NATS.Jwt
1.0.0-preview.3
Prefix Reserved
.NET 8.0
This package targets .NET 8.0. The package is compatible with this framework or higher.
.NET Standard 2.0
This package targets .NET Standard 2.0. The package is compatible with this framework or higher.
This is a prerelease version of NATS.Jwt.
There is a newer prerelease version of this package available.
See the version list below for details.
See the version list below for details.
dotnet add package NATS.Jwt --version 1.0.0-preview.3
NuGet\Install-Package NATS.Jwt -Version 1.0.0-preview.3
This command is intended to be used within the Package Manager Console in Visual Studio, as it uses the NuGet module's version of Install-Package.
<PackageReference Include="NATS.Jwt" Version="1.0.0-preview.3" />
For projects that support PackageReference, copy this XML node into the project file to reference the package.
paket add NATS.Jwt --version 1.0.0-preview.3
The NuGet Team does not provide support for this client. Please contact its maintainers for support.
#r "nuget: NATS.Jwt, 1.0.0-preview.3"
#r directive can be used in F# Interactive and Polyglot Notebooks. Copy this into the interactive tool or source code of the script to reference the package.
// Install NATS.Jwt as a Cake Addin #addin nuget:?package=NATS.Jwt&version=1.0.0-preview.3&prerelease // Install NATS.Jwt as a Cake Tool #tool nuget:?package=NATS.Jwt&version=1.0.0-preview.3&prerelease
The NuGet Team does not provide support for this client. Please contact its maintainers for support.
NATS JWT .NET
IMPORTANT: This is a pre-release version of the library. The API is subject to change.
This is a .NET implementation of the JWT library for the NATS ecosystem.
TODO
- Add public API analyzer
- Remove No-warnings from build
- Add more tests
- Enable code coverage
- Add more examples
- Add more documentation
Installation
You can install the package via NuGet:
dotnet add package NATS.Jwt --prerelease
Usage
var jwt = new NatsJwt();
// create an operator key pair (private key)
var okp = KeyPair.CreatePair(PrefixByte.Operator);
var opk = okp.GetPublicKey();
// create an operator claim using the public key for the identifier
var oc = jwt.NewOperatorClaims(opk);
oc.Name = "Example Operator";
// add an operator signing key to sign accounts
var oskp = KeyPair.CreatePair(PrefixByte.Operator);
var ospk = oskp.GetPublicKey();
// add the signing key to the operator - this makes any account
// issued by the signing key to be valid for the operator
oc.Operator.SigningKeys = [ospk];
// self-sign the operator JWT - the operator trusts itself
var operatorJwt = jwt.Encode(oc, okp);
// create an account keypair
var akp = KeyPair.CreatePair(PrefixByte.Account);
var apk = akp.GetPublicKey();
// create the claim for the account using the public key of the account
var ac = jwt.NewAccountClaims(apk);
ac.Name = "Example Account";
var askp = KeyPair.CreatePair(PrefixByte.Account);
var aspk = askp.GetPublicKey();
// add the signing key (public) to the account
ac.Account.SigningKeys = [aspk];
var accountJwt = jwt.Encode(ac, oskp);
// now back to the account, the account can issue users
// need not be known to the operator - the users are trusted
// because they will be signed by the account. The server will
// look up the account get a list of keys the account has and
// verify that the user was issued by one of those keys
var ukp = KeyPair.CreatePair(PrefixByte.User);
var upk = ukp.GetPublicKey();
var uc = jwt.NewUserClaims(upk);
// since the jwt will be issued by a signing key, the issuer account
// must be set to the public ID of the account
uc.User.IssuerAccount = apk;
var userJwt = jwt.Encode(uc, askp);
// the seed is a version of the keypair that is stored as text
var userSeed = ukp.GetSeed();
var conf = $$"""
operator: {{operatorJwt}}
resolver: MEMORY
resolver_preload: {
{{apk}}: {{accountJwt}}
}
""";
// generate a creds formatted file that can be used by a NATS client
const string credsPath = $"example_user.creds";
File.WriteAllText(credsPath, jwt.FormatUserConfig(userJwt, userSeed));
// now we are going to put it together into something that can be run
// we create a file to store the server configuration, the creds
// file and a small program that uses the creds file
const string confPath = $"example_server.conf";
File.WriteAllText(confPath, conf);
// run the server:
// > nats-server -c example_server.conf
// Connect as user
var authOpts = new NatsAuthOpts { CredsFile = credsPath };
var opts = new NatsOpts { Url = server.Url, AuthOpts = authOpts };
await using var nats = new NatsConnection(opts);
await nats.PingAsync();
About
A JWT implementation that uses nkeys to digitally sign JWT tokens for the NATS ecosystem.
