mirror of
https://github.com/ergochat/ergo.git
synced 2024-11-24 21:09:30 +01:00
ee7f818674
* implement SASL OAUTHBEARER and draft/bearer * Upgrade JWT lib * Fix an edge case in SASL EXTERNAL * Accept longer SASL responses * review fix: allow multiple token definitions * enhance tests * use SASL utilities from irc-go * test expired tokens
65 lines
1.4 KiB
Go
65 lines
1.4 KiB
Go
package jwt
|
|
|
|
import (
|
|
"crypto"
|
|
"crypto/ed25519"
|
|
"crypto/x509"
|
|
"encoding/pem"
|
|
"errors"
|
|
)
|
|
|
|
var (
|
|
ErrNotEdPrivateKey = errors.New("key is not a valid Ed25519 private key")
|
|
ErrNotEdPublicKey = errors.New("key is not a valid Ed25519 public key")
|
|
)
|
|
|
|
// ParseEdPrivateKeyFromPEM parses a PEM-encoded Edwards curve private key
|
|
func ParseEdPrivateKeyFromPEM(key []byte) (crypto.PrivateKey, error) {
|
|
var err error
|
|
|
|
// Parse PEM block
|
|
var block *pem.Block
|
|
if block, _ = pem.Decode(key); block == nil {
|
|
return nil, ErrKeyMustBePEMEncoded
|
|
}
|
|
|
|
// Parse the key
|
|
var parsedKey interface{}
|
|
if parsedKey, err = x509.ParsePKCS8PrivateKey(block.Bytes); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
var pkey ed25519.PrivateKey
|
|
var ok bool
|
|
if pkey, ok = parsedKey.(ed25519.PrivateKey); !ok {
|
|
return nil, ErrNotEdPrivateKey
|
|
}
|
|
|
|
return pkey, nil
|
|
}
|
|
|
|
// ParseEdPublicKeyFromPEM parses a PEM-encoded Edwards curve public key
|
|
func ParseEdPublicKeyFromPEM(key []byte) (crypto.PublicKey, error) {
|
|
var err error
|
|
|
|
// Parse PEM block
|
|
var block *pem.Block
|
|
if block, _ = pem.Decode(key); block == nil {
|
|
return nil, ErrKeyMustBePEMEncoded
|
|
}
|
|
|
|
// Parse the key
|
|
var parsedKey interface{}
|
|
if parsedKey, err = x509.ParsePKIXPublicKey(block.Bytes); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
var pkey ed25519.PublicKey
|
|
var ok bool
|
|
if pkey, ok = parsedKey.(ed25519.PublicKey); !ok {
|
|
return nil, ErrNotEdPublicKey
|
|
}
|
|
|
|
return pkey, nil
|
|
}
|