jwt-aws-kms 1.0.0 → 1.1.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 13309417bcacef146c8de8889e0c7d2cee14c8b19d50257f212964bb25af2067
-  data.tar.gz: f00ad6f098b8b95ed5098fabc8eabfd21461777234e3c50a0368adb1d48ee565
+  metadata.gz: e64c3474f2ea542d27a5fa1ab387eb8f2e7a0062b5c7b44150a6cc6fa893f7b1
+  data.tar.gz: 051aa376be6287c1f9de6af10b367f371c5b2598971178d9b2c6f8e8825e8e3a
 SHA512:
-  metadata.gz: 1d9fa5aa566d3f6f27a9c102a313e47ff3a01753f891ac04b860aa6ed3af07ccc3540039c8224a9c8d7ee267e1ee8430facd0b5540fafab285533be0d08e398f
-  data.tar.gz: 2c0969e4d242a45b266d9edad30ef24ad2794f5def3b46ba180dca1f6e07a5a8bb4a19d1572844e40d023c51e247318aa9d9b2dea4f5032385ae712d4f3bbb0a
+  metadata.gz: e4a06791919ae10552641fbd2d75dd065b54aa3245ecf6d7f58fc3017d39b17eeac981466262d4d4e2050996b929cabe28844f83fab11f4e85a445758d0b1b59
+  data.tar.gz: 345f064a775dbbad68863973ba056eea89dc6b524c11669ca9bf5727a2267538a64faf702545d80674ea2d5236c27a1877964dcd52bf51e03a8150943a528da0

data/.release-please-manifest.json

@@ -1,3 +1,3 @@
 {
-  ".": "1.0.0"
+  ".": "1.1.0"
 }

data/CHANGELOG.md

@@ -1,5 +1,12 @@
 # Changelog
 
+## [1.1.0](https://github.com/anakinj/jwt-aws-kms/compare/v1.0.0...v1.1.0) (2024-09-28)
+
+
+### Features
+
+* Allow replacing default algorithms with AWS KMS versions ([#7](https://github.com/anakinj/jwt-aws-kms/issues/7)) ([d6cfe4f](https://github.com/anakinj/jwt-aws-kms/commit/d6cfe4f9bb0ec23daaee771e8692a4410aef393e))
+
 ## [1.0.0](https://github.com/anakinj/jwt-aws-kms/compare/v0.6.0...v1.0.0) (2024-09-28)
 
 

data/README.md

@@ -15,9 +15,25 @@ And require the gem in your code.
 ```ruby
 require `jwt-aws-kms`
 ```
+## Supported algorithms
+
+The gem supports the following AWS KMS algorithms:
+
+| Algorithm Name | Description                                      | JWA Name |
+|----------------|--------------------------------------------------|-------------------------|
+| RSASSA_PKCS1_V1_5_SHA_256 | RSASSA PKCS1 v1.5 using SHA-256       | RS256                   |
+| RSASSA_PKCS1_V1_5_SHA_384 | RSASSA PKCS1 v1.5 using SHA-384       | RS384                   |
+| RSASSA_PKCS1_V1_5_SHA_512 | RSASSA PKCS1 v1.5 using SHA-512       | RS512                   |
+| RSASSA_PSS_SHA_256 | RSASSA PSS using SHA-256                     | PS256                   |
+| RSASSA_PSS_SHA_384 | RSASSA PSS using SHA-384                     | PS384                   |
+| RSASSA_PSS_SHA_512 | RSASSA PSS using SHA-512                     | PS512                   |
+| ECDSA_SHA_256 | ECDSA using P-256 and SHA-256                     | ES256                   |
+| ECDSA_SHA_384 | ECDSA using P-384 and SHA-384                     | ES384                   |
+| ECDSA_SHA_512 | ECDSA using P-521 and SHA-512                     | ES512                   |
 
 ## Usage
 
+### Basic usage
 ```ruby
 
 # Create a key, for example with the ruby AWS SDK
@@ -28,22 +44,15 @@ algo = ::JWT::Aws::KMS.for(algorithm: "HS512")
 token = JWT.encode(payload, key.key_metadata.key_id, algo)
 decoded_token = JWT.decode(token, key.key_metadata.key_id, true, algorithm: algo)
 ```
+### Replace default algorithms
 
-## Supported algorithms
+You can swap the default algorithms in the JWT gem to AWS backed ones by calling `::JWT::Aws::KMS.replace_defaults!`.
 
-The gem supports the following AWS KMS algorithms:
+```ruby
+::JWT::Aws::KMS.replace_defaults! # Called in a initializer of some kind
 
-| Algorithm Name | Description                                      | JWA Name |
-|----------------|--------------------------------------------------|-------------------------|
-| RSASSA_PKCS1_V1_5_SHA_256 | RSASSA PKCS1 v1.5 using SHA-256       | RS256                   |
-| RSASSA_PKCS1_V1_5_SHA_384 | RSASSA PKCS1 v1.5 using SHA-384       | RS384                   |
-| RSASSA_PKCS1_V1_5_SHA_512 | RSASSA PKCS1 v1.5 using SHA-512       | RS512                   |
-| RSASSA_PSS_SHA_256 | RSASSA PSS using SHA-256                     | PS256                   |
-| RSASSA_PSS_SHA_384 | RSASSA PSS using SHA-384                     | PS384                   |
-| RSASSA_PSS_SHA_512 | RSASSA PSS using SHA-512                     | PS512                   |
-| ECDSA_SHA_256 | ECDSA using P-256 and SHA-256                     | ES256                   |
-| ECDSA_SHA_384 | ECDSA using P-384 and SHA-384                     | ES384                   |
-| ECDSA_SHA_512 | ECDSA using P-521 and SHA-512                     | ES512                   |
+token = JWT.encode(payload, "e25c502b-a383-44ac-a778-0d97e8688cb7", "HS512") # Encode payload with KMS key e25c502b-a383-44ac-a778-0d97e8688cb7
+```
 
 ## Development
 

data/lib/jwt/aws/kms/version.rb

@@ -3,7 +3,7 @@
 module JWT
   module Aws
     module KMS
-      VERSION = "1.0.0"
+      VERSION = "1.1.0"
     end
   end
 end

data/lib/jwt/aws/kms.rb

@@ -25,6 +25,14 @@ module JWT
           raise ArgumentError, "Algorithm #{algorithm} not supported"
         end.new(algorithm: algorithm)
       end
+
+      def self.replace_defaults!
+        [HmacKey, SignVerifyKey].each do |type|
+          type::MAPPINGS.each_key do |algorithm|
+            type.register_algorithm(type.new(algorithm: algorithm))
+          end
+        end
+      end
     end
   end
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: jwt-aws-kms
 version: !ruby/object:Gem::Version
-  version: 1.0.0
+  version: 1.1.0
 platform: ruby
 authors:
 - Joakim Antman
@@ -66,7 +66,7 @@ metadata:
   allowed_push_host: https://rubygems.org
   homepage_uri: https://github.com/anakinj/jwt-aws-kms
   source_code_uri: https://github.com/anakinj/jwt-aws-kms
-  changelog_uri: https://github.com/anakinj/jwt-aws-kms/blob/v1.0.0/CHANGELOG.md
+  changelog_uri: https://github.com/anakinj/jwt-aws-kms/blob/v1.1.0/CHANGELOG.md
   rubygems_mfa_required: 'true'
 post_install_message: 
 rdoc_options: []