2024-09-18 07:50:02 -04:00
|
|
|
// Package envelope provides functions that convert between wire-format
|
|
|
|
|
// encoding of a [UCAN] token's [Envelope] and the Go type representing
|
|
|
|
|
// a verified [TokenPayload].
|
|
|
|
|
//
|
|
|
|
|
// Encoding functions in this package require a private key as a
|
|
|
|
|
// parameter so the VarsigHeader can be set and so that a
|
|
|
|
|
// cryptographic signature can be generated.
|
|
|
|
|
//
|
|
|
|
|
// Decoding functions in this package likewise perform the signature
|
|
|
|
|
// verification using a public key extracted from the TokenPayload as
|
2024-09-24 06:46:48 -04:00
|
|
|
// described by requirement two below.
|
2024-09-18 07:50:02 -04:00
|
|
|
//
|
|
|
|
|
// Types that wish to be marshaled and unmarshaled from the using
|
|
|
|
|
// is package have two requirements.
|
|
|
|
|
//
|
|
|
|
|
// 1. The type must implement the Tokener interface.
|
|
|
|
|
//
|
|
|
|
|
// 2. The IPLD Representation of the type must include an "iss"
|
|
|
|
|
// field when the TokenPayload is extracted from the Envelope.
|
|
|
|
|
// This field must contain the string representation of a
|
|
|
|
|
// "did:key" so that a public key can be extracted from the
|
|
|
|
|
//
|
2024-09-18 08:22:28 -04:00
|
|
|
// [Envelope]:https://github.com/ucan-wg/spec#envelope
|
|
|
|
|
// [TokenPayload]: https://github.com/ucan-wg/spec#envelope
|
2024-09-18 07:50:02 -04:00
|
|
|
// [UCAN]: https://ucan.xyz
|
|
|
|
|
package envelope
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"errors"
|
2024-10-01 13:23:37 +02:00
|
|
|
"fmt"
|
2024-09-18 07:50:02 -04:00
|
|
|
"io"
|
2024-10-01 13:23:37 +02:00
|
|
|
"strings"
|
2024-09-18 07:50:02 -04:00
|
|
|
|
|
|
|
|
"github.com/ipld/go-ipld-prime"
|
|
|
|
|
"github.com/ipld/go-ipld-prime/codec"
|
|
|
|
|
"github.com/ipld/go-ipld-prime/codec/dagcbor"
|
|
|
|
|
"github.com/ipld/go-ipld-prime/codec/dagjson"
|
|
|
|
|
"github.com/ipld/go-ipld-prime/datamodel"
|
|
|
|
|
"github.com/ipld/go-ipld-prime/fluent/qp"
|
|
|
|
|
"github.com/ipld/go-ipld-prime/node/basicnode"
|
|
|
|
|
"github.com/ipld/go-ipld-prime/node/bindnode"
|
|
|
|
|
"github.com/ipld/go-ipld-prime/schema"
|
|
|
|
|
"github.com/libp2p/go-libp2p/core/crypto"
|
2024-09-24 13:03:35 +02:00
|
|
|
|
2024-09-18 07:50:02 -04:00
|
|
|
"github.com/ucan-wg/go-ucan/did"
|
2024-10-01 17:02:49 +02:00
|
|
|
"github.com/ucan-wg/go-ucan/token/internal/varsig"
|
2024-09-18 07:50:02 -04:00
|
|
|
)
|
|
|
|
|
|
2024-09-30 09:58:08 -04:00
|
|
|
const (
|
|
|
|
|
VarsigHeaderKey = "h"
|
|
|
|
|
UCANTagPrefix = "ucan/"
|
|
|
|
|
)
|
2024-09-18 12:12:44 -04:00
|
|
|
|
2024-09-18 08:22:28 -04:00
|
|
|
// Tokener must be implemented by types that wish to be enclosed in a
|
|
|
|
|
// UCAN Envelope (presumbably one of the UCAN token types).
