Stack Overflow
Stack Overflow

Questions tagged [jose]

JOSE (Javascript Object Signing and Encryption) is a framework intended to provide a method to securely transfer claims (such as authorization information) between parties

JOSE (Javascript Object Signing and Encryption) is a framework intended to provide a method to securely transfer claims (such as authorization information) between parties

The JOSE framework provides a collection of specifications to serve this purpose. A JSON Web Token (JWT) contains claims that can be used to allow a system to apply access control to resources it owns.

One potential use case of the JWT is as the means of authentication and authorization for a system that exposes resources through an OAuth 2.0 model.

Official Website

131 questions
2
votes
0 answers

Can't use square/js-jose (jose-jwe-jws) npm package in Typescript and Webpack project

I'm trying to use the library in my project, based on Typescript targeting es6 and using commonjs modules. The final output is produced using Webpack and targeting the web platform. I've installed the dependency with npm install --save jose-jwe-jws…
tzorzan
  • 41
  • 3
2
votes
1 answer

How to invalidate cache of RemoteJWKSet in nimbus-jose-jwt

We are making use of RemoteJWKSet in nimbus-jose-jwt third party library for JWKS endpoint based JWT validation. With RemoteJWKSet, we can retrieve the JWKS from a remote endpoint and the retrieved JWK set is cached in order to to minimize network…
sathya
  • 523
  • 1
  • 4
  • 18
2
votes
1 answer

Protected Header JWS

I'm trying to understand this blog post about JOSE. In the part about JWS, it says the following: Including the public key in the protected header would not only give the server the ability the validate the signature, we will also be sure that…
aroooo
  • 4,726
  • 8
  • 47
  • 81
2
votes
1 answer

JOSE: Signature request

The JOSE standard introduces a signature (JWS) and encrypted data (JWE) which describe a data bundle, either signed or encrypted. However I cannot find a "request of signature" or "request of encryption" (it's possible to use JWE as request for…
LiraNuna
  • 64,916
  • 15
  • 117
  • 140
2
votes
0 answers

How to extract keys from a jks keystore in nodejs

A node application needs to be able to get different keys from a .jks keystore and use them to sign, verify, encrypt and decrypt JWE tokens. The node-keytool library allows me to load the keystore, but I can't use it as such in the node-jose library…
Asinus Rex
  • 535
  • 9
  • 29
2
votes
1 answer

How to decrypt a JWT with RSA private key

We have a remote application sending us a JWT. They used “RSA-OAEP-256” algorithm and “A256CBC-HS512” encryption and our public key to encode the token, and now I am trying to decrypt it and parse the claims. I generated the keys with openssl rsa…
thejames42
  • 447
  • 6
  • 22
2
votes
0 answers

JOSE_JS JWE The data that encrypted by javascript won't decrypt by go

Server side code for generating public key is: privateKey, err := rsa.GenerateKey(rand.Reader, 2048) if err != nil { return nil } publicKey := &privateKey.PublicKey publicKeyBytes, err :=…
Mohsen
  • 4,000
  • 8
  • 42
  • 73
1
vote
1 answer

" ModuleNotFoundError: No module named 'jose' " ; but it's already installed

Process SpawnProcess-9: Traceback (most recent call last): File "C:\Users\gveda\AppData\Local\Programs\Python\Python310\lib\multiprocessing\process.py", line 314, in _bootstrap self.run() File…
Vedant Gawande
  • 11
  • 2
1
vote
0 answers

Unity3d library being stripped on build to android

I'm working with unity3d and I need to encode a payload with JWT encryption and send it to a server. Have been using Jose library and everything works perfectly in unity3d editor, the problem starts when I compile to android, I get this…
mindblast6
  • 43
  • 1
  • 6
1
vote
0 answers

can i create a jwt with jwtwebtoken and then verify it with jose?

im using in my backend with jsonwebtoken to create jwt then i want in nextjs middleware in the front and to verify the token but jsonwebtoken not working in client render so can i use jose or any other library to verify this token or i must to…
Eilon Shamir
  • 11
  • 2
1
vote
0 answers

Any provider of signed financial data (SXG or JOSE)?

Do you know any financial data APIs supporting signed HTTP exchanges (SXG), JOSE/JWS/JWE or any other digitally signed format to provide verified financial data (stock market data)? The following researches gave no answer: HTTPS responses can't be…
quasiyoke
  • 709
  • 9
  • 21
1
vote
1 answer

Is it advisable to use the Express app.use() method call within an async callback?

My question begs a recommendation on best practice. I wrote a simple Express server that creates a JWT and sends it to the client whenever it (the client) hits an API route. I have kept the route handler in a separate module and exported it from…
Chizaram Igolo
  • 907
  • 8
  • 18
1
vote
1 answer

Asp.net C# JWT Decode with private key (.p12)

I need to decode the encryptedToken with private key file .p12.. For private key, I already assign in X509Certificate2 and calling with RSA privateKey = _x509private.GetRSAPrivateKey(); I am not using RSACryptoServiceProvider privateKey =…
Mary Franklin
  • 13
  • 4
1
vote
1 answer

How to get token from JWE Encrypt method of Jose Sdk

I am new in C# jose jwt. I have been using JWE.Encrypt() method. AnyJson anyJson = new AnyJson(); anyJson.page = 2; anyJson.filters = new Filters(); anyJson.filters.startDate = DateTime.Now.Date; anyJson.filters.endDate = DateTime.Now.Date; string…
Kryp2 Gemini
  • 11
  • 2
1
vote
1 answer

ReferenceError: Can't find variable: crypto in React Native

I'm using some auth node module in my react native application which is using jose as a dependency. I get the following error which I believe is due to the fact that in-build typescript/ node libraries are not supported by React native. ERROR …
Thamindu DJ
  • 1,679
  • 4
  • 16
  • 29
1 2
3
8 9