michael/jsonwebtoken
michael
/
jsonwebtoken
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Add note about encoding keys (#163) 

* Add note about encoding keys

* Update encoding.rs

* Format code
This commit is contained in:
Arniu Tseng 2020-12-07 23:00:44 +08:00 committed by GitHub
parent 90b9700748
commit 2f25cbed0a
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 17 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

17
src/encoding.rs
View File

@ -29,6 +29,12 @@ impl EncodingKey {
/// If you are loading a RSA key from a .pem file.
/// This errors if the key is not a valid RSA key.
///
/// # NOTE
///
/// According to the [ring doc](https://briansmith.org/rustdoc/ring/signature/struct.RsaKeyPair.html#method.from_pkcs8),
/// the key should be at least 2047 bits.
///
pub fn from_rsa_pem(key: &[u8]) -> Result<Self> {
let pem_key = PemEncodedKey::new(key)?;
let content = pem_key.as_rsa_key()?;
@ -37,6 +43,17 @@ impl EncodingKey {
/// If you are loading a ECDSA key from a .pem file
/// This errors if the key is not a valid private EC key
///
/// # NOTE
///
/// The key should be in PKCS#8 form.
///
/// You can generate a key with the following:
///
/// ```sh
/// openssl ecparam -genkey -noout -name prime256v1 \
/// | openssl pkcs8 -topk8 -nocrypt -out ec-private.pem
/// ```
pub fn from_ec_pem(key: &[u8]) -> Result<Self> {
let pem_key = PemEncodedKey::new(key)?;
let content = pem_key.as_ec_private_key()?;