|
2024-09-18 07:50:02 -04:00
|
|
|
type Tokener interface {
|
2024-09-18 08:22:28 -04:00
|
|
|
// Prototype provides the schema representation for an IPLD type so
|
|
|
|
|
// that the incoming datamodel.Kinds can be mapped to the appropriate
|
|
|
|
|
// schema.Kinds.
|
2024-09-18 07:50:02 -04:00
|
|
|
Prototype() schema.TypedPrototype
|
2024-09-18 08:22:28 -04:00
|
|
|
|
|
|
|
|
// Tag returns the expected key denoting the name of the IPLD node
|
|
|
|
|
// that should be processed as the token payload while decoding
|
|
|
|
|
// incoming bytes.
|
2024-09-18 07:50:02 -04:00
|
|
|
Tag() string
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Decode unmarshals the input data using the format specified by the
|
|
|
|
|
// provided codec.Decoder into a Tokener.
|
|
|
|
|
//
|
|
|
|
|
// An error is returned if the conversion fails, or if the resulting
|
|
|
|
|
// Tokener is invalid.
|
2024-09-24 06:46:48 -04:00
|
|
|
func Decode[T Tokener](b []byte, decFn codec.Decoder) (T, error) {
|
2024-09-18 07:50:02 -04:00
|
|
|
node, err := ipld.Decode(b, decFn)
|
|
|
|
|
if err != nil {
|
2024-09-24 06:46:48 -04:00
|
|
|
return *new(T), err
|
2024-09-18 07:50:02 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return FromIPLD[T](node)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// DecodeReader is the same as Decode, but accept an io.Reader.
|
2024-09-24 06:46:48 -04:00
|
|
|
func DecodeReader[T Tokener](r io.Reader, decFn codec.Decoder) (T, error) {
|
2024-09-18 07:50:02 -04:00
|
|
|
node, err := ipld.DecodeStreaming(r, decFn)
|
|
|
|
|
if err != nil {
|
2024-09-24 06:46:48 -04:00
|
|
|
return *new(T), err
|
2024-09-18 07:50:02 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return FromIPLD[T](node)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// FromDagCbor unmarshals the input data into a Tokener.
|
|
|
|
|
//
|
|
|
|
|
// An error is returned if the conversion fails, or if the resulting
|
|
|
|
|
// Tokener is invalid.
|
2024-09-24 06:46:48 -04:00
|
|
|
func FromDagCbor[T Tokener](b []byte) (T, error) {
|
2024-10-01 14:17:02 +02:00
|
|
|
return Decode[T](b, dagcbor.Decode)
|
2024-09-18 07:50:02 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// FromDagCborReader is the same as FromDagCbor, but accept an io.Reader.
|
2024-09-24 06:46:48 -04:00
|
|
|
func FromDagCborReader[T Tokener](r io.Reader) (T, error) {
|
2024-09-18 07:50:02 -04:00
|
|
|
return DecodeReader[T](r, dagcbor.Decode)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// FromDagJson unmarshals the input data into a Tokener.
|
|
|
|
|
//
|
|
|
|
|
// An error is returned if the conversion fails, or if the resulting
|
|
|
|
|
// Tokener is invalid.
|
2024-09-24 06:46:48 -04:00
|
|
|
func FromDagJson[T Tokener](b []byte) (T, error) {
|
2024-09-18 07:50:02 -04:00
|
|
|
return Decode[T](b, dagjson.Decode)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// FromDagJsonReader is the same as FromDagJson, but accept an io.Reader.
|
2024-09-24 06:46:48 -04:00
|
|
|
func FromDagJsonReader[T Tokener](r io.Reader) (T, error) {
|
2024-09-18 07:50:02 -04:00
|
|
|
return DecodeReader[T](r, dagjson.Decode)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// FromIPLD unwraps a Tokener from the provided IPLD datamodel.Node.
|
|
|
|
|
//
|
|
|
|
|
// An error is returned if the conversion fails, or if the resulting
|
|
|
|
|
// Tokener is invalid.
