Jwk (p.jws.0.0.2.doc.jws.Jws.Jwk)

Sourcetype p = [

| `RSA of Mirage_crypto_pk.Rsa.pub
| `P256 of Mirage_crypto_ec.P256.Dsa.pub
| `P384 of Mirage_crypto_ec.P384.Dsa.pub
| `P521 of Mirage_crypto_ec.P521.Dsa.pub
| `ED25519 of Mirage_crypto_ec.Ed25519.pub

]

Asymmetric public keys. This type is a subset of X509.Public_key.t: any X509.Public_key.t value whose algorithm is supported can be injected via of_public_key.

Sourcetype t = [

| p
| `Oct of string

]

Public keys and symmetric (oct) keys.

Sourceval encode : t -> string

encode key is the JSON serialization of key as a JWK.

Sourceval decode : string -> (t, [> `Msg of string ]) result

decode str parses a JWK from its JSON serialization. Returns a descriptive error when the JSON is malformed, the key type is unknown, or the key parameters are invalid.

Sourceval t : t Jsont.t

A Jsont.t codec for JWK values. Can be used with Jsont_bytesrw.decode_string or composed into larger Jsont descriptions.

Sourceval algorithm : t -> Jwa.t

algorithm p is the default Jwa.t algorithm for the given public key p.

Sourceval verify : ?alg:Jwa.t -> t -> string -> string -> bool

verify ?alg p data signature is true iff signature is a valid signature of data under the given public key p with algorithm alg (defaults to the default algorithm of the given p (see algorithm)).

raises Invalid_argument
if the given alg does not match the given public key p.

Sourceval of_public_key : [> p ] -> (t, [> `Msg of string ]) result

of_public_key pk converts an X509.Public_key.t value to a t. Fails if the key algorithm is not supported.

Sourceval of_public_key_exn : [> p ] -> t

of_public_key_exn p is like of_public_key but raises Invalid_argument on unsupported key types.

Sourceval signature : t -> string