salrashid123
diff --git a/‎.github/workflows/release.yaml‎
Lines changed: 69 additions & 0 deletions b/‎.github/workflows/release.yaml‎
Lines changed: 69 additions & 0 deletions
diff --git a/‎README.md‎
Lines changed: 9 additions & 8 deletions b/‎README.md‎
Lines changed: 9 additions & 8 deletions
diff --git a/‎example/certs/client_ec_385.key‎
Lines changed: 6 additions & 0 deletions b/‎example/certs/client_ec_385.key‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎example/certs/client_ec_512.key‎
Lines changed: 7 additions & 0 deletions b/‎example/certs/client_ec_512.key‎
Lines changed: 7 additions & 0 deletions
diff --git a/‎example/ecc/main.go‎
Lines changed: 0 additions & 5 deletions b/‎example/ecc/main.go‎
Lines changed: 0 additions & 5 deletions
diff --git a/‎example/go.mod‎
Lines changed: 32 additions & 31 deletions b/‎example/go.mod‎
Lines changed: 32 additions & 31 deletions
@@ -0,0 +1,69 @@
+name: Release
+
+on:
+  push:
+    tags:
+      - '*'
+
+permissions:
+  contents: write # needed to write releases
+  id-token: write # needed for keyless signing
+  packages: write # needed for ghcr access
+  attestations: write # needed for provenance
+
+jobs:
+  test:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Check out code
+        uses: actions/checkout@v4
+
+      - uses: actions/setup-go@v5
+        with:
+          go-version-file: 'go.mod'
+
+      - name: Run tests
+        run: go test -v ./...
+
+
+  release:
+    runs-on: ubuntu-latest
+    needs: test
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+      - name: Set Versions
+        uses: actions/github-script@v4
+        id: set_version
+        with:
+          script: |
+            const tag = context.ref.substring(10)
+            const no_v = tag.replace('v', '')
+            const dash_index = no_v.lastIndexOf('-')
+            const no_dash = (dash_index > -1) ?  no_v.substring(0, dash_index) : no_v
+            core.setOutput('tag', tag)
+            core.setOutput('no-v', no_v)
+            core.setOutput('no-dash', no_dash)
+      - name: Set up Go
+        uses: actions/setup-go@v5
+
+      - name: Import GPG key
+        uses: crazy-max/ghaction-import-gpg@v6
+        with:
+          gpg_private_key: ${{ secrets.GPG_SIGNING_KEY }}
+          passphrase: ${{ secrets.PASSPHRASE }}
+          git_user_signingkey: true
+          git_commit_gpgsign: true
+      - uses: sigstore/cosign-installer@v3.8.0 # installs cosign
+      - uses: anchore/sbom-action/download-syft@v0.18.0 # installs syft
+      - name: Run GoReleaser
+        uses: goreleaser/goreleaser-action@v6
+        with:
+          version: '~> v2'
+          args: release --clean
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          GPG_FINGERPRINT: ${{ secrets.GPG_FINGERPRINT }}
@@ -22,15 +22,16 @@ For other references, see:
 * [golang-jwt for Trusted Platform Module TPM](https://github.com/salrashid123/golang-jwt-tpm)
 * [golang-jwt for Yubikey](https://github.com/salrashid123/golang-jwt-yubikey)
 * [golang-jwt for PKCS11](https://github.com/salrashid123/golang-jwt-pkcs11)
-* [golang-jwt for TPM](https://github.com/salrashid123/golang-jwt-tpm)
 * [crypto.Signer, implementations for Google Cloud KMS and Trusted Platform Modules](https://github.com/salrashid123/signer)
 * [go-tpm-tools Signer](https://pkg.go.dev/github.com/google/go-tpm-tools/client#Key.GetSigner)
 
 ### Supported Algorithms
 
-* `RS256`
-* `PS256`
-* `ES256`
+* `RS256` `RS384` `RS512`
+
+* `PS256` `PS384` `PS512`
+
+* `ES256` `ES384` `ES512`
 
 ### Usage
 
@@ -47,10 +48,10 @@ import (
 	jwt "github.com/golang-jwt/jwt/v5"
 	jwtsigner "github.com/salrashid123/golang-jwt-signer"
 
-	// salkms "github.com/salrashid123/signer/kms"
-	// saltpm "github.com/salrashid123/signer/tpm"
-	// "github.com/ThalesIgnite/crypto11"
-	// salpkcs "github.com/salrashid123/mtls_pkcs11/signer/pkcs"
+	// salkms "github.com/salrashid123/kms_golang_signer"
+	// saltpm "github.com/salrashid123/tpmsigner"
+	// "github.com/ThalesGroup/crypto11"
+	// salpkcs "github.com/salrashid123/pkcssigner"
 )
 
 var ()
 
