# Paseto
This repository houses an elixir implementation of [Paseto](https://github.com/paragonie/paseto)
From the reference implementation of Paseto:
# What is Paseto?
Paseto (Platform-Agnostic SEcurity TOkens) is a specification and reference implementation
for secure stateless tokens.
## Key Differences between Paseto and JWT
Unlike JSON Web Tokens (JWT), which gives developers more than enough rope with which to
hang themselves, Paseto only allows secure operations. JWT gives you "algorithm agility",
Paseto gives you "versioned protocols". It's incredibly unlikely that you'll be able to
use Paseto in [an insecure way](https://auth0.com/blog/critical-vulnerabilities-in-json-web-token-libraries).
> **Caution:** Neither JWT nor Paseto were designed for
> [stateless session management](http://cryto.net/~joepie91/blog/2016/06/13/stop-using-jwt-for-sessions/).
> Paseto is suitable for tamper-proof cookies, but cannot prevent replay attacks
> by itself.
## Considerations for using this library
There are a few library/binary requirements required in order for the Paseto
library to work on any computer:
1. Erlang version >= 20.1
* This is required because this was the first Erlang version to introduce
2. libsodium >= 1.0.13
* This is required for cryptography used in Paseto.
* This can be found at https://github.com/jedisct1/libsodium
3. openssl >= 1.1
* This is needed for XChaCha-Poly1305 used for V2.Local Paseto
## Want to use this library through Guardian or Plugs?
Check out some of my other libraries:
* https://github.com/ianleeclark/paseto_plug
* https://github.com/ueberauth/guardian_paseto
### Paseto
#### Paseto Example 1
This decodes to:
* Version: `v2`
* Purpose: `local` (shared-key authenticated encryption)
* Payload (hex-encoded):
* Nonce: `400c48a557be10254d235cf8c506e6fea418a26c93de1f05`
* Authentication tag: `6914af581ad1dc881b1486b4024b9417`
* Decrypted Payload:
"data": "this is a signed message",
"exp": "2039-01-01T00:00:00+00:00"
* Key used in this example (hex-encoded):
* Footer:
Paragon Initiative Enterprises
#### Paseto Example 2
This decodes to:
* Version: `v2`
* Purpose: `public` (public-key digital signature)
* Payload:
"data": "this is a signed message",
"exp": "2039-01-01T00:00:00+00:00"
* Signature (hex-encoded):
* Public key (hex-encoded):
To learn what each version means, please see [this page in the documentation](https://github.com/paragonie/paseto/tree/master/docs/01-Protocol-Versions).
## Using Paseto (in Elixir)
### Generating a token
iex> {:ok, pk, sk} = Salty.Sign.Ed25519.keypair()
iex> keypair = {pk, sk}
iex> token = Paseto.generate_token("v2", "public", "This is a test message", keypair)
In short, we generate a keypair using [libsalty2](https://github.com/Ianleeclark/libsalty2) (libsodium elixir bindings) and generate the token using that keypair.
P.S. If you're confused about how to serialize the above keys, you can use functions
from the [`Base`](https://hexdocs.pm/elixir/Base.html) module:
iex> {:ok, pk, sk} = Salty.Sign.Ed25519.keypair()
iex> pk |> Base.encode16(case: :lower)
### Parsing a token
iex> token = "v2.public.VGhpcyBpcyBhIHRlc3QgbWVzc2FnZSe-sJyD2x_fCDGEUKDcvjU9y3jRHxD4iEJ8iQwwfMUq5jUR47J15uPbgyOmBkQCxNDydR0yV1iBR-GPpyE-NQw"
iex> Paseto.parse_token(token, keypair)
footer: nil,
payload: "This is a test message",
purpose: "public",
version: "v2"
More info can be found in the [HexDocs][].
## Installation
You need libsodium installed on your machine.
# Installing on FreeBSD
$ cd /usr/ports/security/libsodium/ && make install clean
# Installing on Ubuntu
$ sudo apt install libsodium-dev
# Installing on Fedora
$ dnf install libsodium-devel
# Redhat & Cent OS
$ yum install libsodium-devel
# Installing on OSX
$ brew install libsodium
The package can be installed by adding `paseto` to your list of
dependencies in `mix.exs`:
def deps do
{:paseto, "~> 1.3.2"}
[HexDocs]: https://hexdocs.pm/paseto