Skip to content

feat(oauth-e2ee): implement asymmetric key handshake and session-validated access wrapping (#91)#98

Open
annukumar123 wants to merge 2 commits into
Memact:mainfrom
annukumar123:feature/oauth-e2ee
Open

feat(oauth-e2ee): implement asymmetric key handshake and session-validated access wrapping (#91)#98
annukumar123 wants to merge 2 commits into
Memact:mainfrom
annukumar123:feature/oauth-e2ee

Conversation

@annukumar123

Copy link
Copy Markdown
Contributor

🔒 Overview

Introduces a dedicated client.e2ee namespace to support the design architecture for pairing asymmetric cryptographic key sessions with active OAuth bearer tokens.

🛠️ Changes Introduced

  • Added client.e2ee.initializeSession(token, keyPair) to safely register public keys under a validated OAuth context path (/v1/oauth/e2ee/keys).
  • Upgraded verifyAccess() to automatically detect active E2EE sessions and generate secure asymmetric payload signatures using RSA-PSS-SHA256.
  • Integrated isolated cryptographic verification workflows inside test/sdk.test.mjs ensuring robust assertion coverage.

#91

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant