Package com.nimbusds.jose.crypto
Class DirectEncrypter
java.lang.Object
com.nimbusds.jose.crypto.impl.BaseJWEProvider
com.nimbusds.jose.crypto.impl.DirectCryptoProvider
com.nimbusds.jose.crypto.DirectEncrypter
- All Implemented Interfaces:
JCAAware<JWEJCAContext>,JOSEProvider,JWEEncrypter,JWEProvider
Direct encrypter of
JWE objects with a
shared symmetric key.
See RFC 7518 section 4.5 for more information.
This class is thread-safe.
Supports the following key management algorithms:
Supports the following content encryption algorithms:
EncryptionMethod.A128CBC_HS256(requires 256 bit key)EncryptionMethod.A192CBC_HS384(requires 384 bit key)EncryptionMethod.A256CBC_HS512(requires 512 bit key)EncryptionMethod.A128GCM(requires 128 bit key)EncryptionMethod.A192GCM(requires 192 bit key)EncryptionMethod.A256GCM(requires 256 bit key)EncryptionMethod.A128CBC_HS256_DEPRECATED(requires 256 bit key)EncryptionMethod.A256CBC_HS512_DEPRECATED(requires 512 bit key)EncryptionMethod.XC20P(requires 256 bit key)
- Version:
- 2023-09-10
- Author:
- Vladimir Dzhuvinov, Egor Puzanov
-
Field Summary
Fields inherited from class com.nimbusds.jose.crypto.impl.DirectCryptoProvider
SUPPORTED_ALGORITHMS, SUPPORTED_ENCRYPTION_METHODS -
Constructor Summary
ConstructorsConstructorDescriptionDirectEncrypter(byte[] keyBytes) Creates a new direct encrypter.DirectEncrypter(OctetSequenceKey octJWK) Creates a new direct encrypter.DirectEncrypter(SecretKey key) Creates a new direct encrypter. -
Method Summary
Methods inherited from class com.nimbusds.jose.crypto.impl.DirectCryptoProvider
getKeyMethods inherited from class com.nimbusds.jose.crypto.impl.BaseJWEProvider
getCEK, getJCAContext, isCEKProvided, supportedEncryptionMethods, supportedJWEAlgorithmsMethods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, waitMethods inherited from interface com.nimbusds.jose.jca.JCAAware
getJCAContextMethods inherited from interface com.nimbusds.jose.JWEProvider
supportedEncryptionMethods, supportedJWEAlgorithms
-
Constructor Details
-
DirectEncrypter
Creates a new direct encrypter.- Parameters:
key- The symmetric key. Its algorithm should be "AES". Must be 128 bits (16 bytes), 192 bits (24 bytes), 256 bits (32 bytes), 384 bits (48 bytes) or 512 bits (64 bytes) long. Must not benull.- Throws:
KeyLengthException- If the symmetric key length is not compatible.
-
DirectEncrypter
Creates a new direct encrypter.- Parameters:
keyBytes- The symmetric key, as a byte array. Must be 128 bits (16 bytes), 192 bits (24 bytes), 256 bits (32 bytes), 384 bits (48 bytes) or 512 bits (64 bytes) long. Must not benull.- Throws:
KeyLengthException- If the symmetric key length is not compatible.
-
DirectEncrypter
Creates a new direct encrypter.- Parameters:
octJWK- The symmetric key, as a JWK. Must be 128 bits (16 bytes), 192 bits (24 bytes), 256 bits (32 bytes), 384 bits (48 bytes) or 512 bits (64 bytes) long. Must not benull.- Throws:
KeyLengthException- If the symmetric key length is not compatible.
-
-
Method Details
-
encrypt
Deprecated.Encrypts the specified clear text of aJWE object.- Parameters:
header- The JSON Web Encryption (JWE) header. Must specify a supported JWE algorithm and method. Must not benull.clearText- The clear text to encrypt. Must not benull.- Returns:
- The resulting JWE crypto parts.
- Throws:
JOSEException- If the JWE algorithm or method is not supported or if encryption failed for some other internal reason.
-
encrypt
Description copied from interface:JWEEncrypterEncrypts the specified clear text of aJWE object.- Specified by:
encryptin interfaceJWEEncrypter- Parameters:
header- The JSON Web Encryption (JWE) header. Must specify a supported JWE algorithm and method. Must not benull.clearText- The clear text to encrypt. Must not benull.aad- The additional authenticated data. Must not benull.- Returns:
- The resulting JWE crypto parts.
- Throws:
JOSEException- If the JWE algorithm or method is not supported or if encryption failed for some other internal reason.
-