From c5efd09c987a9c9b9eb017826e315e90a3ff1d75 Mon Sep 17 00:00:00 2001
From: Lars Wirzenius <liw@liw.fi>
Date: Sat, 15 Dec 2018 11:42:58 +0200
Subject: Change: try.sh to do keygen, token creation

---
 create-token     | 56 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++
 generate-rsa-key | 35 +++++++++++++++++++++++++++++++++++
 2 files changed, 91 insertions(+)
 create mode 100755 create-token
 create mode 100755 generate-rsa-key

diff --git a/create-token b/create-token
new file mode 100755
index 0000000..4ccf29c
--- /dev/null
+++ b/create-token
@@ -0,0 +1,56 @@
+#!/usr/bin/python3
+# Copyright (C) 2017  Lars Wirzenius
+#
+# This program is free software: you can redistribute it and/or modify
+# it under the terms of the GNU Affero General Public License as
+# published by the Free Software Foundation, either version 3 of the
+# License, or (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU Affero General Public License for more details.
+#
+# You should have received a copy of the GNU Affero General Public License
+# along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+
+import sys
+import time
+
+import Crypto.PublicKey.RSA
+import jwt
+
+
+JWT_SIGNING_ALGORITHM = 'RS512'
+
+
+
+def create_token(claims, signing_key):
+    return jwt.encode(
+        claims,
+        signing_key.exportKey('PEM'),
+        algorithm=JWT_SIGNING_ALGORITHM)
+
+
+keyfile = sys.argv[1]
+scopes = ' '.join(sys.argv[2].split())
+
+iss = 'test.iss'
+aud = 'test.aud'
+sub = 'test.sub'
+
+key_text = open(keyfile, 'r').read()
+key = Crypto.PublicKey.RSA.importKey(key_text)
+
+now = int(time.time())
+claims = {
+    'iss': iss,
+    'sub': sub,
+    'aud': aud,
+    'exp': now + 3600,
+    'scope': scopes,
+}
+
+token = create_token(claims, key)
+sys.stdout.write(token.decode('ascii'))
diff --git a/generate-rsa-key b/generate-rsa-key
new file mode 100755
index 0000000..d1cc13c
--- /dev/null
+++ b/generate-rsa-key
@@ -0,0 +1,35 @@
+#!/usr/bin/python3
+# Copyright (C) 2017  Lars Wirzenius
+#
+# This program is free software: you can redistribute it and/or modify
+# it under the terms of the GNU Affero General Public License as
+# published by the Free Software Foundation, either version 3 of the
+# License, or (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU Affero General Public License for more details.
+#
+# You should have received a copy of the GNU Affero General Public License
+# along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+
+import sys
+
+import Crypto.PublicKey.RSA
+
+
+RSA_KEY_BITS = 4096  # A nice, currently safe length
+
+key = Crypto.PublicKey.RSA.generate(RSA_KEY_BITS)
+
+filename = sys.argv[1]
+
+def write(filename, byts):
+    with open(filename, 'wb') as f:
+        f.write(byts)
+
+write(filename, key.exportKey('PEM'))
+write(filename + '.derpy', key.exportKey('DER'))
+#write(filename + '.pub', key.exportKey('OpenSSH'))
-- 
cgit v1.2.1