java - Verification key for jose4j JwtConsumer -

-

i using jose4j validate , process jwt. jwt looks following , passes validation in jwt homepage. enter image description here

however, can't same using jose4j java library. exception complains verification key set. there many types of keys defined in library , tried them no luck. code following:

import java.util.map;  import org.jose4j.jwt.jwtclaims; import org.jose4j.jwt.consumer.invalidjwtexception; import org.jose4j.jwt.consumer.jwtconsumer; import org.jose4j.jwt.consumer.jwtconsumerbuilder; import org.jose4j.keys.hmackey;  public class ygjwt {      public static void main(string args[]) throws invalidjwtexception {          string jwt = "eyjhbgcioijiuzi1niisinr5cci6ikpxvcj9.eyjzdwiioiixmjm0nty3odkwiiwibmftzsi6ikpvag4grg9liiwiywrtaw4ionrydwv9.tjva95orm7e2cbab30rmhrhdcefxjoyzgefonfh7hgq";         string secret = "secret";          jwtconsumer jwtconsumer = new jwtconsumerbuilder()                 .setverificationkey(new hmackey(secret.getbytes())) //what kind of key need use here?                 .build();           jwtclaims jwtclaims = jwtconsumer.processtoclaims(jwt);         map<string, object> claimsmap = jwtclaims.getclaimsmap();          claimsmap.foreach((string key, object val) -> {             system.out.println(key + ": " + val.tostring());         });      }  }

any appreciated.

i 'd guess you're getting exception this? org.jose4j.lang.invalidkeyexception: key of same size hash output (i.e. 256 bits hs256) or larger must used hmac sha algorithms key 48 bits

the hmackey correct type hs256 key technically short according second paragraph of http://tools.ietf.org/html/rfc7518#section-3.2 has same text exception message.

you can work around building jwtconsumer .setrelaxverificationkeyvalidation(), allow shorter keys. looks (adding 1 line snippet example):

  jwtconsumer jwtconsumer = new jwtconsumerbuilder()      .setverificationkey(new hmackey(secret.getbytes()))       .setrelaxverificationkeyvalidation() // allow shorter hmac keys when used w/ hsxxx algs       .build();

in general though try , avoid use of short password key such "secret" , suggest using stronger key when possible.


Comments

Post a Comment

Popular posts from this blog

c - Bitwise operation with (signed) enum value -

-
i using enumerator values flags: typedef enum { = 0x00, b = 0x01u, // u has no influence, expected c = 0x02u, // u has no influence, expected ... } enum_name; volatile unsigned char* reg = someaddress; *reg |= b; according misra-c:2004 bitwise operations shall not done signed type. unfortunately, compiler iar use signed int (or short or char) underlying type of enums, , option can find relates size, not signedness ("--enum-is-int"). according iar c/c++ development guide arm , pages 169 , 211, can define type of enum s if enable iar language extensions ( -e command-line option, or project > options > c/c++ compiler > language > allow iar extensions in ide). in particular, should define "sentinel" value, make sure compiler chooses correct type. prefers signed types, , uses smallest possible integer type, sentinel should largest positive integer corresponding unsigned integer type can describe. example, typedef enum
Read more

xslt - Unnest parent nodes by child node -

-
in xml there items 0-n attributes , item should copied each attribute new item 1 attribute. given xml this: <?xml version="1.0" encoding="utf-8" ?> <items> <item> <name>a</name> <attributes> <attribute> <key>attribute1</key> <value>1</value> </attribute> </attributes> </item> <item> <name>b</name> </item> <item> <name>c</name> <attributes> <attribute> <key>attribute1</key> <value>5</value> </attribute> <attribute> <key>attribute2</key> <value>2</value> </attribute> <attribute> <key>attri
Read more

YouTubePlayerFragment cannot be cast to android.support.v4.app.Fragment -

-
im stuck on 3 days , have tried have come across after lots of searching ,this post last resort, im trying open youtubeplayerfragment using navigation drawer youtubeplayerfragment cannot cast android.support.v4.app.fragment problem edit question : have updated code have used youtubeplayersupportfragment instead of youtubeplayerfragment ,i error in displayview method (case 4: fragment = new youtube(); break;) in main activity saying cannot convert youtube fragment , cannot logcat since cant run it edit question 2: code updated again have runtime problem ,heres logcat 07-22 22:15:09.782: e/androidruntime(20603): fatal exception: main 07-22 22:15:09.782: e/androidruntime(20603): process: net.frankandwalters, pid: 20603 07-22 22:15:09.782: e/androidruntime(20603): java.lang.nullpointerexception: attempt invoke virtual method 'void com.google.android.youtube.player.youtubeplayerview.a()' on null object reference 07-22 22:15:09.782: e/androidruntime(20603): @ com.goog
Read more