RubyGems - jwt - Versions diffs - 2.9.3 → 3.1.2 - Mend

jwt 2.9.3 → 3.1.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (59) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +108 -47
data/CODE_OF_CONDUCT.md +14 -14
data/CONTRIBUTING.md +9 -10
data/README.md +273 -234
data/UPGRADING.md +47 -0
data/lib/jwt/base64.rb +4 -10
data/lib/jwt/claims/audience.rb +10 -0
data/lib/jwt/claims/crit.rb +35 -0
data/lib/jwt/claims/decode_verifier.rb +3 -3
data/lib/jwt/claims/expiration.rb +10 -0
data/lib/jwt/claims/issued_at.rb +7 -0
data/lib/jwt/claims/issuer.rb +10 -0
data/lib/jwt/claims/jwt_id.rb +10 -0
data/lib/jwt/claims/not_before.rb +10 -0
data/lib/jwt/claims/numeric.rb +9 -19
data/lib/jwt/claims/required.rb +10 -0
data/lib/jwt/claims/subject.rb +10 -0
data/lib/jwt/claims/verifier.rb +6 -7
data/lib/jwt/claims.rb +4 -19
data/lib/jwt/configuration/container.rb +20 -1
data/lib/jwt/configuration/decode_configuration.rb +24 -0
data/lib/jwt/configuration/jwk_configuration.rb +1 -0
data/lib/jwt/configuration.rb +8 -0
data/lib/jwt/decode.rb +42 -79
data/lib/jwt/encode.rb +17 -56
data/lib/jwt/encoded_token.rb +236 -0
data/lib/jwt/error.rb +32 -1
data/lib/jwt/json.rb +1 -1
data/lib/jwt/jwa/ecdsa.rb +31 -13
data/lib/jwt/jwa/hmac.rb +2 -7
data/lib/jwt/jwa/none.rb +1 -0
data/lib/jwt/jwa/ps.rb +3 -3
data/lib/jwt/jwa/rsa.rb +6 -6
data/lib/jwt/jwa/signing_algorithm.rb +3 -1
data/lib/jwt/jwa/unsupported.rb +1 -0
data/lib/jwt/jwa.rb +77 -24
data/lib/jwt/jwk/ec.rb +54 -65
data/lib/jwt/jwk/hmac.rb +5 -6
data/lib/jwt/jwk/key_base.rb +16 -1
data/lib/jwt/jwk/key_finder.rb +35 -8
data/lib/jwt/jwk/kid_as_key_digest.rb +1 -0
data/lib/jwt/jwk/rsa.rb +7 -4
data/lib/jwt/jwk/set.rb +2 -0
data/lib/jwt/jwk.rb +1 -1
data/lib/jwt/token.rb +131 -0
data/lib/jwt/version.rb +24 -19
data/lib/jwt.rb +17 -7
data/ruby-jwt.gemspec +2 -0
metadata +36 -16
data/lib/jwt/claims_validator.rb +0 -16
data/lib/jwt/deprecations.rb +0 -48
data/lib/jwt/jwa/compat.rb +0 -29
data/lib/jwt/jwa/eddsa.rb +0 -34
data/lib/jwt/jwa/hmac_rbnacl.rb +0 -49
data/lib/jwt/jwa/hmac_rbnacl_fixed.rb +0 -46
data/lib/jwt/jwa/wrapper.rb +0 -43
data/lib/jwt/jwk/okp_rbnacl.rb +0 -110
data/lib/jwt/verify.rb +0 -34

