Merge pull request #26 from pdsinterop/validateDPOP

added tests for validateDPOP, fixed some validations

Author: poef

src/Utils/DPop.php

@@ -9,23 +9,44 @@
 use Lcobucci\JWT\Signer\Key\InMemory;
 use Lcobucci\JWT\Signer\Rsa\Sha256;
 use Lcobucci\JWT\Validation\Constraint\LooseValidAt;
+use Lcobucci\JWT\Validation\Constraint\SignedWith;
 
 use Jose\Component\Core\JWK;
 use Jose\Component\Core\Util\ECKey;
 use Jose\Component\Core\Util\RSAKey;
 
+/**
+ * This class contains code to fetch the WebId from a request
+ * It also verifies that the request has a valid DPoP token
+ * that matches the access token
+ */
 class DPop {
+	
+	/**
+	 * This method fetches the WebId from a request and verifies
+	 * that the request has a valid DPoP token that matches
+	 * the access token.
+	 * @param  Psr\Http\Message\ServerRequestInterface $request Server Request
+	 * @return string the WebId, or "public" if no WebId is found
+	 * @throws \Exception "Invalid token" when the DPoP token is invalid
+	 * @throws \Exception "Missng DPoP token" when the DPoP token is missing, but the Authorisation header in the request specifies it
+	 */
 	public function getWebId($request) {
 		$auth = explode(" ", $request->getServerParams()['HTTP_AUTHORIZATION']);
 		$jwt = $auth[1] ?? false;
 
 		if (strtolower($auth[0]) == "dpop") {
 			$dpop = $request->getServerParams()['HTTP_DPOP'];
+			//@FIXME: check that there is just one DPoP token in the request
 			if ($dpop) {
 				$dpopKey = $this->getDpopKey($dpop, $request);
-				if (!$this->validateJwtDpop($jwt, $dpopKey)) {
-					throw new \Exception("Invalid token");
+				try {
+					$this->validateJwtDpop($jwt, $dpopKey);
+				} catch (Lcobucci\JWT\Validation\RequiredConstraintsViolated $e) {
+					throw new \Exception("Invalid token", $e);
 				}
+			} else {
+				throw new \Exception("Missing DPoP token");
 			}
 		}
 
@@ -38,16 +59,21 @@ public function getWebId($request) {
 		return $webId;
 	}
 
+	/**
+	 * Returns the "kid" from the "jwk" header in the DPoP token.
+	 * The DPoP token must be valid.
+	 * @param  string $dpop    The DPoP token
+	 * @param  Psr\Http\Message\ServerRequestInterface $request Server Request
+	 * @return string          the "kid" from the "jwk" header in the DPoP token.
+	 * @throws Lcobucci\JWT\Validation\RequiredConstraintsViolated
+	 */
 	public function getDpopKey($dpop, $request) {
-		//error_log("11");
 		$this->validateDpop($dpop, $request);
-		//error_log("22");
 
 		// 1.  the string value is a well-formed JWT,
 		$jwtConfig = $configuration = Configuration::forUnsecuredSigner();
 		$dpop = $jwtConfig->parser()->parse($dpop);
-		$jwk = $dpop->headers()->get("jwk");
-		//error_log(print_r($jwk, true));
+		$jwk  = $dpop->headers()->get("jwk");
 
 		return $jwk['kid'];
 	}
@@ -58,17 +84,22 @@ private function validateJwtDpop($jwt, $dpopKey) {
 		$cnf = $jwt->claims()->get("cnf");
 
 		if ($cnf['jkt'] == $dpopKey) {
-			//error_log("dpopKey matches");
 			return true;
 		}
-		//error_log("dpopKey mismatch");
-		//error_log(print_r($cnf, true));
-		//error_log($dpopKey);
 
+		//@FIXME: add check for "ath" claim in DPoP token, per https://datatracker.ietf.org/doc/html/draft-ietf-oauth-dpop#section-7
 		return false;
 	}
 
