# `jose` API Documentation
> "JSON Web Almost Everything" - JWA, JWS, JWE, JWT, JWK, JWKS for Node.js with minimal dependencies
**Table of Contents**
- [JWK (JSON Web Key)](#jwk-json-web-key)
- [JWKS (JSON Web Key Set)](#jwks-json-web-key-set)
- [JWT (JSON Web Token)](#jwt-json-web-token)
- [JWS (JSON Web Signature)](#jws-json-web-signature)
- [JWE (JSON Web Encryption)](#jwe-json-web-encryption)
- [errors](#errors)
## Sponsor
[` or `JWK.asKey()` compatible input.
All verify and decrypt operations require ``, ``, or `JWK.asKey()` compatible input.
Whenever you're re-using the same key input for an operation it is recommended that you instantiate
the `` instance. Here's how to get a `` instances generated or instantiated from existing key material.
```js
const { JWK } = require('jose')
// { asKey: [Function: asKey],
// generate: [AsyncFunction: generate],
// generateSync: [Function: generateSync] }
```
---
#### Class: `` and `` | `` | `` | ``
``, ``, `` and `` represent a key usable for JWS and JWE operations.
The `JWK.asKey()` method is used to retrieve a key representation of an existing key or secret.
`JWK.generate()` method is used to generate a new random key.
``, ``, `` and `` inherit methods from `` and in addition
to the properties documented below have the respective key component properties exported as
`` in their format defined by the specifications.
- `e, n` for Public RSA Keys
- `e, n, d, p, q, dp, dq, qi` for Private RSA Keys
- `crv, x, y` for Public EC Keys
- `crv, x, y, n` for Private EC Keys
- `crv, x` for Public OKP Keys
- `crv, x, n` for Private OKP Keys
- `k` for Symmetric keys
---
#### `key.kty`
Returns the key's JWK Key Type Parameter. 'EC', 'RSA', 'OKP' or 'oct' for the respective supported
key types.
- ``
---
#### `key.alg`
Returns the key's JWK Algorithm Parameter if set, undefined otherwise. If set the key is only usable
for that one algorithm and will fail when used with others.
- ``
---
#### `key.use`
Returns the key's JWK Key Use Parameter if set, undefined otherwise. Only 'sig' and 'enc' values
are supported. If set the key can only be used for either signing / verification or encryption
related operations (key management or encryption).
- ``
---
#### `key.kid`
Returns the key's JWK Key ID Parameter if set, if not set it will be calculated using the method
defined in [RFC7638][spec-thumbprint].
- ``
---
#### `key.x5c`
Returns the key's X.509 Certificate Chain Parameter if set
- `string[]`
---
#### `key.x5t`
Returns the key's X.509 Certificate SHA-1 Thumbprint Parameter if set. This
property can be either set manually by the JWK producer or left to the library to compute based
on the first certificate in the key's `x5c`, the latter is preferred.
- ``
---
#### `key['x5t#S256']`
Returns the key's X.509 Certificate SHA-256 Thumbprint Parameter if set. This
property can be either set manually by the JWK producer or left to the library to compute based
on the first certificate in the key's `x5c`, the latter is preferred.
- ``
---
#### `key.key_ops`
Returns the key's JWK Key Operations Parameter if set. If set the key can only be used for the
specified operations. Supported values are 'sign', 'verify', 'encrypt', 'decrypt', 'wrapKey',
'unwrapKey' and 'deriveKey'.
- `string[]`
---
#### `key.thumbprint`
Returns the key's JWK Key thumbprint calculated using the method defined in [RFC7638][spec-thumbprint].
- ``
---
#### `key.type`
Returns the type of key. One of 'private', 'public' or 'secret'
- ``
---
#### `key.public`
Returns true/false if the key is asymmetric and public. Returns false for symmetric keys.
- ``
---
#### `key.private`
Returns true/false if the key is asymmetric and private. Returns false for symmetric keys.
- ``
#### `key.secret`
Returns true/false if the key is symmetric. Returns false for asymmetric keys.
- ``
---
#### `key.keyObject`
Returns the underlying [`KeyObject`](https://nodejs.org/api/crypto.html#crypto_class_keyobject)
instance. Throws `JOSENotSupported` when KeyObject API is not supported in the Node.js runtime.
- ``
---
#### `key.algorithms([operation])`
Returns a [Set](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/Set)
of algorithms the key may perform.
