feat: jwt verify sign

Author: gorpher

.golangci.yml

@@ -154,7 +154,7 @@ linters-settings:
 
   funlen:
     lines: 200
-    statements: 66
+    statements: 100
 
   gci:
     # put imports beginning with prefix after 3rd-party packages;
@@ -224,7 +224,7 @@ linters-settings:
 
   gocyclo:
     # minimal code complexity to report, 30 by default (but we recommend 10-20)
-    min-complexity: 30
+    min-complexity: 50
 
   godot:
     # comments to be checked: `declarations`, `toplevel`, or `all`

codec.go

@@ -229,7 +229,7 @@ func jwtHS(alg string) (func(key []byte) hash.Hash, error) {
 			return hmac.New(crypto.SHA512.New, key)
 		}, nil
 	default:
-		return nil, errors.New("the algorithm is not supported")
+		return nil, fmt.Errorf("the %s algorithm is not supported", alg)
 	}
 }
 

crypto_test.go

@@ -2,8 +2,16 @@ package gone
 
 import (
 	bytes2 "bytes"
+	"crypto/ecdsa"
+	"crypto/elliptic"
 	"crypto/rand"
+	"crypto/sha256"
+	"crypto/x509"
 	"encoding/base64"
+	"encoding/pem"
+	"errors"
+	"fmt"
+	"strings"
 	"testing"
 
 	"golang.org/x/crypto/ssh"
@@ -188,3 +196,34 @@ func TestGenerateSSHKey(t *testing.T) {
 		t.Fatal(err)
 	}
 }
+
+func TestGenerateECDSAKeyToMemory(t *testing.T) {
+	privateBytes, publicBytes, err := GenerateECDSAKeyToMemory(elliptic.P256())
+	if err != nil {
+		t.Fatal(err)
+	}
+	block, _ := pem.Decode(privateBytes)
+	privateKey, err := x509.ParseECPrivateKey(block.Bytes)
+	if err != nil {
+		t.Fatal(err)
+	}
+	pbkBlock, _ := pem.Decode(publicBytes)
+	pbk, err := x509.ParsePKIXPublicKey(pbkBlock.Bytes)
+	if err != nil {
+		t.Fatal(err)
+	}
+	publicKey, ok := pbk.(*ecdsa.PublicKey)
+	if !ok {
+		t.Fatal(errors.New("ecdsa publicKey error"))
+	}
+
+	text := "hello world"
+	randSign := "12345678901234567"
+	hashText := sha256.Sum256([]byte(text))
+	r, s, err := ecdsa.Sign(strings.NewReader(randSign), privateKey, hashText[:])
+	if err != nil {
+		t.Fatal(err)
+	}
+	b := ecdsa.Verify(publicKey, hashText[:], r, s)
+	fmt.Println(b)
+}