Class: JSON::LD::SIGNATURE::RsaSigner

Inherits:
Object
  • Object
show all
Defined in:
lib/json/ld/signature/rsaSigner.rb

Instance Attribute Summary collapse

Instance Method Summary collapse

Instance Attribute Details

#privObject 



14
15
16
 
# File 'lib/json/ld/signature/rsaSigner.rb', line 14

def priv
  @priv
end

#pubObject 



10
11
12
 
# File 'lib/json/ld/signature/rsaSigner.rb', line 10

def pub
  @pub
end

Instance Method Details

#sign(input, options = {}) ⇒ Object 



18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
 
# File 'lib/json/ld/signature/rsaSigner.rb', line 18

def sign(input, options = {} )
  
  # We require a creator to identify the signing key
  
  if options['creator'].nil?
    raise JsonLdSignatureError::MissingCreator, "the creator of the signature must be identified"
  end
  
  creator = options['creator']
  
  # TODO: Validate the resolvability of the URL?

  # We require a privateKeyPem in the options hash
#      if options['privateKeyPem'].nil?
#        raise JsonLdSignatureError::MissingKey, "options parameter must include privateKeyPem"
#      end

  # The privateKeyPem can be either a String or a parsed RSA key
#      privateKey = case options['privateKeyPem']
#      when String then OpenSSL::PKey::RSA.new options['privateKeyPem']
#      when OpenSSL::PKey::RSA then options['privateKeyPem']
#      else 
#        raise JsonLdSignatureError::InvalidKeyType, "key must be RSA Key or PEM String"
#      end
  privateKey = @priv

  unless privateKey.private?
    raise JsonLdSignatureError::WrongKeyType, "submitted key is a public key"
  end

  # Check the input, it should either be a String or a parsed JSON object

  jsonld = case input
  when String then 
  begin
      JSON.parse(input)        
    rescue JSON::ParserError => e
        raise JsonLdSignatureError::InvalidJsonLdDocument, e.message
  end 
  when Hash then input
  else
    raise JsonLdSignatureError::InvalidJsonLdDocument
  end
  
  jsonld.delete 'signature'
#      created = Time.now.iso8601
  created = "2018-03-15T00:00:00Z"
  nonce = options['nonce']
  domain = options['domain']
        
  normOpts = {
    'nonce' => nonce,
    'domain' => options['domain'],
    'created' => created,
    'creator' => creator
  }
  
  normalizedGraph = JSON::LD::SIGNATURE::generateNormalizedGraph jsonld, normOpts
  
  digest = OpenSSL::Digest::SHA256.new
  signature = privateKey.sign digest, normalizedGraph
  enc = Base64.strict_encode64(signature)
  
   # "@context" : "https://w3id.org/security/v1",

  sigobj = JSON.parse %({
    "type" : "RsaSignature2017",
    "creator" : "#{creator}",
    "created" : "#{created}",
    "signatureValue" : "#{enc}"
  })
  
  sigobj['domain'] = domain unless options['domain'].nil?
  sigobj['nonce'] = nonce unless nonce.nil?
  
  jsonld['signature'] = sigobj
  jsonld.to_json
end