data/lib/jwt/token.rb ADDED Viewed

@@ -0,0 +1,131 @@
+# frozen_string_literal: true
+module JWT
+  # Represents a JWT token
+  #
+  # Basic token signed using the HS256 algorithm:
+  #
+  #   token = JWT::Token.new(payload: {pay: 'load'})
+  #   token.sign!(algorithm: 'HS256', key: 'secret')
+  #   token.jwt # => eyJhb....
+  #
+  # Custom headers will be combined with generated headers:
+  #   token = JWT::Token.new(payload: {pay: 'load'}, header: {custom: "value"})
+  #   token.sign!(algorithm: 'HS256', key: 'secret')
+  #   token.header # => {"custom"=>"value", "alg"=>"HS256"}
+  #
+  class Token
+    # Initializes a new Token instance.
+    #
+    # @param header [Hash] the header of the JWT token.
+    # @param payload [Hash] the payload of the JWT token.
+    def initialize(payload:, header: {})
+      @header  = header&.transform_keys(&:to_s)
+      @payload = payload
+    end
+    # Returns the decoded signature of the JWT token.
+    #
+    # @return [String] the decoded signature of the JWT token.
+    def signature
+      @signature ||= ::JWT::Base64.url_decode(encoded_signature || '')
+    end
+    # Returns the encoded signature of the JWT token.
+    #
+    # @return [String] the encoded signature of the JWT token.
+    def encoded_signature
+      @encoded_signature ||= ::JWT::Base64.url_encode(signature)
+    end
+    # Returns the decoded header of the JWT token.
+    #
+    # @return [Hash] the header of the JWT token.
+    attr_reader :header
+    # Returns the encoded header of the JWT token.
+    #
+    # @return [String] the encoded header of the JWT token.
+    def encoded_header
+      @encoded_header ||= ::JWT::Base64.url_encode(JWT::JSON.generate(header))
+    end
+    # Returns the payload of the JWT token.
+    #
+    # @return [Hash] the payload of the JWT token.
+    attr_reader :payload
+    # Returns the encoded payload of the JWT token.
+    #
+    # @return [String] the encoded payload of the JWT token.
+    def encoded_payload
+      @encoded_payload ||= ::JWT::Base64.url_encode(JWT::JSON.generate(payload))
+    end
+    # Returns the signing input of the JWT token.
+    #
+    # @return [String] the signing input of the JWT token.
+    def signing_input
+      @signing_input ||= [encoded_header, encoded_payload].join('.')
+    end
+    # Returns the JWT token as a string.
+    #
+    # @return [String] the JWT token as a string.
+    # @raise [JWT::EncodeError] if the token is not signed or other encoding issues
+    def jwt
+      @jwt ||= (@signature && [encoded_header, @detached_payload ? '' : encoded_payload, encoded_signature].join('.')) || raise(::JWT::EncodeError, 'Token is not signed')
+    end
+    # Detaches the payload according to https://datatracker.ietf.org/doc/html/rfc7515#appendix-F
+    #
+    def detach_payload!
+      @detached_payload = true
+      nil
+    end
+    # Signs the JWT token.
+    #
+    # @param key [String, JWT::JWK::KeyBase] the key to use for signing.
+    # @param algorithm [String, Object] the algorithm to use for signing.
+    # @return [void]
+    # @raise [JWT::EncodeError] if the token is already signed or other problems when signing
+    def sign!(key:, algorithm:)
+      raise ::JWT::EncodeError, 'Token already signed' if @signature
+      JWA.create_signer(algorithm: algorithm, key: key).tap do |signer|
+        header.merge!(signer.jwa.header) { |_key, old, _new| old }
+        @signature = signer.sign(data: signing_input)
+      end
+      nil
+    end
+    # Verifies the claims of the token.
+    # @param options [Array<Symbol>, Hash] the claims to verify.
+    # @raise [JWT::DecodeError] if the claims are invalid.
+    def verify_claims!(*options)
+      Claims::Verifier.verify!(self, *options)
+    end
+    # Returns the errors of the claims of the token.
+    # @param options [Array<Symbol>, Hash] the claims to verify.
+    # @return [Array<Symbol>] the errors of the claims.
+    def claim_errors(*options)
+      Claims::Verifier.errors(self, *options)
+    end
+    # Returns whether the claims of the token are valid.
+    # @param options [Array<Symbol>, Hash] the claims to verify.
+    # @return [Boolean] whether the claims are valid.
+    def valid_claims?(*options)
+      claim_errors(*options).empty?
+    end
+    # Returns the JWT token as a string.
+    #
+    # @return [String] the JWT token as a string.
+    alias to_s jwt
+  end
+end

data/lib/jwt/version.rb CHANGED Viewed

@@ -1,44 +1,49 @@
 # frozen_string_literal: true
-# Moments version builder module
+# JSON Web Token implementation
+#
+# Should be up to date with the latest spec:
+# https://tools.ietf.org/html/rfc7519
 module JWT
+  # Returns the gem version of the JWT library.
+  #
+  # @return [Gem::Version] the gem version.
   def self.gem_version
-    Gem::Version.new VERSION::STRING
+    Gem::Version.new(VERSION::STRING)
   end
-  # Moments version builder module
+  # Version constants
   module VERSION
-    # major version
-    MAJOR = 2
-    # minor version
-    MINOR = 9
-    # tiny version
-    TINY  = 3
-    # alpha, beta, etc. tag
+    MAJOR = 3
+    MINOR = 1
+    TINY  = 2
     PRE   = nil
-    # Build version string
     STRING = [MAJOR, MINOR, TINY, PRE].compact.join('.')
   end
+  # Checks if the OpenSSL version is 3 or greater.
+  #
+  # @return [Boolean] true if OpenSSL version is 3 or greater, false otherwise.
+  # @api private
   def self.openssl_3?
     return false if OpenSSL::OPENSSL_VERSION.include?('LibreSSL')
     true if 3 * 0x10000000 <= OpenSSL::OPENSSL_VERSION_NUMBER
   end
-  def self.rbnacl?
-    defined?(::RbNaCl)
-  end
-  def self.rbnacl_6_or_greater?
-    rbnacl? && ::Gem::Version.new(::RbNaCl::VERSION) >= ::Gem::Version.new('6.0.0')
-  end
+  # Checks if there is an OpenSSL 3 HMAC empty key regression.
+  #
+  # @return [Boolean] true if there is an OpenSSL 3 HMAC empty key regression, false otherwise.
+  # @api private
   def self.openssl_3_hmac_empty_key_regression?
     openssl_3? && openssl_version <= ::Gem::Version.new('3.0.0')
   end
+  # Returns the OpenSSL version.
+  #
+  # @return [Gem::Version] the OpenSSL version.
+  # @api private
   def self.openssl_version
     @openssl_version ||= ::Gem::Version.new(OpenSSL::VERSION)
   end

data/lib/jwt.rb CHANGED Viewed

@@ -5,14 +5,12 @@ require 'jwt/base64'
 require 'jwt/json'
 require 'jwt/decode'
 require 'jwt/configuration'
-require 'jwt/deprecations'
 require 'jwt/encode'
 require 'jwt/error'
 require 'jwt/jwk'
 require 'jwt/claims'
-require 'jwt/claims_validator'
-require 'jwt/verify'
+require 'jwt/encoded_token'
+require 'jwt/token'
 # JSON Web Token implementation
 #
@@ -23,6 +21,13 @@ module JWT
   module_function
+  # Encodes a payload into a JWT.
+  #
+  # @param payload [Hash] the payload to encode.
+  # @param key [String] the key used to sign the JWT.
+  # @param algorithm [String] the algorithm used to sign the JWT.
+  # @param header_fields [Hash] additional headers to include in the JWT.
+  # @return [String] the encoded JWT.
   def encode(payload, key, algorithm = 'HS256', header_fields = {})
     Encode.new(payload: payload,
                key: key,
@@ -30,9 +35,14 @@ module JWT
                headers: header_fields).segments
   end
+  # Decodes a JWT to extract the payload and header
+  #
+  # @param jwt [String] the JWT to decode.
+  # @param key [String] the key used to verify the JWT.
+  # @param verify [Boolean] whether to verify the JWT signature.
+  # @param options [Hash] additional options for decoding.
+  # @return [Array<Hash>] the decoded payload and headers.
   def decode(jwt, key = nil, verify = true, options = {}, &keyfinder) # rubocop:disable Style/OptionalBooleanParameter
-    Deprecations.context do
-      Decode.new(jwt, key, verify, configuration.decode.to_h.merge(options), &keyfinder).decode_segments
-    end
+    Decode.new(jwt, key, verify, configuration.decode.to_h.merge(options), &keyfinder).decode_segments
   end
 end

