module JWT::Algos::Hmac

def sign(to_sign)

def sign(to_sign)
  algorithm, msg, key = to_sign.values
  authenticator, padded_key = SecurityUtils.rbnacl_fixup(algorithm, key)
  if authenticator && padded_key
    authenticator.auth(padded_key, msg.encode('binary'))
  else
    OpenSSL::HMAC.digest(OpenSSL::Digest.new(algorithm.sub('HS', 'sha')), key, msg)
  end
end

def verify(to_verify)

def verify(to_verify)
  algorithm, public_key, signing_input, signature = to_verify.values
  authenticator, padded_key = SecurityUtils.rbnacl_fixup(algorithm, public_key)
  if authenticator && padded_key
    begin
      authenticator.verify(padded_key, signature.encode('binary'), signing_input.encode('binary'))
    rescue RbNaCl::BadAuthenticatorError
      false
    end
  else
    SecurityUtils.secure_compare(signature, sign(JWT::Signature::ToSign.new(algorithm, signing_input, public_key)))
  end
end

Instance Methods

# sign
# verify

Defined in

lib/jwt/algos/hmac.rb

Modules

Classes

module JWT::Algos::Hmac

def sign(to_sign)

def verify(to_verify)

Instance Methods

Defined in