io.jsonwebtoken.security

Interface SignatureAlgorithm

All Superinterfaces:

DigestAlgorithm<SecureRequest<InputStream,PrivateKey>,VerifySecureDigestRequest<PublicKey>>, Identifiable, KeyPairBuilderSupplier, SecureDigestAlgorithm<PrivateKey,PublicKey>

public interface SignatureAlgorithm
extends SecureDigestAlgorithm<PrivateKey,PublicKey>, KeyPairBuilderSupplier

A digital signature algorithm computes and verifies digests using asymmetric public/private key cryptography.

Standard Identifier

SignatureAlgorithm extends Identifiable: when a SignatureAlgorithm is used to compute a JWS digital signature, the value returned from signatureAlgorithm.getId() will be set as the JWS "alg" protected header value.

Key Pair Generation

SignatureAlgorithm extends KeyPairBuilderSupplier to enable KeyPair generation. Each SignatureAlgorithm instance will return a KeyPairBuilder that ensures any created key pairs will have a sufficient length and algorithm parameters required by that algorithm. For example:

 KeyPair pair = signatureAlgorithm.keyPair().build();

The resulting pair is guaranteed to have the correct algorithm parameters and length/strength necessary for that exact signatureAlgorithm instance.

JWA Standard Implementations

Constant definitions and utility methods for all JWA (RFC 7518) standard signature algorithms are available via Jwts.SIG.

Since:

0.12.0

See Also:

Jwts.SIG

Method Summary

Methods inherited from interface io.jsonwebtoken.security.DigestAlgorithm

digest, verify

Methods inherited from interface io.jsonwebtoken.Identifiable

getId

Methods inherited from interface io.jsonwebtoken.security.KeyPairBuilderSupplier

keyPair