uniworx/oauth2-mock-server
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

flipped token encoding/decoding keys

Browse Source
This commit is contained in:
David Mosbach 2024-01-10 16:12:44 +00:00
parent c68bf943f3
commit 6e26ff0403
1 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
src/Server.hs
View File

@ -217,12 +217,12 @@ tokenEndpoint = provideToken
mkToken :: AuthState -> IO JWTWrapper mkToken :: AuthState -> IO JWTWrapper
mkToken state = do mkToken state = do
privateKey <- atomically $ readTVar state >>= return . privateKey pubKey <- atomically $ readTVar state >>= return . publicKey
now <- getCurrentTime now <- getCurrentTime
let let
lifetime = nominalDay / 4 -- TODO make configurable lifetime = nominalDay / 4 -- TODO make configurable
jwt = JWT "Oauth2MockServer" (lifetime `addUTCTime` now) jwt = JWT "Oauth2MockServer" (lifetime `addUTCTime` now)
encoded <- jwkEncode RSA_OAEP_256 A128GCM privateKey (Nested . Jwt . toStrict $ encode jwt) encoded <- jwkEncode RSA_OAEP_256 A128GCM pubKey (Nested . Jwt . toStrict $ encode jwt)
case encoded of case encoded of
Right (Jwt token) -> return $ JWTW (BS.unpack token) lifetime Right (Jwt token) -> return $ JWTW (BS.unpack token) lifetime
Left e -> error $ show e Left e -> error $ show e
@ -265,8 +265,8 @@ userEndpoint = handleUserData
decodeToken :: Text -> AuthState -> IO (Either JwtError JwtContent) decodeToken :: Text -> AuthState -> IO (Either JwtError JwtContent)
decodeToken token state = do decodeToken token state = do
pubKey <- atomically $ readTVar state >>= return . publicKey prKey <- atomically $ readTVar state >>= return . privateKey
jwkDecode pubKey $ encodeUtf8 token jwkDecode prKey $ encodeUtf8 token
userListEndpoint :: forall user userData . UserData user userData => AuthServer (UserList userData) userListEndpoint :: forall user userData . UserData user userData => AuthServer (UserList userData)
userListEndpoint = handleUserData userListEndpoint = handleUserData