data/ruby-jwt.gemspec CHANGED Viewed

@@ -35,6 +35,8 @@ Gem::Specification.new do |spec|
   spec.add_development_dependency 'appraisal'
   spec.add_development_dependency 'bundler'
+  spec.add_development_dependency 'irb'
+  spec.add_development_dependency 'logger'
   spec.add_development_dependency 'rake'
   spec.add_development_dependency 'rspec'
   spec.add_development_dependency 'rubocop'

metadata CHANGED Viewed

@@ -1,14 +1,13 @@
 --- !ruby/object:Gem::Specification
 name: jwt
 version: !ruby/object:Gem::Version
-  version: 2.9.3
+  version: 3.1.2
 platform: ruby
 authors:
 - Tim Rudat
-autorequire:
 bindir: bin
 cert_chain: []
-date: 2024-10-03 00:00:00.000000000 Z
+date: 1980-01-02 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: base64
@@ -52,6 +51,34 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
+- !ruby/object:Gem::Dependency
+  name: irb
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: logger
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: rake
   requirement: !ruby/object:Gem::Requirement
@@ -121,10 +148,12 @@ files:
 - CONTRIBUTING.md
 - LICENSE
 - README.md
+- UPGRADING.md
 - lib/jwt.rb
 - lib/jwt/base64.rb
 - lib/jwt/claims.rb
 - lib/jwt/claims/audience.rb
+- lib/jwt/claims/crit.rb
 - lib/jwt/claims/decode_verifier.rb
 - lib/jwt/claims/expiration.rb
 - lib/jwt/claims/issued_at.rb
@@ -135,40 +164,33 @@ files:
 - lib/jwt/claims/required.rb
 - lib/jwt/claims/subject.rb
 - lib/jwt/claims/verifier.rb
-- lib/jwt/claims_validator.rb
 - lib/jwt/configuration.rb
 - lib/jwt/configuration/container.rb
 - lib/jwt/configuration/decode_configuration.rb
 - lib/jwt/configuration/jwk_configuration.rb
 - lib/jwt/decode.rb
-- lib/jwt/deprecations.rb
 - lib/jwt/encode.rb
+- lib/jwt/encoded_token.rb
 - lib/jwt/error.rb
 - lib/jwt/json.rb
 - lib/jwt/jwa.rb
-- lib/jwt/jwa/compat.rb
 - lib/jwt/jwa/ecdsa.rb
-- lib/jwt/jwa/eddsa.rb
 - lib/jwt/jwa/hmac.rb
-- lib/jwt/jwa/hmac_rbnacl.rb
-- lib/jwt/jwa/hmac_rbnacl_fixed.rb
 - lib/jwt/jwa/none.rb
 - lib/jwt/jwa/ps.rb
 - lib/jwt/jwa/rsa.rb
 - lib/jwt/jwa/signing_algorithm.rb
 - lib/jwt/jwa/unsupported.rb
-- lib/jwt/jwa/wrapper.rb
 - lib/jwt/jwk.rb
 - lib/jwt/jwk/ec.rb
 - lib/jwt/jwk/hmac.rb
 - lib/jwt/jwk/key_base.rb
 - lib/jwt/jwk/key_finder.rb
 - lib/jwt/jwk/kid_as_key_digest.rb
-- lib/jwt/jwk/okp_rbnacl.rb
 - lib/jwt/jwk/rsa.rb
 - lib/jwt/jwk/set.rb
 - lib/jwt/jwk/thumbprint.rb
-- lib/jwt/verify.rb
+- lib/jwt/token.rb
 - lib/jwt/version.rb
 - lib/jwt/x5c_key_finder.rb
 - ruby-jwt.gemspec
@@ -177,9 +199,8 @@ licenses:
 - MIT
 metadata:
   bug_tracker_uri: https://github.com/jwt/ruby-jwt/issues
-  changelog_uri: https://github.com/jwt/ruby-jwt/blob/v2.9.3/CHANGELOG.md
+  changelog_uri: https://github.com/jwt/ruby-jwt/blob/v3.1.2/CHANGELOG.md
   rubygems_mfa_required: 'true'
-post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -194,8 +215,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.5.16
-signing_key:
+rubygems_version: 3.6.7
 specification_version: 4
 summary: JSON Web Token implementation in Ruby
 test_files: []

