jose-util

command

v2.5.1+incompatible Latest Latest Go to latest Published: May 1, 2020 License: Apache-2.0 Imports: 8 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/nixsoftware/go-jose

Links

Open Source Insights

README ¶

JOSE CLI

The jose-util command line utility allows for encryption, decryption, signing and verification of JOSE messages. Its main purpose is to facilitate dealing with JOSE messages when testing or debugging.

Usage

The utility includes the subcommands encrypt, decrypt, sign, verify and expand. Examples for each command can be found below.

Algorithms are selected via the --alg and --enc flags, which influence the alg and enc headers in respectively. For JWE, --alg specifies the key management algorithm (e.g. RSA-OAEP) and --enc specifies the content encryption algorithm (e.g. A128GCM). For JWS, --alg specifies the signature algorithm (e.g. PS256).

Input and output files can be specified via the --in and --out flags. Either flag can be omitted, in which case jose-util uses stdin/stdout for input/output respectively. By default each command will output a compact message, but it's possible to get the full serialization by supplying the --full flag.

Keys are specified via the --key flag. Supported key types are naked RSA/EC keys and X.509 certificates with embedded RSA/EC keys. Keys must be in PEM or DER formats.

Testing

cram is used for testing. This can be installed with pip or sudo apt install python-cram See the travis file for how this is used in testing. For example, go build && PATH=$PWD:$PATH cram -v jose-util.t

Examples

Encrypt

Takes a plaintext as input, encrypts, and prints the encrypted message.

echo 'test message' | jose-util encrypt --key public-key.pem --alg RSA-OAEP --enc A128GCM

Decrypt

Takes an encrypted message (JWE) as input, decrypts, and prints the plaintext.

jose-util decrypt --key private-key.pem

Sign

Takes a payload as input, signs it, and prints the signed message with the embedded payload.

jose-util sign --key private-key.pem --alg PS256

Verify

Reads a signed message (JWS), verifies it, and extracts the payload.

jose-util verify --key public-key.pem

Expand

Expands a compact message to the full serialization format.

jose-util expand --format JWE   # Expands a compact JWE to full format
jose-util expand --format JWS   # Expands a compact JWS to full format

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL