preliminary support for encrypting jwt

jalauros · jalauros · commit ad25ea34653d · 2018-10-12T14:40:43.000+03:00
diff --git a/src/main/java/org/oidc/msg/AbstractMessage.java b/src/main/java/org/oidc/msg/AbstractMessage.java
@@ -18,8 +18,10 @@
 
 import com.auth0.jwt.JWT;
 import com.auth0.jwt.JWTCreator;
+import com.auth0.jwt.JWTEncryptor;
 import com.auth0.jwt.JWTVerifier;
 import com.auth0.jwt.algorithms.Algorithm;
+import com.auth0.jwt.algorithms.CipherParams;
 import com.auth0.jwt.exceptions.JWTDecodeException;
 import com.auth0.jwt.exceptions.JWTVerificationException;
 import com.auth0.jwt.exceptions.oicmsg_exceptions.JWKException;
@@ -341,23 +343,43 @@ public void fromJwt(String jwt, KeyJar keyJar, String keyOwner,
   /**
    * Serialize the content of this instance (the claims map) into a jwt string.
    * 
-   * @param key
+   * @param signingKey
    *          signing key
    * @param alg
-   *          signing algorithm
+   *          signing algorithm name
    * @return message as jwt string.
+   * @throws SerializationException 
    */
-  public String toJwt(Key key, String alg)
+  public String toJwt(Key signingKey, String alg) throws SerializationException {
+    return toJwt(signingKey, alg, null, null, null);
+  }
+  /**
+   * Serialize the content of this instance (the claims map) into a jwt string.
+   * 
+   * @param signingKey
+   *          signing key
+   * @param alg
+   *          signing algorithm name
+   * @param transportKey
+   *          key transport key, if null encryption is not done.
+   * @param encAlg
+   *          key transport algorithm name. Must not be null if transportKey is set.
+   * @param encEnc
+   *          content encryption algorithm name. Must not be null if transportKey is set.
+   * @return message as jwt string.
+   */
+  
+  public String toJwt(Key signingKey, String alg, Key transportKey, String encAlg, String encEnc)
       throws SerializationException {
     header = new HashMap<String, Object>();
     header.put("alg", alg);
     header.put("typ", "JWT");
-    if (key != null && key.getKid() != null) {
-      header.put("kid", key.getKid());
+    if (signingKey != null && signingKey.getKid() != null) {
+      header.put("kid", signingKey.getKid());
     }
     Algorithm algorithm = null;
     try {
-      algorithm = AlgorithmResolver.resolveSigningAlgorithm(key, alg);
+      algorithm = AlgorithmResolver.resolveSigningAlgorithm(signingKey, alg);
     } catch (IllegalArgumentException | ValueError | UnsupportedEncodingException
         | SerializationNotPossible e) {
       throw new SerializationException(String
@@ -383,8 +405,24 @@ public String toJwt(Key key, String alg)
       }
 
     }
-    return newBuilder.sign(algorithm);
-
+    
+    String signedJwt = newBuilder.sign(algorithm);
+    if (transportKey == null) {
+      return signedJwt;
+    }
+    if (encAlg == null || encEnc == null) {
+      throw new SerializationException(
+          "encAlg and encEnc are mandatory parameters if transport key is set");
+    }
+    try {
+      return JWTEncryptor.init().withPayload(signedJwt.getBytes("UTF-8")).encrypt(
+          AlgorithmResolver.resolveKeyTransportAlgorithm(transportKey, encAlg),
+          Algorithm.getContentEncryptionAlg(encEnc, CipherParams.getInstance(encEnc)));
+    } catch (UnsupportedEncodingException | ValueError | SerializationNotPossible e) {
+      throw new SerializationException(
+          String.format("Not able to initialize key transport algorithm '%s' to encrypt JWS, '%s'",
+              encAlg, e.getMessage()));
+    }
   }
 
