diff options
Diffstat (limited to 'vendor/web-token/jwt-signature-algorithm-rsa/RSA.php')
| -rw-r--r-- | vendor/web-token/jwt-signature-algorithm-rsa/RSA.php | 62 |
1 files changed, 62 insertions, 0 deletions
diff --git a/vendor/web-token/jwt-signature-algorithm-rsa/RSA.php b/vendor/web-token/jwt-signature-algorithm-rsa/RSA.php new file mode 100644 index 0000000..12a4445 --- /dev/null +++ b/vendor/web-token/jwt-signature-algorithm-rsa/RSA.php @@ -0,0 +1,62 @@ +<?php + +declare(strict_types=1); + +/* + * The MIT License (MIT) + * + * Copyright (c) 2014-2018 Spomky-Labs + * + * This software may be modified and distributed under the terms + * of the MIT license. See the LICENSE file for details. + */ + +namespace Jose\Component\Signature\Algorithm; + +use Jose\Component\Core\JWK; +use Jose\Component\Core\Util\RSAKey; +use Jose\Component\Signature\Util\RSA as JoseRSA; + +abstract class RSA implements SignatureAlgorithm +{ + abstract protected function getAlgorithm(): string; + + abstract protected function getSignatureMethod(): int; + + public function allowedKeyTypes(): array + { + return ['RSA']; + } + + public function verify(JWK $key, string $input, string $signature): bool + { + $this->checkKey($key); + $pub = RSAKey::createFromJWK($key->toPublic()); + + return JoseRSA::verify($pub, $input, $signature, $this->getAlgorithm(), $this->getSignatureMethod()); + } + + public function sign(JWK $key, string $input): string + { + $this->checkKey($key); + if (!$key->has('d')) { + throw new \InvalidArgumentException('The key is not a private key.'); + } + + $priv = RSAKey::createFromJWK($key); + + return JoseRSA::sign($priv, $input, $this->getAlgorithm(), $this->getSignatureMethod()); + } + + private function checkKey(JWK $key) + { + if (!\in_array($key->get('kty'), $this->allowedKeyTypes(), true)) { + throw new \InvalidArgumentException('Wrong key type.'); + } + foreach (['n', 'e'] as $k) { + if (!$key->has($k)) { + throw new \InvalidArgumentException(\sprintf('The key parameter "%s" is missing.', $k)); + } + } + } +} |