- `operation`: `` Must be one of 'encrypt', 'decrypt', 'sign', 'verify', 'wrapKey',
'unwrapKey'
- Returns: `Set`
Example
---
#### `key.toJWK([private])`
Exports the key to a JSON Web Key formatted object.
- `private`: `` When true exports keys with its private components. **Default:** 'false'
- Returns: ``
Example
---
#### `key.toPEM([private[, encoding]])`
Exports an asymmetric key as a PEM string with specified encoding and optional encryption for private keys.
- `private`: `` When true exports keys as private. **Default:** 'false'
- `encoding`: `` See below
- Returns: ``
For public key export, the following encoding options can be used:
- `type`: `` Must be one of 'pkcs1' (RSA only) or 'spki'. **Default:** 'spki'
For private key export, the following encoding options can be used:
- `type`: `` Must be one of 'pkcs1' (RSA only), 'pkcs8' or 'sec1' (EC only). **Default:** 'pkcs8'
- `cipher`: `` If specified, the private key will be encrypted with the given cipher and
passphrase using PKCS#5 v2.0 password based encryption. **Default**: 'undefined' (no encryption)
- `passphrase`: `` | `` The passphrase to use for encryption. **Default**: 'undefined' (no encryption)
Example
---
#### `JWK.asKey(key[, options])` asymmetric key import
Imports an asymmetric private or public key. Supports importing JWK formatted keys (private, public,
secrets), `pem` and `der` formatted private and public keys, `pem` formatted X.509 certificates.
Private keys may also be passphrase protected.
- `key`: `` | `` | `` | ``
- `key`: `` | ``
- `format`: `` Must be 'pem' or 'der'. **Default:** 'pem'.
- `type`: `` Must be 'pkcs1', 'pkcs8', or 'sec1' for private keys, 'pkcs1', 'spki' for
public keys. This option is required only if the format is 'der' and ignored if it is 'pem'.
- `passphrase`: `` | `` The passphrase to use for decryption.
- `options`: ``
- `alg`: `` option identifies the algorithm intended for use with the key.
- `kid`: `` Key ID Parameter. When not provided is computed using the method defined in
[RFC7638][spec-thumbprint]
- `use`: `` option indicates whether the key is to be used for encrypting & decrypting
data or signing & verifying data. Must be 'sig' or 'enc'.
- Returns: `` | `` | ``
See the underlying Node.js API for details on importing private and public keys in the different
formats
- [crypto.createPrivateKey(key)](https://nodejs.org/api/crypto.html#crypto_crypto_createprivatekey_key)
- [crypto.createPublicKey(key)](https://nodejs.org/api/crypto.html#crypto_crypto_createpublickey_key)
Example
---
#### `JWK.asKey(secret[, options])` secret key import
Imports a symmetric key.
- `secret`: `` | `` | ``
- `options`: ``
- `alg`: `` option identifies the algorithm intended for use with the key.
- `kid`: `` Key ID Parameter. When not provided is computed using the method defined in
[RFC7638][spec-thumbprint]
- `use`: `` option indicates whether the key is to be used for encrypting & decrypting
data or signing & verifying data. Must be 'sig' or 'enc'.
- Returns: ``
Example
---
#### `JWK.asKey(jwk[, options])` JWK-formatted key import
Imports a JWK formatted key. This supports JWK formatted RSA, EC, OKP and oct keys. Asymmetrical
keys may be both private and public.
- `jwk`: ``
- `kty`: `` Key type. Must be 'RSA', 'EC', 'OKP' or 'oct'.
- `alg`: `` option identifies the algorithm intended for use with the key.
- `use`: `` option indicates whether the key is to be used for encrypting & decrypting
data or signing & verifying data. Must be 'sig' or 'enc'.
- `kid`: `` Key ID Parameter. When not provided is computed using the method defined in
[RFC7638][spec-thumbprint]
- `e`, `n` properties as `` for RSA public keys
- `e`, `n`, `d`, `p`, `q`, `dp`, `dq`, `qi` properties as `` for RSA private keys
- `e`, `n`, `d` properties as `` for RSA private keys without optimization parametes (only
with `calculateMissingRSAPrimes` option, see below)
- `crv`, `x`, `y` properties as `` for EC public keys
- `crv`, `x`, `y`, `d` properties as `` for EC private keys
- `crv`, `x`, properties as `` for OKP public keys
- `crv`, `x`, `d` properties as `` for OKP private keys
- `k` properties as `` for secret oct keys
- `options`: ``
- `calculateMissingRSAPrimes`: `` **Default** 'false'. This option is really only in
effect when importing private RSA JWK keys, by default, keys without the optimization private
key parameters (p, q, dp, dq, qi) won't imported because their calculation is heavy and prone
to blocking the process. Setting this option to true will enable these keys to be imported,
albeit at your own risk. Depending on the key size the calculation takes long and it should
only be used for JWK keys from trusted sources.
