Implement git-lfs-authenticate

author: Rutger Broekhoff 2023-12-30 14:00:34 +0100
committer: Rutger Broekhoff 2023-12-30 14:00:34 +0100
commit: f6c92c5e2d87ab1334648b0d1293771de7aae4a5 (patch)
tree: 265c3a06accd398a1e0a173af56d7392a5f94a24 /vendor/github.com/golang-jwt/jwt/v5/none.go
parent: 4f167c0fa991aa9ddb3f0252e23694b3aa6532b1 (diff)
download: gitolfs3-f6c92c5e2d87ab1334648b0d1293771de7aae4a5.tar.gz
gitolfs3-f6c92c5e2d87ab1334648b0d1293771de7aae4a5.zip
1 files changed, 50 insertions, 0 deletions
diff --git a/vendor/github.com/golang-jwt/jwt/v5/none.go b/vendor/github.com/golang-jwt/jwt/v5/none.go
new file mode 100644
index 0000000..685c2ea
--- /dev/null
+++ b/vendor/github.com/golang-jwt/jwt/v5/none.go
@@ -0,0 +1,50 @@
+package jwt
+// SigningMethodNone implements the none signing method.  This is required by the spec
+// but you probably should never use it.
+var SigningMethodNone *signingMethodNone
+const UnsafeAllowNoneSignatureType unsafeNoneMagicConstant = "none signing method allowed"
+var NoneSignatureTypeDisallowedError error
+type signingMethodNone struct{}
+type unsafeNoneMagicConstant string
+func init() {
+        SigningMethodNone = &signingMethodNone{}
+        NoneSignatureTypeDisallowedError = newError("'none' signature type is not allowed", ErrTokenUnverifiable)
+        RegisterSigningMethod(SigningMethodNone.Alg(), func() SigningMethod {
+                return SigningMethodNone
+        })
+}
+func (m *signingMethodNone) Alg() string {
+        return "none"
+}
+// Only allow 'none' alg type if UnsafeAllowNoneSignatureType is specified as the key
+func (m *signingMethodNone) Verify(signingString string, sig []byte, key interface{}) (err error) {
+        // Key must be UnsafeAllowNoneSignatureType to prevent accidentally
+        // accepting 'none' signing method
+        if _, ok := key.(unsafeNoneMagicConstant); !ok {
+                return NoneSignatureTypeDisallowedError
+        }
+        // If signing method is none, signature must be an empty string
+        if len(sig) != 0 {
+                return newError("'none' signing method with non-empty signature", ErrTokenUnverifiable)
+        }
+        // Accept 'none' signing method.
+        return nil
+}
+// Only allow 'none' signing if UnsafeAllowNoneSignatureType is specified as the key
+func (m *signingMethodNone) Sign(signingString string, key interface{}) ([]byte, error) {
+        if _, ok := key.(unsafeNoneMagicConstant); ok {
+                return []byte{}, nil
+        }
+        return nil, NoneSignatureTypeDisallowedError
+}
author	Rutger Broekhoff	2023-12-30 14:00:34 +0100
committer	Rutger Broekhoff	2023-12-30 14:00:34 +0100
commit	f6c92c5e2d87ab1334648b0d1293771de7aae4a5 (patch)
tree	265c3a06accd398a1e0a173af56d7392a5f94a24 /vendor/github.com/golang-jwt/jwt/v5/none.go
parent	4f167c0fa991aa9ddb3f0252e23694b3aa6532b1 (diff)
download	gitolfs3-f6c92c5e2d87ab1334648b0d1293771de7aae4a5.tar.gz gitolfs3-f6c92c5e2d87ab1334648b0d1293771de7aae4a5.zip

diff --git a/vendor/github.com/golang-jwt/jwt/v5/none.go b/vendor/github.com/golang-jwt/jwt/v5/none.go new file mode 100644 index 0000000..685c2ea --- /dev/null +++ b/vendor/github.com/golang-jwt/jwt/v5/none.go
@@ -0,0 +1,50 @@
	1	package jwt
	2
	3	// SigningMethodNone implements the none signing method. This is required by the spec
	4	// but you probably should never use it.
	5	var SigningMethodNone *signingMethodNone
	6
	7	const UnsafeAllowNoneSignatureType unsafeNoneMagicConstant = "none signing method allowed"
	8
	9	var NoneSignatureTypeDisallowedError error
	10
	11	type signingMethodNone struct{}
	12	type unsafeNoneMagicConstant string
	13
	14	func init() {
	15	SigningMethodNone = &signingMethodNone{}
	16	NoneSignatureTypeDisallowedError = newError("'none' signature type is not allowed", ErrTokenUnverifiable)
	17
	18	RegisterSigningMethod(SigningMethodNone.Alg(), func() SigningMethod {
	19	return SigningMethodNone
	20	})
	21	}
	22
	23	func (m *signingMethodNone) Alg() string {
	24	return "none"
	25	}
	26
	27	// Only allow 'none' alg type if UnsafeAllowNoneSignatureType is specified as the key
	28	func (m *signingMethodNone) Verify(signingString string, sig []byte, key interface{}) (err error) {
	29	// Key must be UnsafeAllowNoneSignatureType to prevent accidentally
	30	// accepting 'none' signing method
	31	if _, ok := key.(unsafeNoneMagicConstant); !ok {
	32	return NoneSignatureTypeDisallowedError
	33	}
	34	// If signing method is none, signature must be an empty string
	35	if len(sig) != 0 {
	36	return newError("'none' signing method with non-empty signature", ErrTokenUnverifiable)
	37	}
	38
	39	// Accept 'none' signing method.
	40	return nil
	41	}
	42
	43	// Only allow 'none' signing if UnsafeAllowNoneSignatureType is specified as the key
	44	func (m *signingMethodNone) Sign(signingString string, key interface{}) ([]byte, error) {
	45	if _, ok := key.(unsafeNoneMagicConstant); ok {
	46	return []byte{}, nil
	47	}
	48
	49	return nil, NoneSignatureTypeDisallowedError
	50	}