public abstract class AesGcmEncryptionProvider extends Object implements JWEEncryptionProvider
| Constructor and Description |
|---|
AesGcmEncryptionProvider() |
| Modifier and Type | Method and Description |
|---|---|
void |
deserializeCEK(JWEKeyStorage keyStorage)
This method is supposed to deserialize keys.
|
void |
encodeJwe(JWE jwe)
This method usually has 3 outputs:
- generated initialization vector
- encrypted content
- authenticationTag for MAC validation
It is supposed to call
JWE.setEncryptedContentInfo(byte[], byte[], byte[]) after it's finished |
protected abstract int |
getExpectedAesKeyLength() |
byte[] |
serializeCEK(JWEKeyStorage keyStorage)
This method requires that decoded CEK keys are present in the keyStorage.decodedCEK map before it's called
|
void |
verifyAndDecodeJwe(JWE jwe)
This method is supposed to verify checksums and decrypt content.
|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, waitgetExpectedCEKLengthpublic void encodeJwe(JWE jwe) throws Exception
JWEEncryptionProviderJWE.setEncryptedContentInfo(byte[], byte[], byte[]) after it's finishedencodeJwe in interface JWEEncryptionProviderIOExceptionGeneralSecurityExceptionExceptionpublic void verifyAndDecodeJwe(JWE jwe) throws Exception
JWEEncryptionProviderJWE.content(byte[]) after it's finishedverifyAndDecodeJwe in interface JWEEncryptionProviderIOExceptionGeneralSecurityExceptionExceptionpublic byte[] serializeCEK(JWEKeyStorage keyStorage)
JWEEncryptionProviderserializeCEK in interface JWEEncryptionProviderpublic void deserializeCEK(JWEKeyStorage keyStorage)
JWEEncryptionProviderJWEKeyStorage.getCekBytes() is set. After keys are deserialized,
this method needs to call JWEKeyStorage.setCEKKey(Key, JWEKeyStorage.KeyUse) according to all uses, which this encryption algorithm requires.deserializeCEK in interface JWEEncryptionProviderprotected abstract int getExpectedAesKeyLength()
Copyright © 2021 JBoss by Red Hat. All rights reserved.