See also https://github.com/nats-io/jwt
| Product | Versions Compatible and additional computed target framework versions. |
|---|---|
| .NET | net5.0 was computed. net5.0-windows was computed. net6.0 was computed. net6.0-android was computed. net6.0-ios was computed. net6.0-maccatalyst was computed. net6.0-macos was computed. net6.0-tvos was computed. net6.0-windows was computed. net7.0 was computed. net7.0-android was computed. net7.0-ios was computed. net7.0-maccatalyst was computed. net7.0-macos was computed. net7.0-tvos was computed. net7.0-windows was computed. net8.0 is compatible. net8.0-android was computed. net8.0-browser was computed. net8.0-ios was computed. net8.0-maccatalyst was computed. net8.0-macos was computed. net8.0-tvos was computed. net8.0-windows was computed. net9.0 was computed. net9.0-android was computed. net9.0-browser was computed. net9.0-ios was computed. net9.0-maccatalyst was computed. net9.0-macos was computed. net9.0-tvos was computed. net9.0-windows was computed. |
| .NET Core | netcoreapp2.0 was computed. netcoreapp2.1 was computed. netcoreapp2.2 was computed. netcoreapp3.0 was computed. netcoreapp3.1 was computed. |
| .NET Standard | netstandard2.0 is compatible. netstandard2.1 was computed. |
| .NET Framework | net461 was computed. net462 was computed. net463 was computed. net47 was computed. net471 was computed. net472 was computed. net48 was computed. net481 was computed. |
| MonoAndroid | monoandroid was computed. |
| MonoMac | monomac was computed. |
| MonoTouch | monotouch was computed. |
| Tizen | tizen40 was computed. tizen60 was computed. |
| Xamarin.iOS | xamarinios was computed. |
| Xamarin.Mac | xamarinmac was computed. |
| Xamarin.TVOS | xamarintvos was computed. |
| Xamarin.WatchOS | xamarinwatchos was computed. |
Compatible target framework(s)
Included target framework(s) (in package)
Learn more about Target Frameworks and .NET Standard.
-
.NETStandard 2.0
- IndexRange (>= 1.0.3)
- Microsoft.Bcl.AsyncInterfaces (>= 8.0.0)
- NATS.NKeys (>= 1.0.0-preview.1)
- Nerdbank.Streams (>= 2.10.72)
- Nullable (>= 1.3.1)
- System.Buffers (>= 4.5.1)
- System.Diagnostics.DiagnosticSource (>= 8.0.1)
- System.Memory (>= 4.5.5)
- System.Text.Json (>= 8.0.4)
- System.Threading.Channels (>= 8.0.0)
-
net8.0
- NATS.NKeys (>= 1.0.0-preview.1)
- System.Text.Json (>= 8.0.4)
NuGet packages
This package is not used by any NuGet packages.
GitHub repositories
This package is not used by any popular GitHub repositories.
| Version | Downloads | Last updated |
|---|---|---|
| 1.0.0-preview.10 | 126 | 12/11/2024 |
| 1.0.0-preview.9 | 314 | 11/1/2024 |
| 1.0.0-preview.8 | 71 | 10/16/2024 |
| 1.0.0-preview.7 | 85 | 9/13/2024 |
| 1.0.0-preview.6 | 59 | 9/12/2024 |
| 1.0.0-preview.5 | 139 | 8/27/2024 |
| 1.0.0-preview.4 | 99 | 8/22/2024 |
| 1.0.0-preview.3 | 104 | 8/14/2024 |
| 1.0.0-preview.2 | 74 | 8/9/2024 |
| 1.0.0-preview.1 | 82 | 7/19/2024 |