forked from gesellix/Nimbus-JOSE-JWT
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathREADME.txt
98 lines (53 loc) · 2.36 KB
/
README.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
Nimbus JOSE+JWT
README
Nimbus JOSE+JWT is a Java library that implements the Javascript Object Signing
and Encryption (JOSE) spec suite and the closely related JSON Web Token (JWT)
spec.
The library supports creating, querying, serialising and parsing of the
following JOSE and JWT objects:
* Plain (unsecured) JOSE objects.
* JSON Web Signature (JWS) objects.
* JSON Web Encryption (JWE) objects.
* JSON Web Key (JWK) objects and JSON Web Key (JWK) Sets.
* Plain, signed and encrypted JSON Web Tokens (JWTs).
The JOSE and JWT object representation is decoupled from crypto algorithm (JWA)
implementations through a set of nimble interfaces for signing, verifying,
encrypting and decrypting the objects.
The library currently ships with a ready implementation of the following
standard algorithms:
* HMAC signatures with HS256, HS384 and HS512.
* RSA signatures with RS256, RS384 and RS512.
* EC signatures with ES256, ES384 and ES512.
Related IETF drafts:
* [JWA] draft-ietf-jose-json-web-algorithms-07
* [JWS] draft-ietf-jose-json-web-signature-07
* [JWE] draft-ietf-jose-json-web-encryption-07
* [JWK] draft-ietf-jose-json-web-key-07
* [JWT] draft-ietf-oauth-json-web-token-05
Dependencies:
* Apache Commons Codec for Base64 and Base64URL encoding and decoding.
* JSON Smart for highly efficient parsing and serialisation of JSON.
* [optional] The BouncyCastle.org cryptography provider for Java, for
ECDSA signing and verification.
Uses:
* JWT bearer tokens in OAuth 2.0
* OpenID Connect
* XMPP
About us:
The principal maintainer of this library is Nimbus Directory Services
[http://NimbusDS.com]. The initial code was based on JWS/JWE/JWT crypto classes
factored out of the OpenInfoCard project. A rewrite to fully decouple JOSE + JWT
object representation from crypto algorithm implementation led to the next major
2.0 release in October 2012.
You're welcome to contribute crypto handlers for standard algorithms which have
not been implemented yet (most JWE algorithms).
Acknowledgements:
* Axel Nennker and the guys behind OpenInfoCard.
* Everyone on the JOSE IETF WG list.
* CertiVox UK for supporting the development.
* Ville Kurkinen for adding Maven POM support.
To post bug reports and suggestions:
https://bitbucket.org/nimbusds/nimbus-jose-jwt/issues
Follow us on Twitter:
https://twitter.com/NimbusDS
[EOF]