JWT decode
Jeffrey Ramsay
{"zip":"DEF","alg":"dir","enc":"A256GCM","cty":"JWT","typ":"JWT"}
Colin Ryan
I did this, it wasn't easy, possibly due to my lack of knowledge.
I combed through the CAS source code to find the bits involved an
simply emulated them as they are all to spec. workings.
I didn't see any directly exposed CAS API's for this they were
all internal.
I made extensive use of the jose4j library to deal with the JWT tokens etc etc.
https://bitbucket.org/b_c/jose4j/wiki/Home
Look around in the source for
CipherExecutor
EncodingUtils
for hints.
There are multiple layers (sorry can't remember the details). The JWT component itself has signature and hashes and then the JWT itself is additional encrypted before being stored in TOTP databases. Keep in mind that there are secrets involved that once shared expose every token.
Not sure if this was much help.
Colin
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+u...@apereo.org.
To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/CA%2BTBYOSO_RDcdt3OCezQ927d8VcDzfK0txvq9Oabc82Lj0tcFQ%40mail.gmail.com.
Jérôme LELEU
To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/f5d265ea-389d-acd1-7451-c95e2b994139%40caveo.ca.
Jeffrey Ramsay
To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAP279Lxz6C9NQR9_oCroB6YqyGidbRyCQKnyK3fzA7kP_oAZkg%40mail.gmail.com.