如何解决为什么 JWS 签名验证失败?
我正在尝试使用 Java 中的 Nimbus JOSE JWT 库以分离的有效负载对消息进行签名。验证在本地通过,但每当我尝试使用 Postman 将其发送到服务器时,我都会得到:"The signature header x-jws-signature was parsed and has a valid JOSE header that complies with the specification. However,the signature itself Could not be verified"
JWSSigner signer = new RSASSASigner(privateKey);
HashMap<String,Object> criticalParameters = new HashMap<>();
criticalParameters.put("http://openbanking.org.uk/iat",1501497671);
criticalParameters.put("http://openbanking.org.uk/iss",orgId);
criticalParameters.put("http://openbanking.org.uk/tan","openbankingtest.org.uk");
JWSHeader header = new JWSHeader.Builder(JWSAlgorithm.PS256)
.type(JOSEObjectType.JOSE)
.keyID(keyID)
.criticalParams(criticalParameters.keySet())
.customParams(criticalParameters)
.build();
// With encoding the payload
JWSObject jwsObject = new JWSObject(header,payload);
jwsObject.sign(signer);
String jws = jwsObject.serialize(true);
JWSObject parsedJWSObject = JWSObject.parse(jws,payload);
if (parsedJWSObject.verify(new RSASSAVerifier(publicKey,criticalParameters.keySet()))) {
System.out.println(parsedJWSObject.serialize(true));
} else {
System.out.println("Invalid");
}
//=============================
// Without encoding the payload
Base64URL signature = signer.sign(header,(header.toBase64URL().toString() + "." + payload).getBytes());
JWsverifier verifier = new RSASSAVerifier(publicKey,criticalParameters.keySet());
boolean isValid = verifier.verify(header,(header.toBase64URL().toString() + "." + payload).getBytes(),signature);
System.out.println(header.toBase64URL().toString() + ".." + signature.toString());
System.out.println(isValid);
//=============================
这两个函数都成功地对 JWS 进行了签名和验证,但由于某种原因,它不起作用。如果有帮助,我正在尝试访问 Open Banking API。
版权声明:本文内容由互联网用户自发贡献,该文观点与技术仅代表作者本人。本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如发现本站有涉嫌侵权/违法违规的内容, 请发送邮件至 dio@foxmail.com 举报,一经查实,本站将立刻删除。