- Returns: `` | `` | `` | ``
Example
---
#### `JWK.generate(kty[, crvOrSize[, options[, private]]])` generating new keys
Securely generates a new RSA, EC, OKP or oct key.
- `kty`: `` Key type. Must be 'RSA', 'EC', 'OKP' or 'oct'.
- `crvOrSize`: `` | `` key's bit size or in case of OKP and EC keys the curve
**Default:** 2048 for RSA, 'P-256' for EC, 'Ed25519' for OKP and 256 for oct.
- `options`: ``
- `alg`: `` Key Algorithm Parameter. It identifies the algorithm intended for use with the
key.
- `kid`: `` Key ID Parameter. When not provided is computed using the method defined in
[RFC7638][spec-thumbprint].
- `use`: `` Public Key Use Parameter. Indicates whether the key is to be used for
encrypting & decrypting data or signing & verifying data. Must be 'sig' or 'enc'.
- `key_ops`: `string[]` Key Operations Parameter. If set, the key can only be used for the
specified operations. Supported values are 'sign', 'verify', 'encrypt', 'decrypt', 'wrapKey',
'unwrapKey' and 'deriveKey'.
- `private`: `` **Default** 'true'. Is the resulting key private or public (when
asymmetrical)
- Returns: `Promise` | `Promise` | `Promise` | `Promise`
Example
---
#### `JWK.generateSync(kty[, crvOrSize[, options[, private]]])`
Synchronous version of `JWK.generate()`
- `kty`: `` Key type. Must be 'RSA', 'EC', 'OKP' or 'oct'.
- `crvOrSize`: `` | `` key's bit size or in case of OKP and EC keys the curve.
**Default:** 2048 for RSA, 'P-256' for EC, 'Ed25519' for OKP and 256 for oct.
- `options`: ``
- `alg`: `` Key Algorithm Parameter. It identifies the algorithm intended for use with the
key.
- `kid`: `` Key ID Parameter. When not provided is computed using the method defined in
[RFC7638][spec-thumbprint].
- `use`: `` Public Key Use Parameter. Indicates whether the key is to be used for
encrypting & decrypting data or signing & verifying data. Must be 'sig' or 'enc'.
- `key_ops`: `string[]` Key Operations Parameter. If set, the key can only be used for the
specified operations. Supported values are 'sign', 'verify', 'encrypt', 'decrypt', 'wrapKey',
'unwrapKey' and 'deriveKey'.
- `private`: `` **Default** 'true'. Is the resulting key private or public (when
asymmetrical)
- Returns: `` | `` | `` | ``
Example
---
#### `JWK.isKey(object)`
Returns 'true' if the value is an instance of ``.
- `object`: ``
- Returns: ``
---
#### `JWK.None`
`JWK.None` is a special key object that can be used with JWS/JWT sign and verify whenever you want
to opt-in for the `none` Unsecured JWS algorithm. Using this key fulfills the requirements given by
the [specification](https://tools.ietf.org/html/rfc7518#section-3.6), namely:
- Implementations MUST NOT accept Unsecured JWSs by default.
- Implementations that support Unsecured JWSs MUST NOT accept such objects as valid unless the
application specifies that it is acceptable for a specific object to not be integrity protected.
```js
const { JWK: { None, generateSync }, JWT, JWS } = require('jose')
const anActualKey = generateSync('RSA')
const signedJWT = JWT.sign({ sub: 'John Doe' }, anActualKey)
JWT.verify(signedJWT, None)
// Thrown:
// JWKKeySupport: the key does not support PS256 verify algorithm
// name: 'JWKKeySupport',
// code: 'ERR_JWK_KEY_SUPPORT'
const unsecuredJWT = JWT.sign({ sub: 'John Doe' }, None)
// eyJhbGciOiJub25lIn0.eyJzdWIiOiJKb2huIERvZSIsImlhdCI6MTU3OTc5NDM2Mn0.
