Keats
commented
5 months ago I don't know how common that is but there are some people using b64 encoded hmac secrets. It would be ok to add a from_urlsafe_base64_secret
Open andrewbaxter opened 5 months ago
Keats
commented
5 months ago I don't know how common that is but there are some people using b64 encoded hmac secrets. It would be ok to add a from_urlsafe_base64_secret
andrewbaxter
commented
5 months ago https://github.com/andrewbaxter/fork-jsonwebtoken/pull/3 targeted at the acme/jws branch
In the ACME RFC (https://datatracker.ietf.org/doc/html/rfc8555#section-7.3.4) it says
Right now
from_base64_secretdoes base64-standard decoding. Is this common for other protocols that use HMAC keys?I think a url-safe base64 method would be useful, since ACME users will have url-safe base64 strings from ACME providers and they'd be able to bridge that to this library without needing an extra direct dependency just to hand the key over. Url-safe base64 also aligns with a lot of the rest of the JOSE specs so I'd expect that to be common.
Sorry, this is a pretty trivial issue, but what about something like
from_urlsafe_base64_secretorfrom_base64_hmac?