JWT encrypts payload in python? (JWE)

Question

JWT encrypts payload in python? (JWE)

According to RFC 7516, it should be possible to encrypt a payload / application called JWE.

Are there any python libraries that support this?

I tested PyJWT, python-jose and jwcrypto, but all of them have examples for signing with HS256(JWS).

Sorry if this is completely obvious, but when it comes to things related to cryptography, I’m more careful.

+4

python jwt jwe python-jose pyjwt

Johnny Aug 26 '16 at 9:30

source share

1 answer

Y. Wu · Accepted Answer · 2016-11-19T18:33:08+0000

Both the Jose and jwcrypto libraries can do JWE.

For jose :

claims = {
'iss': 'http://www.example.com',
'sub': 42,
}
pubKey = {'k':\
           '-----BEGIN PUBLIC KEY-----\n\
-----END PUBLIC KEY-----'
    }
# decrypt on the other end using the private key
privKey = {'k': 
    '-----BEGIN RSA PRIVATE KEY-----\n'+\
'-----END RSA PRIVATE KEY-----'
}

encJwt = jose.encrypt(claims, pubKey)
serJwt = jose.serialize_compact(encJwt)
decJwt = jose.decrypt(jose.deserialize_compact(serJwt), privKey)

For jwcrypto :

# algorithm to use
eprot = {'alg': "RSA-OAEP", 'enc': "A128CBC-HS256"}
stringPayload = u'attack at dawn'
E = jwe.JWE(stringPayload, json_encode(eprot))
E.add_recipient(pubKey)
encrypted_token = E.serialize(compact=True)
E = jwe.JWE()
E.deserialize(encrypted_token, key=privKey)
decrypted_payload = E.payload

JWT encrypts payload in python? (JWE)

More articles: