JWT with RS256, RS384 and RS512

MCvanderKooij · 2017-12-05 13:17:05

Hi,

I have created this support for RS256, RS384 and RS512 in JWT using openssl.

Files are included in this zip:
https://www.dropbox.com/s/hnuf3qsgx3o52 … S.zip?dl=0

It needs a few additions to openssl.pas which is also included.

Both signing and verifying works. Feel free to use in mORMot (even better, because you will probably optimize it further :-) )

Kind regards,
Martijn

ab · 2017-12-05 13:53:57

I've integrated the SynOpenSSL.pas small additions, but the rest needs more review.
See https://synopse.info/fossil/info/41a009ce3c

Thanks for sharing!

MCvanderKooij · 2017-12-05 15:19:00

ab wrote:

I've integrated the SynOpenSSL.pas small additions, but the rest needs more review.
See https://synopse.info/fossil/info/41a009ce3c
Thanks for sharing!

Great, that makes maintaince easier...

And a small fix in TJWTAsymetric.SetPublicKey:

The "FPublicKey := Value;" needs to be after the "if FPublicKey <> Value then"...

(Always nice those last moment changes...)

mpv · 2018-04-23 10:49:25

@ab - do you have any plans to add @MCvanderKooij TJWTAsymetric to the main mORMot trunk? We need it for integration with 3-d party services (payments). If not - it's not a problem...

squirrel · 2020-12-28 10:10:45

Is it possible to create RS256 JWT assertions using mormot?
I need to integrate with 3rd party systems that requires it, and looking for a pain-free way to generate the jwt assertions. Unfortunately rs256 is a requirement from them.

ab · 2020-12-28 10:33:50

Eventually in mORMot2, using OpenSSL.

Current SynOpenSSL has already support for raw RS* algorithms, you need to create a TJWTAbstract sub-class to call the corresponding OpenSSL functions.

squirrel · 2020-12-28 11:40:12

Thanks ab

It looks like the code provided by @MCvanderKooij works very well as-is, I just had to add SynTable to the uses clause of uJWTRSA.

Vitaly · 2020-12-28 22:11:49

JOSE JWT lib can be also used with TJWTAbstract subclass as an alternative: https://github.com/paolo-rossi/delphi-jose-jwt

mORMot Open Source

#1 2017-12-05 13:17:05

JWT with RS256, RS384 and RS512

#2 2017-12-05 13:53:57

Re: JWT with RS256, RS384 and RS512

#3 2017-12-05 15:19:00

Re: JWT with RS256, RS384 and RS512

#4 2018-04-23 10:49:25

Re: JWT with RS256, RS384 and RS512

#5 2020-12-28 10:10:45

Re: JWT with RS256, RS384 and RS512

#6 2020-12-28 10:33:50

Re: JWT with RS256, RS384 and RS512

#7 2020-12-28 11:40:12

Re: JWT with RS256, RS384 and RS512

#8 2020-12-28 22:11:49

Re: JWT with RS256, RS384 and RS512

Board footer