puria
commented
4 months ago I guess this issue should be added to the zenroom repo
Open andrea-dintino opened 4 months ago
puria
commented
4 months ago I guess this issue should be added to the zenroom repo
andrea-dintino
commented
4 months ago I guess this issue should be added to the zenroom repo
not really, we can already do all of that in Zenroom... the issue is specific to the Zencode scripts we are using here
puria
commented
2 weeks ago Sorry, ahaha I meant the slangroom repo
There are multiple points where we do cryptography inside Slangroom (using the jose lib), it would be desirable to do all the crypto in Zenroom (or to duplicate it).
Some points where this could be done:
in the /par and /token api:
Here we verify a JWS: https://github.com/dyne/slangroom/blob/main/pkg/oauth/src/authorizeHandler.ts#L151
Here we produce JWS: https://github.com/dyne/slangroom/blob/main/pkg/oauth/src/authorizeHandler.ts#L170C3 https://github.com/dyne/slangroom/blob/main/pkg/oauth/src/model.ts#L338
Here we verify a DPoP: https://github.com/dyne/slangroom/blob/main/pkg/oauth/src/model.ts#L354