git Service of IN-Ulm e.V. Explore Help
Sign In
cbiedl
/
jose
1
0
Fork 0
Files
Tree: e132224489
Branches Tags
jose
/
doc
/
ronn
/
jose-jws-ver.1

jose-jws-ver.1 2.3 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106 
  1. .\" generated with Ronn/v0.7.3
    2. 

  2. .\" http://github.com/rtomayko/ronn/tree/0.7.3
    3. 

  3. .
    4. 

  4. .TH "JOSE\-JWS\-VER" "1" "May 2017" "" ""
    5. 

  5. .
    6. 

  6. .SH "NAME"
    7. 

  7. \fBjose\-jws\-ver\fR \- Verifies a JWS using the supplied JWKs
    8. 

  8. .
    9. 

  9. .SH "SYNOPSIS"
    10. 

  10. \fBjose jws ver\fR \-i JWS [\-I PAY] \-k JWK [\-a] [\-O PAY]
    11. 

  11. .
    12. 

  12. .SH "OVERVIEW"
    13. 

  13. The \fBjose jws ver\fR command verifies a signature over a payload using one or more JWKs\. When specifying more than one JWK (\fB\-k\fR), the program will succeed when any of the provided JWKs successfully verify a signature\. Alternatively, if the \fB\-a\fR option is given, the program will succeed only when all JWKs successfully verify a signature\.
    14. 

  14. .
    15. 

  15. .P
    16. 

  16. If the JWS is a detached JWS, meaning that the payload is stored in binary form external to the JWS itself, the payload can be loaded using the \fB\-I\fR parameter\.
    17. 

  17. .
    18. 

  18. .P
    19. 

  19. Please note that, when specifying the \fB\-O\fR option to output the payload, the payload is output whether or not the signature validates\. Therefore, you must check the return value of the command before trusting the data\.
    20. 

  20. .
    21. 

  21. .SH "OPTIONS"
    22. 

  22. .
    23. 

  23. .TP
    24. 

  24. \fB\-i\fR \fIJSON\fR, \fB\-\-input\fR=\fIJSON\fR
    25. 

  25. Parse JWS from JSON
    26. 

  26. .
    27. 

  27. .TP
    28. 

  28. \fB\-i\fR \fIFILE\fR, \fB\-\-input\fR=\fIFILE\fR
    29. 

  29. Read JWS from FILE
    30. 

  30. .
    31. 

  31. .TP
    32. 

  32. \fB\-i\fR \-, \fB\-\-input\fR=\-
    33. 

  33. Read JWS from standard input
    34. 

  34. .
    35. 

  35. .TP
    36. 

  36. \fB\-I\fR \fIFILE\fR, \fB\-\-detached\fR=\fIFILE\fR
    37. 

  37. Read decoded payload from FILE
    38. 

  38. .
    39. 

  39. .TP
    40. 

  40. \fB\-I\fR \-, \fB\-\-detached\fR=\-
    41. 

  41. Read decoded payload from standard input
    42. 

  42. .
    43. 

  43. .TP
    44. 

  44. \fB\-k\fR \fIFILE\fR, \fB\-\-key\fR=\fIFILE\fR
    45. 

  45. Read JWK(Set) from FILE
    46. 

  46. .
    47. 

  47. .TP
    48. 

  48. \fB\-k\fR \-, \fB\-\-key\fR=\-
    49. 

  49. Read JWK(Set) from standard input
    50. 

  50. .
    51. 

  51. .TP
    52. 

  52. \fB\-O\fR \fIFILE\fR, \fB\-\-detach\fR=\fIFILE\fR
    53. 

  53. Decode payload to FILE
    54. 

  54. .
    55. 

  55. .TP
    56. 

  56. \fB\-O\fR \-, \fB\-\-detach\fR=\-
    57. 

  57. Decode payload to standard output
    58. 

  58. .
    59. 

  59. .TP
    60. 

  60. \fB\-a\fR, \fB\-\-all\fR
    61. 

  61. Ensure the JWS validates with all keys
    62. 

  62. .
    63. 

  63. .SH "EXAMPLES"
    64. 

  64. Verify a regular JWS and output the payload:
    65. 

  65. .
    66. 

  66. .IP "" 4
    67. 

  67. .
    68. 

  68. .nf
    69. 

  69. 

  70. $ jose jws ver \-i msg\.jws \-k key\.jwk \-O msg\.txt
    71. 

  71. .
    72. 

  72. .fi
    73. 

  73. .
    74. 

  74. .IP "" 0
    75. 

  75. .
    76. 

  76. .P
    77. 

  77. Verify a detached JWS without outputting the payload:
    78. 

  78. .
    79. 

  79. .IP "" 4
    80. 

  80. .
    81. 

  81. .nf
    82. 

  82. 

  83. $ jose jws ver \-i msg\.jws \-I msg\.txt \-k key\.jwk
    84. 

  84. .
    85. 

  85. .fi
    86. 

  86. .
    87. 

  87. .IP "" 0
    88. 

  88. .
    89. 

  89. .P
    90. 

  90. Ensure that a JWS is signed with all specified keys:
    91. 

  91. .
    92. 

  92. .IP "" 4
    93. 

  93. .
    94. 

  94. .nf
    95. 

  95. 

  96. $ jose jws ver \-i msg\.jws \-k ec\.jwk \-k rsa\.jwk \-a
    97. 

  97. .
    98. 

  98. .fi
    99. 

  99. .
    100. 

  100. .IP "" 0
    101. 

  101. .
    102. 

  102. .SH "AUTHOR"
    103. 

  103. Nathaniel McCallum <npmccallum@redhat\.com>
    104. 

  104. .
    105. 

  105. .SH "SEE ALSO"
    106. 

  106. \fBjose\-jws\-fmt\fR(1), \fBjose\-jws\-sig\fR(1)
    107.