With JWTs (JSON Web Tokens), we can create a claim and then sign it with public key encryption or HMAC. But what if we want to encrypt data with a JWT? For this, we can use AES encryption to encrypt the data. The header then becomes the form of:
{
"alg": "dir",
"enc": "A128GCM"
}and where the payload is a byte stream that is encoded into the JWT:
In this case, there is no key wrapping involved, and where we must use the same key to encrypt and decrypt. Note, that HMAC signature contains the hash of the key. If we want to wrap the key we can define with:
{
"alg": "A128KW",
"enc": "A128GCM"
}This gives:
We can now implement this with [here]:
from jose import jwe
import hashlib
import sys
import binascii
message='test'
method='A128GCM'
password='pass'
management='dir'
if (len(sys.argv)>1):
message=str(sys.argv[1])
if (len(sys.argv)>2):
password=str(sys.argv[2])
if (len(sys.argv)>3):
method=str(sys.argv[3])
if…