|
2024-09-24 06:46:48 -04:00
|
|
|
func FromIPLD[T Tokener](node datamodel.Node) (T, error) {
|
2024-10-01 13:23:37 +02:00
|
|
|
zero := *new(T)
|
2024-09-19 13:29:33 -04:00
|
|
|
|
2024-10-01 14:17:02 +02:00
|
|
|
info, err := Inspect(node)
|
2024-09-19 13:29:33 -04:00
|
|
|
if err != nil {
|
2024-10-01 13:23:37 +02:00
|
|
|
return zero, err
|
2024-09-19 13:29:33 -04:00
|
|
|
}
|
|
|
|
|
|
2024-10-01 13:23:37 +02:00
|
|
|
if info.Tag != zero.Tag() {
|
|
|
|
|
return zero, errors.New("data doesn't match the expected type")
|
|
|
|
|
}
|
|
|
|
|
|
2024-09-24 13:03:35 +02:00
|
|
|
// This needs to be done before converting this node to its schema
|
2024-09-18 07:50:02 -04:00
|
|
|
// representation (afterwards, the field might be renamed os it's safer
|
|
|
|
|
// to use the wire name).
|
2024-10-01 14:25:07 +02:00
|
|
|
issuerNode, err := info.tokenPayloadNode.LookupByString("iss")
|
2024-09-18 07:50:02 -04:00
|
|
|
if err != nil {
|
2024-10-01 13:23:37 +02:00
|
|
|
return zero, err
|
2024-09-18 07:50:02 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Replaces the datamodel.Node in tokenPayloadNode with a
|
|
|
|
|
// schema.TypedNode so that we can cast it to a *token.Token after
|
|
|
|
|
// unwrapping it.
|
2024-10-01 13:23:37 +02:00
|
|
|
nb := zero.Prototype().Representation().NewBuilder()
|
2024-09-18 07:50:02 -04:00
|
|
|
|
2024-10-01 14:25:07 +02:00
|
|
|
err = nb.AssignNode(info.tokenPayloadNode)
|
2024-09-18 07:50:02 -04:00
|
|
|
if err != nil {
|
2024-10-01 13:23:37 +02:00
|
|
|
return zero, err
|
2024-09-18 07:50:02 -04:00
|
|
|
}
|
|
|
|
|
|
2024-10-01 14:25:07 +02:00
|
|
|
tokenPayloadNode := nb.Build()
|
2024-09-18 07:50:02 -04:00
|
|
|
|
|
|
|
|
tokenPayload := bindnode.Unwrap(tokenPayloadNode)
|
|
|
|
|
if tokenPayload == nil {
|
2024-10-01 13:23:37 +02:00
|
|
|
return zero, errors.New("failed to Unwrap the TokenPayload")
|
2024-09-18 07:50:02 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
tkn, ok := tokenPayload.(T)
|
|
|
|
|
if !ok {
|
2024-10-01 13:23:37 +02:00
|
|
|
return zero, errors.New("failed to assert the TokenPayload type as *token.Token")
|
2024-09-18 07:50:02 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check that the issuer's DID contains a public key with a type that
|
|
|
|
|
// matches the VarsigHeader and then verify the SigPayload.
