Client_private_key

zakaria_daoudi · July 22, 2024, 5:23pm

Hello

I am trying to set the configuration for the relying party correctly.

After generating the key pair and converting the public key to jwk which will be used to create the new client.

What should the CLIENT_PRIVATE_KEY, in the config.js in the mock relying party service, value be ?

Regards

HarikrishnaReddy · July 23, 2024, 4:01am

Dear @zakaria_daoudi , thank you for reaching out.
@syed.salman , please can you help on this?

Mahesh-Binayak · July 23, 2024, 1:18pm

Dear @zakaria_daoudi
Thanks for your patience

After you have used your public key in jwk format in the API,
kindly use the private-public keypair in base64 encoded format in the configuration (a secret under esignet namespace as client-private-key)
The pvt-pub key pair generally looks like below

{
    "p": "yhYIbbMIzJHchMnUtB7nygkJnNYOmFP3QBMhCAXzRF9UtBeKZApb8fkCCM-GQRGVV_xHk_og-2ABuPnOhTNdc0GHAF43PU_02LsJQ51sWYOi-bRaPF_-IdNd2TbMaOB-U7ZgYk2MHNfGtdQf8GxAhWqv87iBx04dK7TzFyY1oEE",
    "kty": "RSA",
    "q": "tEhB8ttndHxguLRrCM4tdLVWxkh4nkPqOHB14MJxQGtJ-evHAnqjyO9x09jVQGbI9BeY2ru1UQKOjgVJtrf6woFqygPPsmuVSvBGaBn-Znb9ORO5ziAQFeRlIlrBMsayfUfjZwydPmidvWOwvmUWudpoFjy-Zx5LRAi0sPMnJcc",
    "d": "XMwqYMtNROpt1BwQhy309eqryZq3ZBPyKeXKCeQRZdd3pMYFpkBiG5-2ConmF7EtnMJm_eea9sDeEogoM3nKYneicf41pGACfAo1_0Y7C6c5pCXZhNO4Gdp3hQBezzPZ15cxFgzE1HoMhdYmFa044HimUMoOurdpTx2t-VIt1PK8PXLywQTDFRR2qzOgRxbPwaT2r9x38ZE09e7Mv0uLp0RW49CWvmonzb9CJ1a0PoQsRCaAvbZiSXhxLRgQZIg9pm9QyPwk9JjoZFXK5RWEWE4VLFR4TYRcrTCdhxN7k6sYtVQl3sE1nzeoKkAHqM2yGde5S42-N2jDX3bPS1AFAQ",
    "e": "AQAB",
    "use": "sig",
    "qi": "q14zJIZhnTJ7HY-dTfK4INGaWugfkVRDZv_D2Bv1DjjKr0kFrM7aYFtDV90vt_67pbJgVrimHFEi3Up5rHrAkksFDscAcutvVvWdFOxfKUe1M9VqvZSE1Iu1gwoJgltk8mnqsXNh2BIVfyDrbypOAQUW31a3H-VEON5N4c578E0",
    "dp": "JrE5Q-e3k5OJ6VLLiwEv2BsK4CCMAtZwzK_c7zBUd47ZJPIs6SKioB3RKeayCdtYANSoz8hgcEDdk5Eg3ZgMGHk_Y-6mHPMmKikFiRCnIix2E-FYNZ8bhVZ27ZP0Z1A0X8rXgXrfjNYzkbTfuKTBZcobjkqRbpuiMjAfKxuBwQE",
    "alg": "RS256",
    "dq": "QLrtCvDiPX3nEIqfH8M_qPbvWDRvMow6Dde7S18lYLblEdopU2eLZTssCJ-DOiNtpc7PMEJTgOnFG5Mke3mljK8BE9W4flyIdya8cOZcZJf2pcbCYRM8E1A1S9eAJOYY8kicisSJtP3FHVos_L-5IDQeSVW4G7hR1_S0RBCaDsM",
    "n": "jlCILs7m4H_5eTlbeJrFyHo3pE_Mzz614k-BktdFojF3g0lsM_Av5oPftmNHc-mmrjqobpndy88xqHSdye3lTsOJceJbSZX142Swd2epjkPeYJapBXV0ygQ_4UeiQeNS0msLCsIWRLFfw6Gcy6aEO8VVU3NWzsIwkAG1NUHCVxBYZr6MDC1aMOXWLZ40rnC83xCz8tofCeZThfLFvRii216O0Ku3oCQ5z6h4Z0gCj9FeR2NUy-aqH8wdYiNHDaZ1qSScE-p7IxRSvQU3NKJEUjK5V_sl6bJiPGyOLemXPSyNqXrPlngGzKODzJ8axbouMa74tn_9w19iKul9kL_3hw"
}

zakaria_daoudi · July 23, 2024, 2:01pm

Hi

Thank you @Mahesh-Binayak for the reply.

Is there a tool to generate the above format from the private-public keypair ?

I tried this link jwkconvert, it gives the jwk from the public key used in the API but I can’t use it for the private-public jwk.

Regards

zakaria_daoudi · July 25, 2024, 8:03am

Hello,

any updates?

Thank you in advance.

Regards

Mahesh-Binayak · July 26, 2024, 7:45am

HI
@zakaria_daoudi
There are scripts and tools to convert the p12 into the jwk format, However I would suggest that you use the
https://mkjwk.org/ website to generate the keypair directly, rather than converting it from a keystore.
Thanks and regards

zakaria_daoudi · July 26, 2024, 8:35am

Hi

Thank you @Mahesh-Binayak.

Regards

Topic		Replies	Views
Update certificates for client XaOVhjFTX_H8UiZf-O1TuV4ChixshdO8RqghtA_cRUM e-Signet	7	114	July 22, 2024
Create esignet rely part e-Signet	5	267	September 15, 2023
IDA-AUTHENTICATION authentication-demo-ui Developer keymanager , security , certification	1	451	January 27, 2023
Oidc-client request fail e-Signet	13	295	July 25, 2024
How to set up e-signet in development purpose e-Signet	25	795	October 17, 2023

Client_private_key

Related topics