JWT.verify(unsecuredJWT, anActualKey)
// Thrown:
// JWKKeySupport: the key does not support none verify algorithm
// name: 'JWKKeySupport',
// code: 'ERR_JWK_KEY_SUPPORT'
JWT.verify(unsecuredJWT, None)
// { sub: 'John Doe', iat: 1579794362 }
const unsecuredJWS = JWS.sign('foobar', None)
// eyJhbGciOiJub25lIn0.Zm9vYmFy.
JWS.verify(unsecuredJWS, anActualKey)
// Thrown:
// JWKKeySupport: the key does not support none verify algorithm
// name: 'JWKKeySupport',
// code: 'ERR_JWK_KEY_SUPPORT'
JWS.verify(unsecuredJWS, None)
// foobar
```
---
## JWKS (JSON Web Key Set)
- [Class: ](#class-jwkskeystore)
- [new JWKS.KeyStore([keys])](#new-jwkskeystorekeys)
- [keystore.size](#keystoresize)
- [keystore.all([parameters])](#keystoreallparameters)
- [keystore.get([parameters])](#keystoregetparameters)
- [keystore.add(key)](#keystoreaddkey)
- [keystore.remove(key)](#keystoreremovekey)
- [keystore.generate(...)](#keystoregenerate)
- [keystore.generateSync(...)](#keystoregeneratesync)
- [keystore.toJWKS([private])](#keystoretojwksprivate)
- [JWKS.asKeyStore(jwks[, options])](#jwksaskeystorejwks-options)
```js
const { JWKS } = require('jose')
// { KeyStore: [Function: KeyStore] }
```
#### Class: ``
`JWKS.KeyStore` is an abstraction representing a set of JWKs, a keystore instance may be queried for
keys matching specific parameters. Keystores may be instantiated either populated, or empty and
there are lifecycle `keystore.remove()` and `keystore.add()` methods for adding/removing keys from
an existing store.
---
#### `new JWKS.KeyStore([keys])`
Creates a new KeyStore, either empty or populated.
- `keys`: `` Array of key keys instantiated by `JWK.asKey()`
- Returns: ``
---
#### `keystore.size`
Returns the number of keys in the keystore.
- ``
---
#### `keystore.all([parameters])`
Retrieves an array of keys matching the provided parameters, returns all if none are provided. The
returned array is sorted by relevance based on the parameters. Keys with the exact algorithm or use
specified by the parameters are first.
- `parameters`: ``
- `kty`: `` Key Type to filter for.
- `crv`: `` Key Curve to filter for. (for EC and OKP keys)
- `alg`: `` Key supported algorithm to filter for.
- `kid`: `` Key ID to filter for.
- `thumbprint`: `` JWK Key thumbprint to filter for.
- `use`: `` Filter keys with the specified use defined. Keys missing "use" parameter will
be matched but rank lower then ones with an exact match.
- `key_ops`: `string[]` Filter keys with specified key_ops defined (if key_ops is defined on the
key). Keys missing "key_ops" parameter will be matched but rank lower then ones with matching
entries.
- `x5t`: `` Key X.509 Certificate SHA-1 Thumbprint to filter for.
- `x5t#S256`: `` Key X.509 Certificate SHA-256 Thumbprint to filter for.
- Returns: `` Array of key instances or an empty array when none are matching the parameters.
---
#### `keystore.get([parameters])`
Retrieves a single key matching the provided parameters. The most relevant Key based on the
parameters is returned.
- `parameters`: ``
- `kty`: `` Key Type to filter for.
- `crv`: `` Key Curve to filter for. (for EC and OKP keys)
- `alg`: `` Key supported algorithm to filter for.
- `kid`: `` Key ID to filter for.
- `thumbprint`: `` JWK Key thumbprint to filter for.
- `use`: `` Filter keys with the specified use defined. Keys missing "use" parameter will
be matched but rank lower then ones with an exact match.
- `key_ops`: `string[]` Filter keys with specified key_ops defined (if key_ops is defined on the
key). Keys missing "key_ops" parameter will be matched but rank lower then ones with matching
entries.
- `x5t`: `` Key X.509 Certificate SHA-1 Thumbprint to filter for.
- `x5t#S256`: `` Key X.509 Certificate SHA-256 Thumbprint to filter for.
