doudanma9706 2018-07-23 05:00 采纳率: 100%
浏览 633
已采纳

如何始终通过无效的密钥类型错误生成JWT令牌

I met this issue and really do not know how to resolve it, can anyone help to provide a working solution?

func GenerateJWT(name, role string) (string, error)  {
    //create a singner for rsa 256
    claims := &jwt.StandardClaims{
        ExpiresAt: 15000,
        Issuer:    "test",
    }

    token :=jwt.NewWithClaims(jwt.SigningMethodES256, claims)
    log.Println("generated toke is ")
    log.Println(token)
    tokenString, err := token.SignedString([]byte("secret"))
....
}

Now I am alway having:

key is of invalid type

error. I google a lot, and even for jwt-go library it self, they are providing exactly same solution, but why I kept having the

key is of invalid type

error?

Can anyone help to provide a working sample about how to generate jwt token in go?

  • 写回答

1条回答 默认 最新

  • douyi02577 2018-07-23 05:45
    关注

    From the README:

    The ECDSA signing method (ES256,ES384,ES512) expect *ecdsa.PrivateKey for signing and *ecdsa.PublicKey for validation

    So use an elliptic curve key:

    package main

import (
        "crypto/ecdsa"
        "crypto/elliptic"
        "crypto/rand"
        "log"

        jwt "github.com/dgrijalva/jwt-go"
)

func main() {
        key, err := ecdsa.GenerateKey(elliptic.P256(), rand.Reader)
        if err != nil {
                log.Fatal(err)
        }

        claims := &jwt.StandardClaims{
                ExpiresAt: 15000,
                Issuer:    "test",
        }

        token := jwt.NewWithClaims(jwt.SigningMethodES256, claims)

        tokenString, err := token.SignedString(key)
        if err != nil {
                log.Fatal(err)
        }

        log.Println(tokenString)
}

    To store the generated key for later use with jwt.ParseECPrivateKeyFromPEM and jwt.ParseECPublicKeyFromPEM:

    import (
        "crypto/ecdsa"
        "crypto/x509"
        "encoding/pem"
)

func pemKeyPair(key *ecdsa.PrivateKey) (privKeyPEM []byte, pubKeyPEM []byte, err error) {
        der, err := x509.MarshalECPrivateKey(key)
        if err != nil {
                return nil, nil, err
        }

        privKeyPEM = pem.EncodeToMemory(&pem.Block{
                Type:  "EC PRIVATE KEY",
                Bytes: der,
        })

        der, err = x509.MarshalPKIXPublicKey(key.Public())
        if err != nil {
                return nil, nil, err
        }

        pubKeyPEM = pem.EncodeToMemory(&pem.Block{
                Type:  "EC PUBLIC KEY",
                Bytes: der,
        })

        return
}
    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论

报告相同问题?

悬赏问题

  • ¥15 metadata提取的PDF元数据,如何转换为一个Excel
  • ¥15 关于arduino编程toCharArray()函数的使用
  • ¥100 vc++混合CEF采用CLR方式编译报错
  • ¥15 coze 的插件输入飞书多维表格 app_token 后一直显示错误,如何解决?
  • ¥15 vite+vue3+plyr播放本地public文件夹下视频无法加载
  • ¥15 c#逐行读取txt文本,但是每一行里面数据之间空格数量不同
  • ¥50 如何openEuler 22.03上安装配置drbd
  • ¥20 ING91680C BLE5.3 芯片怎么实现串口收发数据
  • ¥15 无线连接树莓派,无法执行update,如何解决?(相关搜索:软件下载)
  • ¥15 Windows11, backspace, enter, space键失灵