-	private function validateDpop($dpop, $request) {
+	/**
+	 * Validates that the DPOP token matches all requirements from 
+	 * https://datatracker.ietf.org/doc/html/draft-ietf-oauth-dpop#section-4.2
+	 * @param  string $dpop    The DPOP token
+	 * @param  Psr\Http\Message\ServerRequestInterface $request Server Request
+	 * @return bool            True if the DPOP token is valid, false otherwise
+	 * @throws Lcobucci\JWT\Validation\RequiredConstraintsViolated
+	 */
+	public function validateDpop($dpop, $request) {
 		/*
 			4.2.  Checking DPoP Proofs
 			   To check if a string that was received as part of an HTTP Request is
@@ -91,34 +122,43 @@ private function validateDpop($dpop, $request) {
 			   9.  that, within a reasonable consideration of accuracy and resource
 				   utilization, a JWT with the same "jti" value has not been
 				   received previously (see Section 9.1).
+			  10.  that, if used with an access token, it also contains the 'ath' 
+			       claim, with a hash of the access token
 		*/
-		//error_log("1");
 		// 1.  the string value is a well-formed JWT,
 		$jwtConfig = $configuration = Configuration::forUnsecuredSigner();
 		$dpop = $jwtConfig->parser()->parse($dpop);
 
-		//error_log("2");
 	    // 2.  all required claims are contained in the JWT,
 		$htm = $dpop->claims()->get("htm"); // http method
+		if (!$htm) {
+			throw new \Exception("missing htm");
+		}
 		$htu = $dpop->claims()->get("htu"); // http uri
+		if (!$htu) {
+			throw new \Exception("missing htu");
+		}
 		$typ = $dpop->headers()->get("typ");
+		if (!$typ) {
+			throw new \Exception("missing typ");
+		}
 		$alg = $dpop->headers()->get("alg");
+		if (!$alg) {
+			throw new \Exception("missing alg");
+		}
 
-		//error_log("3");
 		// 3.  the "typ" field in the header has the value "dpop+jwt",
 		if ($typ != "dpop+jwt") {
 			throw new \Exception("typ is not dpop+jwt");
 		}
 
-		//error_log("4");
 		// 4.  the algorithm in the header of the JWT indicates an asymmetric 
 		//	   digital signature algorithm, is not "none", is supported by the
 		//	   application, and is deemed secure,   
 		if ($alg == "none") {
 			throw new \Exception("alg is none");
 		}
 
-		//error_log("5");
 		// 5.  that the JWT is signed using the public key contained in the
 		//     "jwk" header of the JWT,
 		$jwk = $dpop->headers()->get("jwk");
@@ -130,59 +170,48 @@ private function validateDpop($dpop, $request) {
 			break;
 			case "ES256":
 				$pem = \Jose\Component\Core\Util\ECKey::convertToPEM($webTokenJwk);
-                                $signer = \Lcobucci\JWT\Signer\Ecdsa\Sha256::create();
+                $signer = \Lcobucci\JWT\Signer\Ecdsa\Sha256::create();
 			break;
 			default:
 				throw new \Exception("unsupported algorithm");
 			break;
 		}
 		$key = InMemory::plainText($pem);
-		$jwtConfig = Configuration::forSymmetricSigner($signer, InMemory::plainText($pem));
-
-// FIXME: Add constraints;
-//		$constraint = new LooseValidAt($clock, $leeway); // It will use the current time to validate (iat, nbf and exp)
-//		$jwtConfig->setValidationConstraints($constraint);
-//		if (!$jwtConfig->validator()->validate($dpop, ...$jwtConfig->validationConstraints())) {
-//			throw new \Exception("invalid signature");
-//		}
+		$validationConstraints = [];
+		$validationConstraints[] = new SignedWith($signer, $key);
 
-		//error_log("6");
 		// 6.  the "htm" claim matches the HTTP method value of the HTTP request
 		//	   in which the JWT was received (case-insensitive),
 		if (strtolower($htm) != strtolower($request->getMethod())) {
 			throw new \Exception("htm http method is invalid");
 		}
 
-		//error_log("7");
 		// 7.  the "htu" claims matches the HTTP URI value for the HTTP request
 		//     in which the JWT was received, ignoring any query and fragment
 		// 	   parts,
 		$requestedPath = (string)$request->getUri();
 		$requestedPath = preg_replace("/[?#].*$/", "", $requestedPath);
-		// FIXME: Remove this; it was disabled for testing with a server running on 443 internally but accessible on :444
-		$htu = str_replace(":444", "", $htu);
-		$requestedPath = str_replace(":444", "", $requestedPath);
 