data/lib/jwt/claims_validator.rb DELETED Viewed

@@ -1,16 +0,0 @@
-# frozen_string_literal: true
-require_relative 'error'
-module JWT
-  class ClaimsValidator
-    def initialize(payload)
-      @payload = payload
-    end
-    def validate!
-      Claims.verify_payload!(@payload, :numeric)
-      true
-    end
-  end
-end

data/lib/jwt/deprecations.rb DELETED Viewed

@@ -1,48 +0,0 @@
-# frozen_string_literal: true
-module JWT
-  # Deprecations module to handle deprecation warnings in the gem
-  module Deprecations
-    class << self
-      def context
-        yield.tap { emit_warnings }
-      ensure
-        Thread.current[:jwt_warning_store] = nil
-      end
-      def warning(message, only_if_valid: false)
-        method_name = only_if_valid ? :store : :warn
-        case JWT.configuration.deprecation_warnings
-        when :once
-          return if record_warned(message)
-        when :warn
-          # noop
-        else
-          return
-        end
-        send(method_name, "[DEPRECATION WARNING] #{message}")
-      end
-      def store(message)
-        (Thread.current[:jwt_warning_store] ||= []) << message
-      end
-      def emit_warnings
-        return if Thread.current[:jwt_warning_store].nil?
-        Thread.current[:jwt_warning_store].each { |warning| warn(warning) }
-      end
-      private
-      def record_warned(message)
-        @warned ||= []
-        return true if @warned.include?(message)
-        @warned << message
-        false
-      end
-    end
-  end
-end

data/lib/jwt/jwa/compat.rb DELETED Viewed

@@ -1,29 +0,0 @@
-# frozen_string_literal: true
-module JWT
-  module JWA
-    module Compat
-      module ClassMethods
-        def from_algorithm(algorithm)
-          new(algorithm)
-        end
-        def sign(algorithm, msg, key)
-          Deprecations.warning('Support for calling sign with positional arguments will be removed in future ruby-jwt versions')
-          from_algorithm(algorithm).sign(data: msg, signing_key: key)
-        end
-        def verify(algorithm, key, signing_input, signature)
-          Deprecations.warning('Support for calling verify with positional arguments will be removed in future ruby-jwt versions')
-          from_algorithm(algorithm).verify(data: signing_input, signature: signature, verification_key: key)
-        end
-      end
-      def self.included(klass)
-        klass.extend(ClassMethods)
-      end
-    end
-  end
-end

data/lib/jwt/jwa/eddsa.rb DELETED Viewed

@@ -1,34 +0,0 @@
-# frozen_string_literal: true
-module JWT
-  module JWA
-    class Eddsa
-      include JWT::JWA::SigningAlgorithm
-      def initialize(alg)
-        @alg = alg
-      end
-      def sign(data:, signing_key:)
-        unless signing_key.is_a?(RbNaCl::Signatures::Ed25519::SigningKey)
-          raise_encode_error!("Key given is a #{signing_key.class} but has to be an RbNaCl::Signatures::Ed25519::SigningKey")
-        end
-        signing_key.sign(data)
-      end
-      def verify(data:, signature:, verification_key:)
-        unless verification_key.is_a?(RbNaCl::Signatures::Ed25519::VerifyKey)
-          raise_decode_error!("key given is a #{verification_key.class} but has to be a RbNaCl::Signatures::Ed25519::VerifyKey")
-        end
-        verification_key.verify(signature, data)
-      rescue RbNaCl::CryptoError
-        false
-      end
-      register_algorithm(new('ED25519'))
-      register_algorithm(new('EdDSA'))
-    end
-  end
-end

