jose: Javascript Object Signing and Encryption and JSON Web Token library

[ apache, cryptography, library ] [ Propose Tags ]

An implementation of the Javascript Object Signing and Encryption (JOSE) and JSON Web Token (JWT) formats.

Web Encryption (JWE) is not yet implemented.

All JWS algorithms (HMAC, ECDSA, RSASSA-PKCS-v1_5 and RSASSA-PSS) are implemented, however, the ECDSA implementation is is vulnerable to timing attacks and should therefore only be used for JWS verification.

The Crypto.JOSE.Legacy module is provided for working with the Mozilla Persona (formerly BrowserID) key format. Only RSA keys are supported - DSA keys cannot be used and must be handled as opaque objects.

The version number tracks the IETF jose working group draft revisions. For now, expect breaking API changes on any version change except for the final (fourth) part being incremented.

[Skip to Readme]

Modules

[Index]

Crypto
- Crypto.JOSE
- Crypto.JWT

Downloads

jose-0.3.41.0.tar.gz [browse] (Cabal source package)
Package description (as included in the package)

Maintainer's Corner

Package maintainers

frasertweedale

For package maintainers and hackage trustees

edit package information

Candidates

No Candidates

Versions [RSS]	0.1.26.0, 0.1.27.0, 0.2.31.0, 0.2.33.0, 0.2.38.0, 0.2.38.1, 0.3.38.0, 0.3.41.0, 0.3.41.1, 0.3.41.2, 0.4.0.0, 0.4.0.1, 0.4.0.2, 0.4.0.3, 0.4.0.4, 0.5.0.0, 0.5.0.1, 0.5.0.2, 0.5.0.3, 0.5.0.4, 0.5.0.5, 0.6.0.0, 0.6.0.1, 0.6.0.2, 0.6.0.3, 0.7.0.0, 0.8.0.0, 0.8.1.0, 0.8.2.0, 0.8.2.1, 0.8.3, 0.8.3.1, 0.8.4, 0.8.4.1, 0.8.5, 0.8.5.1, 0.9, 0.10, 0.10.0.1, 0.11
Dependencies	aeson (>=0.7 && <0.9), attoparsec, base (>=4 && <5), base64-bytestring (>=1.0 && <1.1), bifunctors (>=4.0), byteable (>=0.1 && <0.2), bytestring (>=0.10 && <0.11), crypto-pubkey (>=0.2.3), crypto-pubkey-types (>=0.3.2), crypto-random (>=0.0.7 && <0.0.9), cryptohash (>=0.11 && <0.12), data-default-class, ghc-prim, integer-gmp, lens (>=4.3), network-uri (>=2.6), safe (>=0.3), semigroups (>=0.15), template-haskell (>=2.4), text (>=1.1), time (>=1.4 && <1.5), unordered-containers (>=0.2 && <0.3), vector, x509 (>=1.4) [details]
License	Apache-2.0
Copyright	Copyright (C) 2013, 2014, 2015 Fraser Tweedale
Author	Fraser Tweedale
Maintainer	frase@frase.id.au
Category	Cryptography
Home page	https://github.com/frasertweedale/hs-jose
Bug tracker	https://github.com/frasertweedale/hs-jose/issues
Source repo	head: git clone https://github.com/frasertweedale/hs-jose.git
Uploaded	by frasertweedale at 2015-03-06T00:28:45Z
Distributions	Arch:0.10, LTSHaskell:0.11, NixOS:0.11, Stackage:0.11
Reverse Dependencies	22 direct, 23 indirect [details]
Downloads	34750 total (237 in the last 30 days)
Rating	1.75 (votes: 2) [estimated by Bayesian average]
Your Rating	λ λ λ
Status	Docs available [build log] Last success reported on 2015-03-07 [all 1 reports]

Readme for jose-0.3.41.0

[back to package description]

jose - Javascript Object Signing and Encryption & JWT (JSON Web Token)

jose is a Haskell implementation of Javascript Object Signing and Encryption and [JSON Web Token] (https://datatracker.ietf.org/doc/draft-ietf-oauth-json-web-token/).

Encryption (JWE) is not supported but signing is supported. All key types and algorithms are supported, but EC and symmetric key generation is not yet implemented.

Contributions are welcome.