 		//error_log("REQUESTED HTU $htu");
 		//error_log("REQUESTED PATH $requestedPath");
 		if ($htu != $requestedPath) { 
 			throw new \Exception("htu does not match requested path");
 		}
 
-		//error_log("8");
 		// 8.  the token was issued within an acceptable timeframe (see Section 9.1), and
 
 		$leeway = new \DateInterval("PT60S"); // allow 60 seconds clock skew
 		$clock = SystemClock::fromUTC();
-		$constraint = new LooseValidAt($clock, $leeway); // It will use the current time to validate (iat, nbf and exp)
-		$jwtConfig->setValidationConstraints($constraint);
-		if (!$jwtConfig->validator()->validate($dpop, ...$jwtConfig->validationConstraints())) {
-			throw new \Exception("token timing is invalid");
+		$validationsConstraints[] = new LooseValidAt($clock, $leeway); // It will use the current time to validate (iat, nbf and exp)
+		if (!$jwtConfig->validator()->validate($dpop, ...$validationConstraints)) {
+			$jwtConfig->validator()->assert($dpop, ...$validationConstraints); // throws an explanatory exception
 		}
 
 		// 9.  that, within a reasonable consideration of accuracy and resource utilization, a JWT with the same "jti" value has not been received previously (see Section 9.1).
-		// FIXME: Check if we know the jti;
-		//error_log("9");
+		// TODO: Check if we know the jti;
+
+		// 10. that, if used with an access token, it also contains the 'ath' claim, with a hash of the access token
+		// TODO: implement
 
 		return true;
 	}

src/Utils/Jwks.php

@@ -39,13 +39,13 @@ final public function jsonSerialize()
      *
      * @return array
      */
-    private function createKey(string $certificate, $subject) : array
+    private function createKey(string $certificate, $subject, $exponent) : array
     {
         return [
             JwkParameter::ALGORITHM => 'RS256',
             JwkParameter::KEY_ID => md5($certificate),
             JwkParameter::KEY_TYPE => 'RSA',
-            RsaParameter::PUBLIC_EXPONENT => 'AQAB', // Hard-coded as `Base64Url::encode($keyInfo['rsa']['e'])` tends to be empty...
+            RsaParameter::PUBLIC_EXPONENT => Base64Url::encode($exponent),
             RsaParameter::PUBLIC_MODULUS => Base64Url::encode($subject),
             JwkParameter::KEY_OPERATIONS => array("verify"),
         ];
@@ -70,7 +70,7 @@ private function create() : array
             $key = openssl_pkey_get_public($certificate);
             $keyInfo = openssl_pkey_get_details($key);
 
-            $jwks['keys'][] = $this->createKey($certificate, $keyInfo['rsa']['n']);
+            $jwks['keys'][] = $this->createKey($certificate, $keyInfo['rsa']['n'], $keyInfo['rsa']['e']);
         });
 
         return $jwks;

tests/fixtures/keys/wrong.key

@@ -0,0 +1,9 @@
+-----BEGIN PUBLIC KEY-----
+MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiGzr51tpH6F2HwMUSKCX
+zxyYfZyNJpKZWzNb3AMrNZTGlKDHHuVCkxNmHV0yFIxr3flRNmvxebLxsuYPAmCF
+ccV1r+1Pry244MHOIq3aq5mIRq+smVSPk350WpyO4jn8mOLOiH+CYe9LXmJSPBvO
+zZHwjEp+VmIGp5oDUZc5nnrf/UkQcj6jvKj0TanD8vGpDg9w3WbkQHWbFAMGPQdc
+YF5CZ68QPKPS86/aOdcnyoliSyIMn9BhrSXS8+Q3fCZHsYgejUjD7e0sx/+gBCrW
+MOuzbyD29mgbqETiSCZS1YLxgPnA34NRRKY06G0fMusXSGsXC+y7EU8JjTvTs4/L
+PwIDAQAB
+-----END PUBLIC KEY-----