data/lib/jwt/jwa/hmac_rbnacl.rb DELETED Viewed

@@ -1,49 +0,0 @@
-# frozen_string_literal: true
-module JWT
-  module JWA
-    class HmacRbNaCl
-      include JWT::JWA::SigningAlgorithm
-      def self.from_algorithm(algorithm)
-        new(algorithm, ::RbNaCl::HMAC.const_get(algorithm.upcase.gsub('HS', 'SHA')))
-      end
-      def initialize(alg, hmac)
-        @alg = alg
-        @hmac = hmac
-      end
-      def sign(data:, signing_key:)
-        Deprecations.warning("The use of the algorithm #{alg} is deprecated and will be removed in the next major version of ruby-jwt")
-        hmac.auth(key_for_rbnacl(hmac, signing_key).encode('binary'), data.encode('binary'))
-      end
-      def verify(data:, signature:, verification_key:)
-        Deprecations.warning("The use of the algorithm #{alg} is deprecated and will be removed in the next major version of ruby-jwt")
-        hmac.verify(key_for_rbnacl(hmac, verification_key).encode('binary'), signature.encode('binary'), data.encode('binary'))
-      rescue ::RbNaCl::BadAuthenticatorError, ::RbNaCl::LengthError
-        false
-      end
-      register_algorithm(new('HS512256', ::RbNaCl::HMAC::SHA512256))
-      private
-      attr_reader :hmac
-      def key_for_rbnacl(hmac, key)
-        key ||= ''
-        raise JWT::DecodeError, 'HMAC key expected to be a String' unless key.is_a?(String)
-        return padded_empty_key(hmac.key_bytes) if key == ''
-        key
-      end
-      def padded_empty_key(length)
-        Array.new(length, 0x0).pack('C*').encode('binary')
-      end
-    end
-  end
-end

data/lib/jwt/jwa/hmac_rbnacl_fixed.rb DELETED Viewed

@@ -1,46 +0,0 @@
-# frozen_string_literal: true
-module JWT
-  module JWA
-    class HmacRbNaClFixed
-      include JWT::JWA::SigningAlgorithm
-      def self.from_algorithm(algorithm)
-        new(algorithm, ::RbNaCl::HMAC.const_get(algorithm.upcase.gsub('HS', 'SHA')))
-      end
-      def initialize(alg, hmac)
-        @alg = alg
-        @hmac = hmac
-      end
-      def sign(data:, signing_key:)
-        signing_key ||= ''
-        Deprecations.warning("The use of the algorithm #{alg} is deprecated and will be removed in the next major version of ruby-jwt")
-        raise JWT::DecodeError, 'HMAC key expected to be a String' unless signing_key.is_a?(String)
-        hmac.auth(padded_key_bytes(signing_key, hmac.key_bytes), data.encode('binary'))
-      end
-      def verify(data:, signature:, verification_key:)
-        verification_key ||= ''
-        Deprecations.warning("The use of the algorithm #{alg} is deprecated and will be removed in the next major version of ruby-jwt")
-        raise JWT::DecodeError, 'HMAC key expected to be a String' unless verification_key.is_a?(String)
-        hmac.verify(padded_key_bytes(verification_key, hmac.key_bytes), signature.encode('binary'), data.encode('binary'))
-      rescue ::RbNaCl::BadAuthenticatorError, ::RbNaCl::LengthError
-        false
-      end
-      register_algorithm(new('HS512256', ::RbNaCl::HMAC::SHA512256))
-      private
-      attr_reader :hmac
-      def padded_key_bytes(key, bytesize)
-        key.bytes.fill(0, key.bytesize...bytesize).pack('C*')
-      end
-    end
-  end
-end

data/lib/jwt/jwa/wrapper.rb DELETED Viewed

@@ -1,43 +0,0 @@
-# frozen_string_literal: true
-module JWT
-  module JWA
-    class Wrapper
-      include SigningAlgorithm
-      def initialize(algorithm)
-        @algorithm = algorithm
-      end
-      def alg
-        return @algorithm.alg if @algorithm.respond_to?(:alg)
-        super
-      end
-      def valid_alg?(alg_to_check)
-        return @algorithm.valid_alg?(alg_to_check) if @algorithm.respond_to?(:valid_alg?)
-        super
-      end
-      def header(*args, **kwargs)
-        return @algorithm.header(*args, **kwargs) if @algorithm.respond_to?(:header)
-        super
-      end
-      def sign(*args, **kwargs)
-        return @algorithm.sign(*args, **kwargs) if @algorithm.respond_to?(:sign)
-        super
-      end
-      def verify(*args, **kwargs)
-        return @algorithm.verify(*args, **kwargs) if @algorithm.respond_to?(:verify)
-        super
-      end
-    end
-  end
-end