- Returns: `` | `` | `` | `` | `undefined`
---
#### `keystore.add(key)`
Adds a key instance to the store unless it is already included.
- `key`: `` | `` | `` | ``
---
#### `keystore.remove(key)`
Ensures a key is removed from a store.
- `key`: `` | `` | `` | ``
---
#### `keystore.generate(...)`
Asynchronously generates new random key and automatically adds it to the store. See `JWK.generate()`
for the API.
---
#### `keystore.generateSync(...)`
Synchronous version of `keystore.generate()`.
---
#### `keystore.toJWKS([private])`
Exports the keystore to a JSON Web Key Set formatted object.
- `private`: `` When true exports private keys with their private components. **Default:** 'false'
- Returns: ``
---
#### `JWKS.asKeyStore(jwks[, options])`
Creates a new KeyStore from a JSON Web Key Set.
- `jwks`: `` JWKS formatted object (`{ keys: [{ kty: '...', ... }, ...] }`)
- `options`: ``
- `ignoreErrors`: `` **Default** 'false'. This will make it so that keys
unsupported by your Node.js runtime version (or otherwise faulty keys) get swallowed.
- `calculateMissingRSAPrimes`: `` **Default** 'false'. This option is really only in
effect when the JWKS contains private RSA JWK keys, by default, keys without the optimization
private key parameters (p, q, dp, dq, qi) won't imported because their calculation is heavy and
prone to blocking the process. Setting this option to true will enable these keys to be
imported, albeit at your own risk. Depending on the key size the calculation takes long and it
should only be used for JWKS from trusted sources.
- Returns: ``
Example
------
## JWT (JSON Web Token)
- [JWT.sign(payload, key[, options])](#jwtsignpayload-key-options)
- [JWT.verify(token, keyOrStore[, options])](#jwtverifytoken-keyorstore-options)
- [JWT.decode(token[, options])](#jwtdecodetoken-options)
- [JWT.AccessToken.verify(token, keyOrStore, options)](#jwtaccesstokenverifytoken-keyorstore-options)
- [JWT.IdToken.verify(token, keyOrStore, options)](#jwtidtokenverifytoken-keyorstore-options)
- [JWT.LogoutToken.verify(token, keyOrStore, options)](#jwtlogouttokenverifytoken-keyorstore-options)
```js
const { JWT } = require('jose')
// { decode: [Function], sign: [Function], verify: [Function] }
```
#### `JWT.sign(payload, key[, options])`
Serializes and signs the payload as JWT using the provided private or symmetrical key. The Algorithm
that will be used to sign with is either provided as part of the 'options.algorithm',
'options.header.alg' or inferred from the provided `` instance.
- `payload`: `` JWT Claims Set
- `key`: `` The key to sign with. Any `JWK.asKey()` compatible input also works.
`` instances are recommended for performance purposes when re-using the same key for
every operation.
- `options`: ``
- `algorithm`: `` The algorithm to use
- `audience`: `` | `string[]` JWT Audience, "aud" claim value, if provided it will replace
"aud" found in the payload
- `expiresIn`: `` JWT Expiration Time, "exp" claim value, specified as string which is
added to the current unix epoch timestamp e.g. `24 hours`, `20 m`, `60s`, etc., if provided it
will replace Expiration Time found in the payload
- `header`: `` JWT Header object
- `iat`: `` When true it pushes the "iat" to the JWT Header. **Default:** 'true'
- `issuer`: `` JWT Issuer, "iss" claim value, if provided it will replace "iss" found in
the payload
- `jti`: `` JWT ID, "jti" claim value, if provided it will replace "jti" found in the
payload
- `kid`: `` When true it pushes the key's "kid" to the JWT Header. **Default:** 'true' for asymmetric keys, 'false' for symmetric keys.
- `nonce`: `` ID Token Nonce, "nonce" claim value, if provided it will replace "nonce"
found in the payload. See [OpenID Connect Core 1.0][connect-core] for details.
- `notBefore`: `` JWT Not Before, "nbf" claim value, specified as string which is added to
the current unix epoch timestamp e.g. `24 hours`, `20 m`, `60s`, etc., if provided it will
replace Not Before found in the payload
- `now`: `` Date object to be used instead of the current unix epoch timestamp.
**Default:** 'new Date()'
- `subject`: `` JWT subject, "sub" claim value, if provided it will replace "sub" found in
the payload
- Returns: ``
Example
---
#### `JWT.verify(token, keyOrStore[, options])`
Verifies the claims and signature of a JSON Web Token.
