Open andrea-dintino opened 4 months ago
I guess this issue should be added to the zenroom repo
I guess this issue should be added to the zenroom repo
not really, we can already do all of that in Zenroom... the issue is specific to the Zencode scripts we are using here
Sorry, ahaha I meant the slangroom repo
There are multiple points where we do cryptography inside Slangroom (using the jose lib), it would be desirable to do all the crypto in Zenroom (or to duplicate it).
Some points where this could be done:
in the /par and /token api:
Here we verify a JWS: https://github.com/dyne/slangroom/blob/main/pkg/oauth/src/authorizeHandler.ts#L151
Here we produce JWS: https://github.com/dyne/slangroom/blob/main/pkg/oauth/src/authorizeHandler.ts#L170C3 https://github.com/dyne/slangroom/blob/main/pkg/oauth/src/model.ts#L338
Here we verify a DPoP: https://github.com/dyne/slangroom/blob/main/pkg/oauth/src/model.ts#L354