Comments (1)
After talking this over with @mrjoelkamp it seems like a potentially very nice solution for JTKs in compact representation is to put it in the GQ signed OP protected header.
When replacing the RSA signature with a GQ Signature, we create a new protected header that contains the original RSA protected header in kid. We could easily just add the jtk to the new GQ protected header.
The downside to this approach is that it only works for GQ signed PK Tokens. Maybe that is ok.
from openpubkey.
Related Issues (20)
- Create MockClient
- After solving PK Token Circular Depenencies remove duplicate testing helper function GenCIC
- Should we change `clientinstance.Claims` to support ZKP Commitments HOT 1
- Look into Release-Drafter for tracking releases in gha
- SignGQ and GQSign Confusion
- Add option in provider.Options to disable opening the browser
- JKT in GQ ID Token
- Docs on PK Token
- Move all tests over to testify/require HOT 4
- More Godoc on all public functions and structs HOT 5
- Should Non-GQ Signed PK Tokens set the JKT
- Find and fix spelling errors in comments
- Should client return PK Tokens by reference or value? HOT 4
- We should use algorithm from public key rather than alg from token in verification HOT 4
- Create an Expiration Policy for the Verifier
- Create a list and manage a list of all known repos that depend on OpenPubkey
- A better name for the openpubkey/oidc package HOT 11
- Refreshed ID Token Support in Cosigner
- Add Gitlab user OIDC OP
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from openpubkey.