https://github.com/r1b/jwt
[WIP] JSON Web Token
https://github.com/r1b/jwt
chicken-scheme jwt rfc7519 scheme
Last synced: 5 months ago
JSON representation
[WIP] JSON Web Token
- Host: GitHub
- URL: https://github.com/r1b/jwt
- Owner: r1b
- Created: 2019-02-13T03:32:10.000Z (over 7 years ago)
- Default Branch: master
- Last Pushed: 2019-03-25T23:31:41.000Z (over 7 years ago)
- Last Synced: 2025-06-29T12:40:55.404Z (12 months ago)
- Topics: chicken-scheme, jwt, rfc7519, scheme
- Language: Scheme
- Homepage: https://tools.ietf.org/html/rfc7519
- Size: 37.1 KB
- Stars: 1
- Watchers: 2
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# jwt
RFC7519 - JSON Web Token (JWT)
## warning
You *probably* shouldn't use this.
## roadmap
### v1
#### 3E
* [ ] Add JWK support
* [ ] Interface
* [ ] Support symmetric keys
* [ ] ASN.1 codecs
* [ ] SubjectPublicKeyInfo
* [ ] PrivateKeyInfo
* [ ] RSAPublicKey
* [ ] RSAPrivateKey
* [ ] ECPrivateKey
* [ ] JWK <-> ASN.1 <-> PEM
* [ ] https://auth0.com/blog/critical-vulnerabilities-in-json-web-token-libraries/
* [ ] Overhaul the interface for loading keys to enforce PKEY type
#### 2E
* [x] Add claim validation
* [x] Add tests with non-empty claims
* [ ] Handle all edge cases in high-level interface
* [ ] Support the full set of algos on jwt.io
* [ ] HS384
* [ ] HS512
* [ ] RS384
* [ ] RS512
* [ ] ES384
* [ ] ES512
* [ ] PS256
* [ ] PS384
* [ ] PS512
* [ ] Improve tests, use https://tools.ietf.org/html/draft-ietf-jose-cookbook-08
#### 1E
* [ ] Explicitly handle ASCII / UTF-8 conversions
* [x] Add tests for none, RS256, ES256
* [x] Handle all foreign errors in signatures
* [ ] Fix memory leaks w PKEY, MD_CTX
* [x] Fix ugly branching in sign / verify high-level interface
### v2
* [ ] Support ports as message / key source
* [ ] Nested JWTs
* [ ] Encrypted JWTs
* [ ] Pull out useful eggs:
* [ ] constant-time-equal
* [ ] libcrypto (start from signatures)
* [ ] asn-1 (start from JWK codecs)
* [ ] port srfi-60, srfi-151 to chicken 5