   /**
diff --git a/src/main/java/org/oidc/msg/oidc/util/AlgorithmResolver.java b/src/main/java/org/oidc/msg/oidc/util/AlgorithmResolver.java
@@ -47,6 +47,9 @@ private static boolean verifyKeyType(Key key, String alg) {
       case "RS256":
       case "RS384":
       case "RS512":
+      case "RSA1_5": 
+      case "RSA-OAEP":
+      case "RSA-OAEP-256":
         if (key instanceof RSAKey) {
           return true;
         }
@@ -61,6 +64,9 @@ private static boolean verifyKeyType(Key key, String alg) {
       case "HS256":
       case "HS384":
       case "HS512":
+      case "A128KW":
+      case "A192KW":  
+      case "A256KW":
         if (key instanceof SYMKey) {
           return true;
         }
@@ -160,4 +166,49 @@ public static Algorithm resolveVerificationAlgorithm(Key key, String alg)
     throw new ValueError(String.format("Algorithm '%s' not supported ", alg));
   }
   
+  /**
+   * Resolves key transport algorithm for key and algorithm identifier string. 
+   * @param key for signing.
+   * @param alg algorithm name.
+   * @return Algorithm instance
+   * @throws ValueError if key or algorithm is of unexpected type
+   * @throws UnsupportedEncodingException if symmetric key encoding fails
+   * @throws SerializationNotPossible if symmetric key fails to serialize
+   */
+  public static Algorithm resolveKeyTransportAlgorithm(Key key, String alg)
+      throws ValueError, UnsupportedEncodingException, SerializationNotPossible {
+    if (!verifyKeyType(key, alg)) {
+      throw new ValueError(String.format("key does not match algorithm '%s' ", alg));
+    }
+    if (key == null || !key.isPublicKey()) {
+      throw new ValueError(String.format("Key for key transport algorithm must be public"));
+    }
+    switch (alg) {
+      case "RSA1_5":
+        return Algorithm.RSA1_5((RSAPublicKey) key.getKey(false), null);
+      case "RSA-OAEP":
+        return Algorithm.RSAOAEP((RSAPublicKey) key.getKey(false), null);
+      case "RSA-OAEP-256":
+        return Algorithm.RSAOAEP256((RSAPublicKey) key.getKey(false), null);
+      case "A128KW":
+        return Algorithm.AES128Keywrap(((SYMKey) key).getKey(false).getEncoded());
+      case "A192KW":
+        return Algorithm.AES192Keywrap(((SYMKey) key).getKey(false).getEncoded());
+      case "A256KW":
+        return Algorithm.AES256Keywrap(((SYMKey) key).getKey(false).getEncoded());
+      /*
+       * TODO: rest of the algorithms requiring more parameters 
+       * case "ECDH-ES": 
+       * case "ECDH-ES+A128KW":
+       * case "ECDH-ES+A192KW": 
+       * case "ECDH-ES+A256KW": 
+       * ..return Algorithm.ECDH_ES((ECPublicKey) key.getKey(false)...); ... ...
+       * 
+       */
+      default:
+        break;
+    }
+    throw new ValueError(String.format("Algorithm '%s' not supported ", alg));
+  }
+  
 }
diff --git a/src/test/java/org/oidc/msg/AbstractMessageTest.java b/src/test/java/org/oidc/msg/AbstractMessageTest.java
@@ -139,6 +139,20 @@ public void testSuccessToAndFromJWTNoneAlgBasicTypes() throws IOException, Inval
         CoreMatchers.is(mockMessage2.getClaims().get("foo4")));
   }
   
+  @Test
+  public void testSuccessToJWTEncryptInitialVersion()
+      throws IOException, InvalidClaimException, SerializationException, DeserializationException,
+      IllegalArgumentException, ImportException, UnknownKeyType, ValueError, JWKException {
+    //Initial test for jwt encryption. Not at all complete case.
+    HashMap<String, Object> claims = new HashMap<String, Object>();
+    claims.put("foo", "bar");
+    MockMessage mockMessage = new MockMessage(claims);
+    List<Key> keysDec = getKeyJarPrv().getDecryptKey("RSA", keyOwner, null, null);
+    List<Key> keysEnc = getKeyJarPub().getEncryptKey("RSA", keyOwner, null, null);
+    mockMessage.toJwt(keysDec.get(0), "RS256", keysEnc.get(0), "RSA1_5",
+        "A128CBC-HS256");
+  }
+  
   @Test
   public void testSuccessToJWTSignRS()
       throws IllegalArgumentException, ImportException, UnknownKeyType, ValueError,
