class JWT::JWA::Hmac
Implementation of the HMAC family of algorithms
Attributes
Public Class Methods
Source
# File lib/jwt/jwa/hmac.rb, line 9 def self.from_algorithm(algorithm) new(algorithm, OpenSSL::Digest.new(algorithm.downcase.gsub('hs', 'sha'))) end
Source
# File lib/jwt/jwa/hmac.rb, line 13 def initialize(alg, digest) @alg = alg @digest = digest end
Public Instance Methods
Source
# File lib/jwt/jwa/hmac.rb, line 18 def sign(data:, signing_key:) signing_key ||= '' raise_verify_error!('HMAC key expected to be a String') unless signing_key.is_a?(String) OpenSSL::HMAC.digest(digest.new, signing_key, data) rescue OpenSSL::HMACError => e raise_verify_error!('OpenSSL 3.0 does not support nil or empty hmac_secret') if signing_key == '' && e.message == 'EVP_PKEY_new_mac_key: malloc failure' raise e end
Source
# File lib/jwt/jwa/hmac.rb, line 29 def verify(data:, signature:, verification_key:) SecurityUtils.secure_compare(signature, sign(data: data, signing_key: verification_key)) end