jose: Javascript Object Signing and Encryption and JSON Web Token library

[ apache, cryptography, library ] [ Propose Tags ]

An implementation of the Javascript Object Signing and Encryption (JOSE) and JSON Web Token (JWT; RFC 7519) formats.

The JSON Web Signature (JWS; RFC 7515) implementation is complete.

EdDSA signatures (RFC 8037) are supported (Ed25519 only).

JWK Thumbprint (RFC 7638) is supported (requires aeson >= 0.10).

JSON Web Encryption (JWE; RFC 7516) is not yet implemented.

The ECDSA implementation is vulnerable to timing attacks and should only be used for verification.

[Skip to Readme]

Modules

[Index]

Crypto
- Crypto.JOSE
- Crypto.JWT

Downloads

jose-0.7.0.0.tar.gz [browse] (Cabal source package)
Package description (revised from the package)

Note: This package has metadata revisions in the cabal description newer than included in the tarball. To unpack the package including the revisions, use 'cabal get'.

Maintainer's Corner

Package maintainers

frasertweedale

For package maintainers and hackage trustees

edit package information

Candidates

No Candidates

Versions [RSS]	0.1.26.0, 0.1.27.0, 0.2.31.0, 0.2.33.0, 0.2.38.0, 0.2.38.1, 0.3.38.0, 0.3.41.0, 0.3.41.1, 0.3.41.2, 0.4.0.0, 0.4.0.1, 0.4.0.2, 0.4.0.3, 0.4.0.4, 0.5.0.0, 0.5.0.1, 0.5.0.2, 0.5.0.3, 0.5.0.4, 0.5.0.5, 0.6.0.0, 0.6.0.1, 0.6.0.2, 0.6.0.3, 0.7.0.0, 0.8.0.0, 0.8.1.0, 0.8.2.0, 0.8.2.1, 0.8.3, 0.8.3.1, 0.8.4, 0.8.4.1, 0.8.5, 0.8.5.1, 0.9, 0.10, 0.10.0.1, 0.11
Dependencies	aeson (>=0.8.0.1), attoparsec, base (>=4.8 && <4.13), base64-bytestring (>=1.0 && <1.1), bytestring (>=0.10 && <0.11), concise (>=0.1), containers (>=0.5), cryptonite (>=0.7), jose, lens (>=4.3), memory (>=0.7), monad-time (>=0.1), mtl (>=2), network-uri (>=2.6), QuickCheck (>=2), quickcheck-instances, safe (>=0.3), semigroups (>=0.15), template-haskell (>=2.4), text (>=1.1), time (>=1.5), unordered-containers (>=0.2 && <0.3), vector, x509 (>=1.4) [details]
License	Apache-2.0
Copyright	Copyright (C) 2013, 2014, 2015, 2016, 2017 Fraser Tweedale
Author	Fraser Tweedale
Maintainer	frase@frase.id.au
Revised	Revision 1 made by phadej at 2020-04-14T14:54:12Z
Category	Cryptography
Home page	https://github.com/frasertweedale/hs-jose
Bug tracker	https://github.com/frasertweedale/hs-jose/issues
Source repo	head: git clone https://github.com/frasertweedale/hs-jose.git
Uploaded	by frasertweedale at 2018-04-06T05:06:45Z
Distributions	Arch:0.10, LTSHaskell:0.11, NixOS:0.11, Stackage:0.11
Reverse Dependencies	21 direct, 23 indirect [details]
Executables	jose-example
Downloads	34676 total (243 in the last 30 days)
Rating	1.75 (votes: 2) [estimated by Bayesian average]
Your Rating	λ λ λ
Status	Docs available [build log] Last success reported on 2018-04-14 [all 1 reports]

Readme for jose-0.7.0.0

[back to package description]

jose - Javascript Object Signing and Encryption & JWT (JSON Web Token)

jose is a Haskell implementation of Javascript Object Signing and Encryption and JSON Web Token.

The JSON Web Signature (JWS; RFC 7515) implementation is complete. JSON Web Encryption (JWE; RFC 7516) is not yet implemented.

EdDSA signatures (RFC 8037) are supported (Ed25519 only).

JWK Thumbprint (RFC 7638) is supported (requires aeson >= 0.10).

Contributions are welcome.

Security

If you discover a security issue in this library, please email me the details, ideally with a proof of concept (frase @ frase.id.au ; PGP key).

Before reporting an issue, please note the following known vulnerabilities:

The ECDSA implementation is vulnerable to timing attacks and should therefore only be used for verification.

and the following known not-vulnerabilities:

The library is not vulnerable to JWS algorithm substitution attacks. Haskell's type system excludes this attack.
The default JWS validation settings reject the "none" algorithm, as required by RFC 7518.
The library is not vulnerable to ECDH invalid curve attacks because JWE is not implemented.

Interoperability issues

The following known interoperability issues will not be addressed, so please do not open issues:

Some JOSE tools and libraries permit the use of short keys, in violation of the RFCs. This implementation reject JWS or JWT objects minted with short keys, as required by the RFCs.
The Auth0 software produces objects with an invalid "x5t" parameter. The datum should be a base64url-encoded SHA-1 digest, but Auth0 produces a base64url-encoded hex-encoded SHA-1 digest. The object can be repaired so that this library will admit it, unless the offending parameter is part of the JWS Protected Header in which case you are out of luck until Auth0 bring their implementation into compliance.

Contributing

Bug reports, patches, feature requests, code review, crypto review, examples and documentation are welcome.

If you are wondering about how or whether to implement some feature or fix, please open an issue where it can be discussed. I appreciate your efforts, but I do not wish such efforts to be misplaced.

To submit a patch, please use git send-email or open a pull request. Write a well formed commit message. If your patch is nontrivial, update the copyright notice at the top of the modified files