diff --git a/.gitignore b/.gitignore index e02e772..1f2d744 100644 --- a/.gitignore +++ b/.gitignore @@ -3,6 +3,7 @@ *.redxml *.swp *.txt +!includes/* *.upload *~ .tags diff --git a/Makefile b/Makefile index de46d56..e6d7666 100644 --- a/Makefile +++ b/Makefile @@ -9,3 +9,6 @@ else git clone -q --depth 10 $(CLONE_ARGS) \ -b main https://github.com/martinthomson/i-d-template $(LIBDIR) endif + +generate-includes: + find ./includes/*.txt -maxdepth 1 -type f -exec includes/rfcfold.sh -i {} -o {}.out \; diff --git a/draft-ietf-wimse-s2s-protocol.md b/draft-ietf-wimse-s2s-protocol.md index 33f2ce3..c5535af 100644 --- a/draft-ietf-wimse-s2s-protocol.md +++ b/draft-ietf-wimse-s2s-protocol.md @@ -383,29 +383,8 @@ The decoded JWT claims of the WPT from the example above are shown here: An example of an HTTP request with both the WIT and WPT from prior examples is shown below: -~~~ http-message -POST /path HTTP/1.1 -Host: service.example.com -Content-Type: application/json -Authorization: Bearer 16_mAd0GiwaZokU26_0902100 -Workload-Identity-Token: eyJ0eXAiOiJ3aW1zZS1pZCtqd3QiLCJhbGciOiJFUzI1 - NiIsImtpZCI6Ikp1bmUgNSJ9.eyJpc3MiOiJ3aW1zZTovL2V4YW1wbGUuY29tL3RydX - N0ZWQtY2VudHJhbC1hdXRob3JpdHkiLCJleHAiOjE3MTc2MTI0NzAsInN1YiI6Indpb - XNlOi8vZXhhbXBsZS5jb20vc3BlY2lmaWMtd29ya2xvYWQiLCJqdGkiOiJ4LV8xQ1RM - MmNjYTNDU0U0Y3diX18iLCJjbmYiOnsiandrIjp7Imt0eSI6Ik9LUCIsImNydiI6IkV - kMjU1MTkiLCJ4IjoiX2FtUkMzWXJZYkhoSDFSdFlyTDhjU21URE1oWXRPVVRHNzhjR1 - RSNWV6ayJ9fX0.rOSUMR8I5WhM5C704l3iVdY0zFqxhugJ8Jo2xo39G7FqUTbwTzAGd - pz2lHp6eL1M486XmRgl3uyjj6R_iuzNOA -Workload-Proof-Token: eyJhbGciOiJFZERTQSIsInR5cCI6IndpbXNlLXByb29mK2p - 3dCJ9.eyJhdGgiOiJDTDR3amZwUm1OZi1iZFlJYllMblY5ZDVyTUFSR3dLWUUxMHdVd - 3pDMGpJIiwiYXVkIjoiaHR0cHM6Ly9zZXJ2aWNlLmV4YW1wbGUuY29tL3BhdGgiLCJl - eHAiOjE3Mjg2NTg2NzIsImlzcyI6IndpbXNlOi8vZXhhbXBsZS5jb20vc3BlY2lmaWM - td29ya2xvYWQiLCJqdGkiOiI0YjQyYzVmNjExZTJiMWNmYTFkMmM0MWIzYTJmYjc4Mi - IsInd0aCI6Ii1KaThUbE1ORmszcW16bXBBeEJPXzdXLVl1dGNIXzJfZnVGQUZGU1YxU - mcifQ.jrUBsDjWMG_FpuhLo3lNC-IBeiPQXZ4UOuttPdNj8fRmIG4ZDFF9B10y7uGbi - NIhbRdpgG_KXEPLHXWnvzLmBA - -{"do stuff":"please"} +~~~ http +{::include includes/wpt-request.txt.out} ~~~ {: title="Example HTTP Request with WIT and WPT"} @@ -484,7 +463,7 @@ Following is a non-normative example of a signed request and a signed response, where the caller is using the keys specified in {{example-caller-jwk}}. ~~~ http -{::include includes/sigs-request.out} +{::include includes/sigs-request.txt.out} ~~~ {: title="Signed Request"} @@ -503,7 +482,7 @@ Assuming that the workload being called has the following keypair: A signed response would be: ~~~ http -{::include includes/sigs-response.out} +{::include includes/sigs-response.txt.out} ~~~ {: title="Signed Response"} diff --git a/includes/README.md b/includes/README.md new file mode 100644 index 0000000..65ab660 --- /dev/null +++ b/includes/README.md @@ -0,0 +1 @@ +Run `make generate-includes` to generate `.out` files for each of the present `.txt` files. \ No newline at end of file diff --git a/includes/sigs-request.out b/includes/sigs-request.txt.out similarity index 