: jwt.h: No such file or directory HOT 2
- missing `libjwt-1.15.3.tar.gz` for 1.15.3 release HOT 1
- JWT: jwt_encode_str() function return only three characters. HOT 4
- jwt_decode returns 22 HOT 81
- ./confugre not working HOT 1
- Correct package on Debian 12 HOT 6
- Is 1.16.0 stable? HOT 2
- Upgrade `m4/doxygen.m4` to `ax_prog_doxygen.m4` from GNU Autoconf Archive? HOT 2
- Failed to parse JWT HOT 1
- Error parsing fractional values in JWT exp HOT 3
- Native windows build HOT 1
- finalize mbedTLS support HOT 2
- Building 1.17.0 fails on aarch64
- Plans to upload more recent versions to older distribution repositories HOT 1
- Issue seen while using jwt_decode api HOT 3
- String format is different for a property between jwt_get_grants_json and jwt_get_grant HOT 6
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from libjwt.