|
|
|
|
|
issuer, err := issuerNode.AsString()
|
|
|
|
|
if err != nil {
|
2024-10-01 13:23:37 +02:00
|
|
|
return zero, err
|
2024-09-18 07:50:02 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
issuerDID, err := did.Parse(issuer)
|
|
|
|
|
if err != nil {
|
2024-10-01 13:23:37 +02:00
|
|
|
return zero, err
|
2024-09-18 07:50:02 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
issuerPubKey, err := issuerDID.PubKey()
|
|
|
|
|
if err != nil {
|
2024-10-01 13:23:37 +02:00
|
|
|
return zero, err
|
2024-09-18 07:50:02 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
issuerVarsigHeader, err := varsig.Encode(issuerPubKey.Type())
|
|
|
|
|
if err != nil {
|
2024-10-01 13:23:37 +02:00
|
|
|
return zero, err
|
2024-09-18 07:50:02 -04:00
|
|
|
}
|
|
|
|
|
|
2024-09-30 09:58:08 -04:00
|
|
|
if string(info.VarsigHeader) != string(issuerVarsigHeader) {
|
2024-10-01 13:23:37 +02:00
|
|
|
return zero, errors.New("the VarsigHeader key type doesn't match the issuer's key type")
|
2024-09-18 07:50:02 -04:00
|
|
|
}
|
|
|
|
|
|
2024-10-01 14:17:02 +02:00
|
|
|
data, err := ipld.Encode(info.sigPayloadNode, dagcbor.Encode)
|
2024-09-18 07:50:02 -04:00
|
|
|
if err != nil {
|
2024-10-01 13:23:37 +02:00
|
|
|
return zero, err
|
2024-09-18 07:50:02 -04:00
|
|
|
}
|
|
|
|
|
|
2024-09-30 09:58:08 -04:00
|
|
|
ok, err = issuerPubKey.Verify(data, info.Signature)
|
2024-09-18 07:50:02 -04:00
|
|
|
if err != nil || !ok {
|
2024-10-01 13:23:37 +02:00
|
|
|
return zero, errors.New("failed to verify the token's signature")
|
2024-09-18 07:50:02 -04:00
|
|
|
}
|
|
|
|
|
|
2024-09-19 13:29:33 -04:00
|
|
|
return tkn, nil
|
2024-09-18 07:50:02 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Encode marshals a Tokener to the format specified by the provided
|
|
|
|
|
// codec.Encoder.
|
|
|
|
|
func Encode(privKey crypto.PrivKey, token Tokener, encFn codec.Encoder) ([]byte, error) {
|
|
|
|
|
node, err := ToIPLD(privKey, token)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return ipld.Encode(node, encFn)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// EncodeWriter is the same as Encode but outputs to an io.Writer instead
|
|
|
|
|
// of encoding into a []byte.
|
|
|
|
|
func EncodeWriter(w io.Writer, privKey crypto.PrivKey, token Tokener, encFn codec.Encoder) error {
|
|
|
|
|
node, err := ToIPLD(privKey, token)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return ipld.EncodeStreaming(w, node, encFn)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// ToDagCbor marshals the Tokener to the DAG-CBOR format.
|
|
|
|
|
func ToDagCbor(privKey crypto.PrivKey, token Tokener) ([]byte, error) {
|
|
|
|
|
return Encode(privKey, token, dagcbor.Encode)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// ToDagCborWriter is the same as ToDagCbor but outputs to an io.Writer
|
|
|
|
|
// instead of encoding into a []byte.
|
|
|
|
|
func ToDagCborWriter(w io.Writer, privKey crypto.PrivKey, token Tokener) error {
|
|
|
|
|
return EncodeWriter(w, privKey, token, dagcbor.Encode)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// ToDagJson marshals the Tokener to the DAG-JSON format.
|
|
|
|
|
func ToDagJson(privKey crypto.PrivKey, token Tokener) ([]byte, error) {
|
|
|
|
|
return Encode(privKey, token, dagjson.Encode)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// ToDagJsonWriter is the same as ToDagJson but outputs to an io.Writer
|
|
|
|
|
// instead of encoding into a []byte.
|
|
|
|
|
func ToDagJsonWriter(w io.Writer, privKey crypto.PrivKey, token Tokener) error {
|
|
|
|
|
return EncodeWriter(w, privKey, token, dagjson.Encode)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// ToIPLD wraps the Tokener in an IPLD datamodel.Node.
