Fail on JWT verify with EdDSA #300

araujoronald · 2023-09-28T14:26:16Z

araujoronald
Sep 28, 2023

Hi,
when I call 'verifyJWT' I receive the follow error message: 'invalid_signature: no matching public key found'.

Using debug I found:

DID is valid (https://didlint.ownyourdata.eu/?did=did%3Aweb%3Aaraujoronald.github.io)
DID is correctly resolve;
The public key is correct found;
The verification fail 'ed25519.verify(signatureBytes, clear, extractPublicKeyBytes(a))'

My code:

  const signer = EdDSASigner(hexToBytes('b25ede2cc9439f6bc86abbf9902e3e36d5633fff217d9c17312e72a0c7fc665ef4c7a3448163cf2d969e5940e78749d772ba3a069ef42c06abe05cd498ba8e94'))

    const jwt = await createJWT({
        aud: 'did:web:araujoronald.github.io'
    }, {
        issuer: 'did:web:araujoronald.github.io',
        signer: signer
    }, {
        alg: 'Ed25519',
    })

    const webResolver = getResolver()
    const resolver = new Resolver({ ...webResolver })

    const result = await verifyJWT(jwt, {
        resolver: resolver,
        audience: 'did:web:araujoronald.github.io'
    })

Could help me?

araujoronald · 2023-09-28T16:02:06Z

araujoronald
Sep 28, 2023
Author

Previously I was generating the KeyPair using elliptic lib. So I changed it to node:crypto and voila!

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Fail on JWT verify with EdDSA #300

Uh oh!

{{title}}

Uh oh!

Replies: 1 comment

Uh oh!

{{title}}

Uh oh!

Select a reply

Uh oh!

Fail on JWT verify with EdDSA #300

Uh oh!

araujoronald Sep 28, 2023

Replies: 1 comment

Uh oh!

araujoronald Sep 28, 2023 Author

araujoronald
Sep 28, 2023

araujoronald
Sep 28, 2023
Author