- `token`: `` JSON Web Token to verify
- `keyOrStore`: `` | `` The key or store to verify with. When
`` instance is provided a selection of possible candidate keys will be done and the
operation will succeed if just one key matches. Any `JWK.asKey()` compatible input also works.
`` instances are recommended for performance purposes when re-using the same key for
every operation.
- `options`: ``
- `algorithms`: `string[]` Array of expected signing algorithms. JWT signed with an algorithm not
found in this option will be rejected. **Default:** accepts all algorithms available on the
passed key (or keys in the keystore)
- `profile`: `` To validate a JWT according to a specific profile, e.g. as an ID Token.
Supported values are 'id_token', 'at+JWT', and 'logout_token'. **Default:** 'undefined'
(generic JWT). Combine this option with the other ones like `maxAuthAge` and `nonce` or
`subject` depending on the use-case.
- `audience`: `` | `string[]` Expected audience value(s). When string an exact match must
be found in the payload, when array at least one must be matched.
- `clockTolerance`: `` Clock Tolerance for comparing timestamps, provided as timespan
string e.g. `120s`, `2 minutes`, etc. **Default:** no clock tolerance
- `complete`: `` When false only the parsed payload is returned, otherwise an object with
a parsed header, payload, the key that verified and the base64url encoded signature will be
returned
**Default:** 'false'
- `crit`: `string[]` Array of Critical Header Parameter names to recognize. **Default:** '[]'
- `ignoreExp`: `` When true will not be validating the "exp" claim value to be in the
future from now. **Default:** 'false'
- `ignoreIat`: `` When true will not be validating the "iat" claim value to be in the
past from now if expiration is not present. **Default:** 'false'
- `ignoreNbf`: `` When true will not be validating the "nbf" claim value to be in the
past from now. **Default:** 'false'
- `issuer`: `` Expected issuer value. An exact match must be found in the payload.
- `jti`: `` Expected jti value. An exact match must be found in the payload.
- `maxAuthAge`: `` When provided the payload is checked to have the "auth_time" claim and
its value is validated, provided as timespan string e.g. `30m`, `24 hours`. See
[OpenID Connect Core 1.0][connect-core] for details. Do not confuse with maxTokenAge option.
- `maxTokenAge`: `` When provided the payload is checked to have the "iat" claim and its
value is validated not to be older than the provided timespan string e.g. `30m`, `24 hours`.
Do not confuse with maxAuthAge option.
- `nonce`: `` Expected nonce value. An exact match must be found in the payload. See
[OpenID Connect Core 1.0][connect-core] for details.
- `now`: `` Date object to be used instead of the current unix epoch timestamp.
**Default:** 'new Date()'
- `subject`: `` Expected subject value. An exact match must be found in the payload.
- Returns: ``
Example
---
#### `JWT.decode(token[, options])`
Decodes the JWT payload and optionally the header. Does not perform any claim validations what so
ever.
- `token`: `` JSON Web Token to decode
- `options`: ``
- `complete`: `` When false only the parsed payload is returned, otherwise an object with
a parsed header, payload and the base64url encoded signature will be returned **Default:** 'false'
- Returns: ``
Example
---
#### `JWT.AccessToken.verify(token, keyOrStore, options])`
A shorthand for [`JWT.verify`](#jwtverifytoken-keyorstore-options) with the `profile` option set to `access_token`.
Example
---
#### `JWT.IdToken.verify(token, keyOrStore, options])`
A shorthand for [`JWT.verify`](#jwtverifytoken-keyorstore-options) with the `profile` option set to `id_token`.
Example
---
#### `JWT.LogoutToken.verify(token, keyOrStore, options])`
A shorthand for [`JWT.verify`](#jwtverifytoken-keyorstore-options) with the `profile` option set to `logout_token`.
Example
---
## JWS (JSON Web Signature)
- [Class: <JWS.Sign>](#class-jwssign)
- [new JWS.Sign(payload)](#new-jwssignpayload)
- [sign.recipient(key[, protected[, header]])](#signrecipientkey-protected-header)
- [sign.sign(serialization)](#signsignserialization)
- [JWS.sign(payload, key[, protected])](#jwssignpayload-key-protected)
- [JWS.sign.flattened(payload, key[, protected[, header]])](#jwssignflattenedpayload-key-protected-header)
- [JWS.verify(jws, keyOrStore[, options])](#jwsverifyjws-keyorstore-options)
The `` module provides methods required to sign or verify JSON Web Signatures in either one of
the defined serializations.