|
|
|
|
|
func ToIPLD(privKey crypto.PrivKey, token Tokener) (datamodel.Node, error) {
|
|
|
|
|
tokenPayloadNode := bindnode.Wrap(token, token.Prototype().Type()).Representation()
|
|
|
|
|
|
|
|
|
|
varsigHeader, err := varsig.Encode(privKey.Type())
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
sigPayloadNode, err := qp.BuildMap(basicnode.Prototype.Any, 2, func(ma datamodel.MapAssembler) {
|
2024-09-30 09:58:08 -04:00
|
|
|
qp.MapEntry(ma, VarsigHeaderKey, qp.Bytes(varsigHeader))
|
2024-09-18 07:50:02 -04:00
|
|
|
qp.MapEntry(ma, token.Tag(), qp.Node(tokenPayloadNode))
|
|
|
|
|
})
|
|
|
|
|
|
|
|
|
|
data, err := ipld.Encode(sigPayloadNode, dagcbor.Encode)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
signature, err := privKey.Sign(data)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return qp.BuildList(basicnode.Prototype.Any, 2, func(la datamodel.ListAssembler) {
|
|
|
|
|
qp.ListEntry(la, qp.Bytes(signature))
|
|
|
|
|
qp.ListEntry(la, qp.Node(sigPayloadNode))
|
|
|
|
|
})
|
|
|
|
|
}
|
2024-09-30 09:58:08 -04:00
|
|
|
|
2024-10-01 14:25:07 +02:00
|
|
|
// FindTag inspects the given token IPLD representation and extract the token tag.
|
2024-10-01 13:23:37 +02:00
|
|
|
func FindTag(node datamodel.Node) (string, error) {
|
|
|
|
|
sigPayloadNode, err := node.LookupByIndex(1)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return "", err
|
|
|
|
|
}
|
|
|
|
|
|
2024-10-01 14:25:07 +02:00
|
|
|
if sigPayloadNode.Kind() != datamodel.Kind_Map {
|
|
|
|
|
return "", fmt.Errorf("unexpected type instead of map")
|
|
|
|
|
}
|
|
|
|
|
|
2024-10-01 13:23:37 +02:00
|
|
|
it := sigPayloadNode.MapIterator()
|
|
|
|
|
i := 0
|
|
|
|
|
|
|
|
|
|
for !it.Done() {
|
|
|
|
|
if i >= 2 {
|
|
|
|
|
return "", fmt.Errorf("expected two and only two fields in SigPayload")
|
|
|
|
|
}
|
|
|
|
|
i++
|
|
|
|
|
|
|
|
|
|
k, _, err := it.Next()
|
|
|
|
|
if err != nil {
|
|
|
|
|
return "", err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
key, err := k.AsString()
|
|
|
|
|
if err != nil {
|
|
|
|
|
return "", err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if strings.HasPrefix(key, UCANTagPrefix) {
|
|
|
|
|
return key, nil
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return "", fmt.Errorf("no token tag found")
|
|
|
|
|
}
|
|
|
|
|
|
2024-10-01 14:17:02 +02:00
|
|
|
type Info struct {
|
2024-10-01 14:25:07 +02:00
|
|
|
Tag string
|
|
|
|
|
Signature []byte
|
|
|
|
|
VarsigHeader []byte
|
|
|
|
|
sigPayloadNode datamodel.Node // private, we don't want to expose that
|
|
|
|
|
tokenPayloadNode datamodel.Node // private, we don't want to expose that
|
2024-09-30 09:58:08 -04:00
|
|
|
}
|
|
|
|
|
|
2024-10-01 14:25:07 +02:00
|
|
|
// Inspect inspects the given token IPLD representation and extract some envelope facts.
