JWE

crypto/crypto.go

@@ -8,6 +8,7 @@ import (
 	"errors"
 	"io"
 )
+import "gopkg.in/square/go-jose.v2"
 
 const (
 	versionByte  = 0x31 // "1"
@@ -81,6 +82,30 @@ func Decrypt(input string, key []byte) (string, error) {
 	return string(plaintext), nil
 }
 
+func EncryptJWE(plaintext string, key []byte) (string, error) {
+	enc, err := jose.NewEncrypter(jose.A256GCM, jose.Recipient{Algorithm: jose.DIRECT, Key: key}, nil)
+	if err != nil {
+		return "", err
+	}
+	jwe, err := enc.Encrypt([]byte(plaintext))
+	if err != nil {
+		return "", err
+	}
+	return jwe.CompactSerialize()
+}
+
+func DecryptJWE(input string, key []byte) (string, error) {
+	jwe, err := jose.ParseEncrypted(input)
+	if err != nil {
+		return "", err
+	}
+	out, err := jwe.Decrypt(key)
+	if err != nil {
+		return "", err
+	}
+	return string(out), nil
+}
+
 func appendSlices(s ...[]byte) []byte {
 	var output []byte
 	for _, r := range s {

crypto/crypto_test.go

@@ -18,6 +18,16 @@ func TestEncryptDecrypt(t *testing.T) {
 	require.Equal(t, message, plaintext)
 }
 
+func TestEncryptDecryptJWE(t *testing.T) {
+	message := "this is a message or is it?"
+	ciphertext, err := EncryptJWE(message, []byte("AES256Key-32Characters1234567890"))
+	require.Nil(t, err)
+	plaintext, err := DecryptJWE(ciphertext, []byte("AES256Key-32Characters1234567890"))
+	require.Nil(t, err)
+	log.Println(ciphertext)
+	require.Equal(t, message, plaintext)
+}
+
 func TestEncryptExpectedOutputxxxxx(t *testing.T) {
 	// These values are taken from https://docs.pushbullet.com/#encryption
 	// The following expected ciphertext from the site was used as a baseline: