This function performs a custom validation on the input certificate. This validation includes extracting an attestation evidence extension from the certificate before validating this evidence.
jwt-verifier builds and runs on Windows and Ubuntu Linux. The tool performs the following steps:
[ ] Parses MAA JWT;
[ ] Sends a request to MAA to get certificates;
[ ] Deserialize JSON Web Keys and finds x.509 certificates for the key;
[ ] Looks up for the MAA x509 extension;
[ ] Verifies the certificate using oe_verify_attestation_certificate OpenEnclave API.
Does this introduce a breaking change?
[x] No
Pull Request Type
What kind of change does this Pull Request introduce?
[x] Feature
How to Test
Follow steps described in the ./maa.jwt.verifier/README.md
Purpose
Adding maa.jwt.verifier
JWT Verifier takes advantage of the Open Enclave SDK API call oe_verify_attestation_certificate. See also https://openenclave.io/apidocs/v0.17/index.html .
This function performs a custom validation on the input certificate. This validation includes extracting an attestation evidence extension from the certificate before validating this evidence.
jwt-verifierbuilds and runs on Windows and Ubuntu Linux. The tool performs the following steps:Does this introduce a breaking change?
Pull Request Type
What kind of change does this Pull Request introduce?
How to Test
./maa.jwt.verifier/README.mdWhat to Check
Verify that the following are valid
Other Information
jwt-verifier./maa.jwt.verifier