```js
const { JWS } = require('jose')
// { Sign: [Function: Sign],
// sign:
// { [Function: bound single]
// flattened: [Function: bound single] },
// verify: [Function: bound jwsVerify] }
```
#### Class: ``
`` is the class used when you need to produce a JWS for multiple recipients (with multiple
signatures of the same payload) using the General JWS JSON Serialization Syntax.
Example
---
#### `new JWS.Sign(payload)`
Creates a new Sign object for the provided payload, intended for one or more recipients.
- `payload`: `` | `` | `` The payload that will be signed. When ``
it will be automatically serialized to JSON before signing
- Returns: ``
---
#### `sign.recipient(key[, protected[, header]])`
Adds a recipient to the JWS, the Algorithm that will be used to sign with is either provided as part
of the Protected or Unprotected Header or inferred from the provided `` instance.
- `key`: `` The key to sign with. Any `JWK.asKey()` compatible input also works.
`` instances are recommended for performance purposes when re-using the same key for
every operation.
- `protected`: `` Protected Header for this recipient
- `header`: `` Unprotected Header for this recipient
---
#### `sign.sign(serialization)`
Performs the signing operations for each registered recipient and returns the final JWS
representation in the serialization requested. The JWS is validated for conformance during this
step. Please note that only 'general' and 'flattened' serialization supports Unprotected
Per-Recipient Header and only the 'general' serialization supports multiple recipients. See
`` and `` for shorthand methods to sign for a single recipient.
- `serialization`: `` JWS Serialization. Must be one of 'general', 'flattened', 'compact'
- Returns: `` | ``
---
#### `JWS.sign(payload, key[, protected])`
Performs the signing operation and 'compact' JWS serialization of the result. The Algorithm that
will be used to sign with is either provided as part of the Protected Header or inferred from the
provided `` instance.
- `payload`: `` | `` | `` The payload that will be signed. When ``
it will be automatically serialized to JSON before signing
- `key`: `` The key to sign with. Any `JWK.asKey()` compatible input also works.
`` instances are recommended for performance purposes when re-using the same key for
every operation.
- `protected`: `` Protected Header
- Returns: ``
Example
---
#### `JWS.sign.flattened(payload, key[, protected[, header]])`
Performs the signing operation and 'flattened' JWS serialization of the result. The Algorithm that
will be used to sign with is either provided as part of the Protected or Unprotected Header or
inferred from the provided `` instance.
- `payload`: `` | `` | `` The payload that will be signed. When ``
it will be automatically serialized to JSON before signing
- `key`: `` The key to sign with. Any `JWK.asKey()` compatible input also works.
`` instances are recommended for performance purposes when re-using the same key for
every operation.
- `protected`: `` Protected Header
- `header`: `` Unprotected Header
- Returns: ``
Example
---
#### `JWS.verify(jws, keyOrStore[, options])`
Verifies the provided JWS in either serialization with a given `` or ``
- `jws`: `` | `` The JWS to verify. This must be a valid JWS.
- `keyOrStore`: `` | `` The key or store to verify with. When
`` instance is provided a selection of possible candidate keys will be done and the
operation will succeed if just one key or signature (in case of General JWS JSON Serialization
Syntax) matches. Any `JWK.asKey()` compatible input also works. `` instances are
recommended for performance purposes when re-using the same key for every operation.
- `options`: ``
- `algorithms`: `string[]` Array of Algorithms to accept, when the signature does not use an
algorithm from this list the verification will fail. **Default:** 'undefined' - accepts all
algorithms available on the keys
- `complete`: `` When true returns a complete object with the parsed headers and payload
instead of just the verified payload. **Default:** 'false'
- `parse`: `` When true attempts to JSON.parse the payload and falls back to returning
the payload encoded using the specified encoding. When false returns the payload as a Buffer.
**Default:** 'true'
- `encoding`: `string` The encoding to use for the payload. **Default:** 'utf8'
- `crit`: `string[]` Array of Critical Header Parameter names to recognize. **Default:** '[]'
- Returns: `` | ``
][sponsor-auth0] If you want to quickly add secure token-based authentication to Node.js projects, feel free to check Auth0’s free plan at [auth0.com/overview][sponsor-auth0].