SignatureValidatorValve
Note
This valve can verify that a signature has been signed using a specific public key.
Properties
| Name | Description | Default value | Mandatory | Supports property expansion |
|---|---|---|---|---|
| key | The public key to validate the signature against | Yes | Yes | |
| signature | The signature to validate. Must be base64-encoded. | Yes | Yes | |
| data | The data (string) to verify the signature against. It's the binary representation that's validated, ie. String.getBytes() | Yes | Yes | |
| algorithm | The algorithm with which the signature has been calculated. | SHA256WithRSA | No | Yes |
Key
The key is expected to be a public key:
A ssh-key, starting with "ssh-rsa", or
A PEM-formatted key
Signature
The signature is expected to be base64-encoded.
Data
The data is a string. The signature is calculated on the binary representation. See Java 11 documentation on String.getBytes() for more details.
Algorithm
The algorithm with which the signature has been calculated. See Java 11 documentation on Signature Algorithms for more details.
{
"name": "SCIMBulkResponseValve",
"config": {
"key": "{{request.the_key}}",
"signature": "{{request.the_signature}}",
"data": "{{request.the_data}}",
"algorithm": "{{request.the_algorithm}}"
}
}