foomo/keel
1
0
Fork 0
mirror of https://github.com/foomo/keel.git synced 2025-10-16 12:35:34 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
main
keel/jwt/jwtkey.go
Kevin Franklin Kim 8882274093
feat: update & fix lints
2024-04-16 09:38:28 +02:00

90 lines
2.7 KiB
Go
Raw Permalink Blame History

package jwt
import (
"bytes"
"crypto/rsa"
"crypto/sha256"
"encoding/hex"
"os"
"strings"
"github.com/golang-jwt/jwt"
"github.com/pkg/errors"
)
type Key struct {
// ID (required) represents the key identifier e.g. the md5 representation of the public key
ID string
// Public (required) rsa key
Public *rsa.PublicKey
// Private (optional) rsa key
Private *rsa.PrivateKey
}
// NewKey return a new Key
func NewKey(id string, public *rsa.PublicKey, private *rsa.PrivateKey) Key {
return Key{
ID: id,
Public: public,
Private: private,
}
}
// NewKeyFromFilenames returns a new Key from the given file names
func NewKeyFromFilenames(publicKeyPemFilename, privateKeyPemFilename string) (Key, error) {
var id string
var public *rsa.PublicKey
var private *rsa.PrivateKey
// load private key
if privateKeyPemFilename != "" {
if value, err := os.ReadFile(privateKeyPemFilename); err != nil {
return Key{}, errors.Wrap(err, "failed to read private key: "+privateKeyPemFilename)
} else if key, err := jwt.ParseRSAPrivateKeyFromPEM([]byte(strings.ReplaceAll(string(value), `\n`, "\n"))); err != nil {
return Key{}, errors.Wrap(err, "failed to parse private key: "+privateKeyPemFilename)
} else {
private = key
}
}
// load public key
if v, err := os.ReadFile(publicKeyPemFilename); err != nil {
return Key{}, errors.Wrap(err, "failed to read public key: "+publicKeyPemFilename)
} else if key, err := jwt.ParseRSAPublicKeyFromPEM([]byte(strings.ReplaceAll(string(v), `\n`, "\n"))); err != nil {
return Key{}, errors.Wrap(err, "failed to parse public key: "+publicKeyPemFilename)
} else {
hasher := sha256.New()
_, _ = hasher.Write(bytes.TrimSpace(v))
id = hex.EncodeToString(hasher.Sum(nil))
public = key
}
return NewKey(id, public, private), nil
}
// NewDeprecatedKeysFromFilenames returns new Keys from the given file names
func NewDeprecatedKeysFromFilenames(publicKeyPemFilenames []string) ([]Key, error) {
deprecatedKeys := make([]Key, 0, len(publicKeyPemFilenames))
for _, publicKeyPemFilename := range publicKeyPemFilenames {
if value, err := NewKeyFromFilenames(publicKeyPemFilename, ""); err != nil {
return nil, err
} else {
deprecatedKeys = append(deprecatedKeys, value)
}
}
return deprecatedKeys, nil
}
// NewKeysFromFilenames helper
func NewKeysFromFilenames(publicKeyPemFilename, privateKeyPemFilename string, deprecatedPublicKeyPemFilenames []string) (Key, []Key, error) {
key, err := NewKeyFromFilenames(publicKeyPemFilename, privateKeyPemFilename)
if err != nil {
return Key{}, nil, err
}
deprecatedKeys, err := NewDeprecatedKeysFromFilenames(deprecatedPublicKeyPemFilenames)
if err != nil {
return Key{}, nil, err
}
return key, deprecatedKeys, nil
}
Reference in New Issue View Git Blame Copy Permalink