100% rename from includes/sigs-request.out rename to includes/sigs-request.txt.out diff --git a/includes/sigs-response.out b/includes/sigs-response.txt.out similarity index 100% rename from includes/sigs-response.out rename to includes/sigs-response.txt.out diff --git a/includes/wpt-request.txt b/includes/wpt-request.txt new file mode 100644 index 0000000..c83c464 --- /dev/null +++ b/includes/wpt-request.txt @@ -0,0 +1,8 @@ +POST /path HTTP/1.1 +Host: service.example.com +Content-Type: application/json +Authorization: Bearer 16_mAd0GiwaZokU26_0902100 +Workload-Identity-Token: eyJ0eXAiOiJ3aW1zZS1pZCtqd3QiLCJhbGciOiJFUzI1NiIsImtpZCI6Ikp1bmUgNSJ9.eyJpc3MiOiJ3aW1zZTovL2V4YW1wbGUuY29tL3RydXN0ZWQtY2VudHJhbC1hdXRob3JpdHkiLCJleHAiOjE3MTc2MTI0NzAsInN1YiI6IndpbXNlOi8vZXhhbXBsZS5jb20vc3BlY2lmaWMtd29ya2xvYWQiLCJqdGkiOiJ4LV8xQ1RMMmNjYTNDU0U0Y3diX18iLCJjbmYiOnsiandrIjp7Imt0eSI6Ik9LUCIsImNydiI6IkVkMjU1MTkiLCJ4IjoiX2FtUkMzWXJZYkhoSDFSdFlyTDhjU21URE1oWXRPVVRHNzhjR1RSNWV6ayJ9fX0.rOSUMR8I5WhM5C704l3iVdY0zFqxhugJ8Jo2xo39G7FqUTbwTzAGdpz2lHp6eL1M486XmRgl3uyjj6R_iuzNOA +Workload-Proof-Token: eyJhbGciOiJFZERTQSIsInR5cCI6IndpbXNlLXByb29mK2p3dCJ9.eyJhdGgiOiJDTDR3amZwUm1OZi1iZFlJYllMblY5ZDVyTUFSR3dLWUUxMHdVd3pDMGpJIiwiYXVkIjoiaHR0cHM6Ly9zZXJ2aWNlLmV4YW1wbGUuY29tL3BhdGgiLCJleHAiOjE3Mjg2NTg2NzIsImlzcyI6IndpbXNlOi8vZXhhbXBsZS5jb20vc3BlY2lmaWMtd29ya2xvYWQiLCJqdGkiOiI0YjQyYzVmNjExZTJiMWNmYTFkMmM0MWIzYTJmYjc4MiIsInd0aCI6Ii1KaThUbE1ORmszcW16bXBBeEJPXzdXLVl1dGNIXzJfZnVGQUZGU1YxUmcifQ.jrUBsDjWMG_FpuhLo3lNC-IBeiPQXZ4UOuttPdNj8fRmIG4ZDFF9B10y7uGbiNIhbRdpgG_KXEPLHXWnvzLmBA + +{"do stuff":"please"} \ No newline at end of file diff --git a/includes/wpt-request.txt.out b/includes/wpt-request.txt.out new file mode 100644 index 0000000..dc7f1f4 --- /dev/null +++ b/includes/wpt-request.txt.out @@ -0,0 +1,24 @@ +=============== NOTE: '\' line wrapping per RFC 8792 ================ + +POST /path HTTP/1.1 +Host: service.example.com +Content-Type: application/json +Authorization: Bearer 16_mAd0GiwaZokU26_0902100 +Workload-Identity-Token: eyJ0eXAiOiJ3aW1zZS1pZCtqd3QiLCJhbGciOiJFUzI\ +1NiIsImtpZCI6Ikp1bmUgNSJ9.eyJpc3MiOiJ3aW1zZTovL2V4YW1wbGUuY29tL3RydX\ +N0ZWQtY2VudHJhbC1hdXRob3JpdHkiLCJleHAiOjE3MTc2MTI0NzAsInN1YiI6IndpbX\ +NlOi8vZXhhbXBsZS5jb20vc3BlY2lmaWMtd29ya2xvYWQiLCJqdGkiOiJ4LV8xQ1RMMm\ +NjYTNDU0U0Y3diX18iLCJjbmYiOnsiandrIjp7Imt0eSI6Ik9LUCIsImNydiI6IkVkMj\ +U1MTkiLCJ4IjoiX2FtUkMzWXJZYkhoSDFSdFlyTDhjU21URE1oWXRPVVRHNzhjR1RSNW\ +V6ayJ9fX0.rOSUMR8I5WhM5C704l3iVdY0zFqxhugJ8Jo2xo39G7FqUTbwTzAGdpz2lH\ +p6eL1M486XmRgl3uyjj6R_iuzNOA +Workload-Proof-Token: eyJhbGciOiJFZERTQSIsInR5cCI6IndpbXNlLXByb29mK2\ +p3dCJ9.eyJhdGgiOiJDTDR3amZwUm1OZi1iZFlJYllMblY5ZDVyTUFSR3dLWUUxMHdVd\ +3pDMGpJIiwiYXVkIjoiaHR0cHM6Ly9zZXJ2aWNlLmV4YW1wbGUuY29tL3BhdGgiLCJle\ +HAiOjE3Mjg2NTg2NzIsImlzcyI6IndpbXNlOi8vZXhhbXBsZS5jb20vc3BlY2lmaWMtd\ +29ya2xvYWQiLCJqdGkiOiI0YjQyYzVmNjExZTJiMWNmYTFkMmM0MWIzYTJmYjc4MiIsI\ +nd0aCI6Ii1KaThUbE1ORmszcW16bXBBeEJPXzdXLVl1dGNIXzJfZnVGQUZGU1YxUmcif\ +Q.jrUBsDjWMG_FpuhLo3lNC-IBeiPQXZ4UOuttPdNj8fRmIG4ZDFF9B10y7uGbiNIhbR\ +dpgG_KXEPLHXWnvzLmBA + +{"do stuff":"please"} \ No newline at end of file