|
2024-10-01 14:17:02 +02:00
|
|
|
func Inspect(node datamodel.Node) (Info, error) {
|
|
|
|
|
var res Info
|
2024-09-30 09:58:08 -04:00
|
|
|
|
|
|
|
|
signatureNode, err := node.LookupByIndex(0)
|
|
|
|
|
if err != nil {
|
2024-10-01 14:17:02 +02:00
|
|
|
return Info{}, err
|
2024-09-30 09:58:08 -04:00
|
|
|
}
|
|
|
|
|
|
2024-10-01 13:23:37 +02:00
|
|
|
res.Signature, err = signatureNode.AsBytes()
|
2024-09-30 09:58:08 -04:00
|
|
|
if err != nil {
|
2024-10-01 14:17:02 +02:00
|
|
|
return Info{}, err
|
2024-09-30 09:58:08 -04:00
|
|
|
}
|
|
|
|
|
|
2024-10-01 14:17:02 +02:00
|
|
|
res.sigPayloadNode, err = node.LookupByIndex(1)
|
2024-09-30 09:58:08 -04:00
|
|
|
if err != nil {
|
2024-10-01 14:17:02 +02:00
|
|
|
return Info{}, err
|
2024-09-30 09:58:08 -04:00
|
|
|
}
|
|
|
|
|
|
2024-10-01 14:25:07 +02:00
|
|
|
if res.sigPayloadNode.Kind() != datamodel.Kind_Map {
|
|
|
|
|
return Info{}, fmt.Errorf("unexpected type instead of map")
|
|
|
|
|
}
|
|
|
|
|
|
2024-10-01 14:17:02 +02:00
|
|
|
it := res.sigPayloadNode.MapIterator()
|
2024-10-01 13:23:37 +02:00
|
|
|
foundVarsigHeader := false
|
|
|
|
|
foundTokenPayload := false
|
|
|
|
|
i := 0
|
|
|
|
|
|
|
|
|
|
for !it.Done() {
|
|
|
|
|
if i >= 2 {
|
2024-10-01 14:17:02 +02:00
|
|
|
return Info{}, fmt.Errorf("expected two and only two fields in SigPayload")
|
2024-10-01 13:23:37 +02:00
|
|
|
}
|
|
|
|
|
i++
|
|
|
|
|
|
|
|
|
|
k, v, err := it.Next()
|
|
|
|
|
if err != nil {
|
2024-10-01 14:17:02 +02:00
|
|
|
return Info{}, err
|
2024-10-01 13:23:37 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
key, err := k.AsString()
|
|
|
|
|
if err != nil {
|
2024-10-01 14:17:02 +02:00
|
|
|
return Info{}, err
|
2024-10-01 13:23:37 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
switch {
|
|
|
|
|
case key == VarsigHeaderKey:
|
|
|
|
|
foundVarsigHeader = true
|
|
|
|
|
res.VarsigHeader, err = v.AsBytes()
|
|
|
|
|
if err != nil {
|
2024-10-01 14:17:02 +02:00
|
|
|
return Info{}, err
|
2024-10-01 13:23:37 +02:00
|
|
|
}
|
|
|
|
|
case strings.HasPrefix(key, UCANTagPrefix):
|
|
|
|
|
foundTokenPayload = true
|
|
|
|
|
res.Tag = key
|
2024-10-01 14:25:07 +02:00
|
|
|
res.tokenPayloadNode = v
|
2024-10-01 13:23:37 +02:00
|
|
|
default:
|
2024-10-01 14:17:02 +02:00
|
|
|
return Info{}, fmt.Errorf("unexpected key type %q", key)
|
2024-10-01 13:23:37 +02:00
|
|
|
}
|
2024-09-30 09:58:08 -04:00
|
|
|
}
|
2024-10-01 13:23:37 +02:00
|
|
|
|
|
|
|
|
if i != 2 {
|
2024-10-01 14:17:02 +02:00
|
|
|
return Info{}, fmt.Errorf("expected two and only two fields in SigPayload: %d", i)
|
2024-10-01 13:23:37 +02:00
|
|
|
}
|
|
|
|
|
if !foundVarsigHeader {
|
2024-10-01 14:17:02 +02:00
|
|
|
return Info{}, errors.New("failed to find VarsigHeader field")
|
2024-10-01 13:23:37 +02:00
|
|
|
}
|
|
|
|
|
if !foundTokenPayload {
|
2024-10-01 14:17:02 +02:00
|
|
|
return Info{}, errors.New("failed to find TokenPayload field")
|
2024-09-30 09:58:08 -04:00
|
|
|
}
|
|
|
|
|
|
2024-10-01 13:23:37 +02:00
|
|
|
return res, nil
|
2024-09-30 09:58:08 -04:00
|
|
|
}
|
