java.lang.Object
io.helidon.security.jwt.jwk.Jwk
io.helidon.security.jwt.jwk.JwkEC
Elliptic curve JSON web key.
-
Nested Class Summary
-
Field Summary
Modifier and TypeFieldDescriptionstatic final String
ECDSA using P-256 and SHA-256.static final String
ECDSA using P-384 and SHA-384.static final String
ECDSA using "P-521" and SHA-512.static final String
P-256 Curve.static final String
P-384 Curve.static final String
P-521 Curve.static final String
JWK parameter for EC curve.static final String
JWK parameter for private key.static final String
JWK parameter for X coordinate.static final String
JWK parameter for X.509 certificate chain array.static final String
JWK parameter for X.509 certificate chain URL.static final String
JWK parameter for SHA 1 Thumbprint of X.509 certificate.static final String
JWK parameter for SHA 256 Thumbprint of X.509 certificate.static final String
JWK parameter for X coordinate.static final String
The main Java security algorithm used.Fields inherited from class io.helidon.security.jwt.jwk.Jwk
ALG_NONE, KEY_TYPE_EC, KEY_TYPE_OCT, KEY_TYPE_RSA, NONE_JWK, OPERATION_DECRYPT, OPERATION_DERIVE_BITS, OPERATION_DERIVE_KEY, OPERATION_ENCRYPT, OPERATION_SIGN, OPERATION_UNWRAP_KEY, OPERATION_VERIFY, OPERATION_WRAP_KEY, PARAM_ALGORITHM, PARAM_KEY_ID, PARAM_KEY_TYPE, PARAM_OPERATIONS, PARAM_USE, USE_ENCRYPTION, USE_SIGNATURE
-
Method Summary
Modifier and TypeMethodDescriptionstatic JwkEC.Builder
builder()
Create a builder instance.static JwkEC
create
(JsonObject json) Create an instance from Json object.byte[]
doSign
(byte[] bytesToSign) boolean
doVerify
(byte[] signedBytes, byte[] signatureToVerify) Optional<byte[]>
Optional<byte[]>
Methods inherited from class io.helidon.security.jwt.jwk.Jwk
algorithm, keyId, keyType, operations, sign, toString, usage, verifySignature
-
Field Details
-
SECURITY_ALGORITHM
The main Java security algorithm used.- See Also:
-
ALG_ES256
ECDSA using P-256 and SHA-256. See RFC 7518, section 7.1.2.- See Also:
-
ALG_ES384
ECDSA using P-384 and SHA-384. See RFC 7518, section 7.1.2.- See Also:
-
ALG_ES512
- See Also:
-
CURVE_P256
P-256 Curve. See RFC 7518, section 7.6.2.- See Also:
-
CURVE_P384
P-384 Curve. See RFC 7518, section 7.6.2.- See Also:
-
CURVE_P521
P-521 Curve. See RFC 7518, section 7.6.2.- See Also:
-
PARAM_CURVE
JWK parameter for EC curve. See RFC 7518, section 6.2.1.1.- See Also:
-
PARAM_X_COORDINATE
JWK parameter for X coordinate. See RFC 7518, section 6.2.1.2.- See Also:
-
PARAM_Y_COODRINATE
JWK parameter for X coordinate. See RFC 7518, section 6.2.1.3.- See Also:
-
PARAM_PRIVATE_KEY
JWK parameter for private key. See RFC 7518, section 6.2.2.1.- See Also:
-
PARAM_X509_CHAIN_URL
JWK parameter for X.509 certificate chain URL. See RFC 7517, section 4.6.- See Also:
-
PARAM_X509_CHAIN
JWK parameter for X.509 certificate chain array. See RFC 7517, section 4.7.- See Also:
-
PARAM_X509_SHA_1
JWK parameter for SHA 1 Thumbprint of X.509 certificate. See RFC 7517, section 4.8.- See Also:
-
PARAM_X509_SHA_256
JWK parameter for SHA 256 Thumbprint of X.509 certificate. See RFC 7517, section 4.9.- See Also:
-
-
Method Details
-
builder
Create a builder instance.- Returns:
- builder ready to create a new
JwkEC
instance.
-
create
Create an instance from Json object.- Parameters:
json
- with definition of this EC web key- Returns:
- new instance of this class constructed from json
- See Also:
-
doVerify
public boolean doVerify(byte[] signedBytes, byte[] signatureToVerify) -
privateKey
-
publicKey
-
certificateChain
-
sha1Thumbprint
-
sha256Thumbprint
-
doSign
public byte[] doSign(byte[] bytesToSign)
-