@@ -0,0 +1,6 @@
+-----BEGIN EC PRIVATE KEY-----
+MIGkAgEBBDB9TlirDKMJOWDHu4zNafqfxwXSq6B8xrlSI4t8RRnx8dE4cX/PdNs1
+2/dvkjuslkugBwYFK4EEACKhZANiAASKdyDAQOnh8v9v8URsXgIeH1YQfl8rTH5u
+f8c63dH4Bz9XBu7EcjMVAWuj3y5ZkMQ4vwpkNfKWi2UDZX8n1qCFwvsMYsXe4wM/
+po6KScBALGs5vfWtC76Hf7LTxwmnyAM=
+-----END EC PRIVATE KEY-----
@@ -0,0 +1,7 @@
+-----BEGIN EC PRIVATE KEY-----
+MIHcAgEBBEIA+HJUKjgzIi+QnW5q98jDtpROFV3bq+MGcmbu3OAZKonB0+yePtc+
+zbdsbyBJR6zemaYCoqW/+7PEyz7h0yh/POWgBwYFK4EEACOhgYkDgYYABAAY9A1d
+UrQhhdCP4k/zdmOchQdJckZWtgY4xg5BNWNP7O2ewd9o1YovDW40f/9shwUoDUUo
+nlRpX5AymWFverXLKwCIJ1XC3DRIr7LU5UEi7P7i77RCbnh4z1t8fjmeEEQP2BJK
+jXRqnHef6adygkXba3DQZ2/gl9AObgaf6L3P+LXkPA==
+-----END EC PRIVATE KEY-----
@@ -9,13 +9,8 @@ import (
 	"os"
 	"time"
 
-	//"github.com/go-piv/piv-go/piv"
 	jwt "github.com/golang-jwt/jwt/v5"
 	jwtsigner "github.com/salrashid123/golang-jwt-signer"
-	// salkms "github.com/salrashid123/signer/kms"
-	// saltpm "github.com/salrashid123/signer/tpm"
-	// "github.com/ThalesIgnite/crypto11"
-	// salpkcs "github.com/salrashid123/mtls_pkcs11/signer/pkcs"
 )
 
 var ()
 
@@ -1,26 +1,28 @@
 module main
 
-go 1.22
-
-toolchain go1.22.2
+go 1.24.0
 
 require (
-	github.com/ThalesIgnite/crypto11 v1.2.5
+	github.com/ThalesGroup/crypto11 v1.4.1
 	github.com/golang-jwt/jwt/v5 v5.2.1
 	github.com/google/go-tpm v0.9.1
 	github.com/google/go-tpm-tools v0.4.4
 	github.com/salrashid123/golang-jwt-signer v0.0.0
-	github.com/salrashid123/mtls_pkcs11/signer/pkcs v0.0.0-20240607212947-825eb0de11bc
-	github.com/salrashid123/signer/kms v0.0.0-20240506142117-142e7dba6e3a
+	github.com/salrashid123/kms_golang_signer v0.0.1
+	github.com/salrashid123/pkcssigner v0.0.1
+
 )
 
 require (
-	cloud.google.com/go/compute v1.25.1 // indirect
-	cloud.google.com/go/compute/metadata v0.2.3 // indirect
-	cloud.google.com/go/iam v1.1.7 // indirect
-	cloud.google.com/go/kms v1.15.8 // indirect
+	cloud.google.com/go v0.114.0 // indirect
+	cloud.google.com/go/auth v0.5.1 // indirect
+	cloud.google.com/go/auth/oauth2adapt v0.2.2 // indirect
+	cloud.google.com/go/compute/metadata v0.3.0 // indirect
+	cloud.google.com/go/iam v1.1.8 // indirect
+	cloud.google.com/go/kms v1.17.1 // indirect
+	cloud.google.com/go/longrunning v0.5.7 // indirect
 	github.com/felixge/httpsnoop v1.0.4 // indirect
-	github.com/go-logr/logr v1.4.1 // indirect
+	github.com/go-logr/logr v1.4.2 // indirect
 	github.com/go-logr/stdr v1.2.2 // indirect
 	github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da // indirect
 	github.com/golang/protobuf v1.5.4 // indirect
@@ -31,32 +33,31 @@ require (
 	github.com/google/s2a-go v0.1.7 // indirect
 	github.com/google/uuid v1.6.0 // indirect
 	github.com/googleapis/enterprise-certificate-proxy v0.3.2 // indirect
-	github.com/googleapis/gax-go/v2 v2.12.3 // indirect
-	github.com/miekg/pkcs11 v1.0.3-0.20190429190417-a667d056470f // indirect
+	github.com/googleapis/gax-go/v2 v2.12.4 // indirect
+	github.com/miekg/pkcs11 v1.1.1 // indirect
 	github.com/pborman/uuid v1.2.1 // indirect
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/thales-e-security/pool v0.0.2 // indirect
 	go.opencensus.io v0.24.0 // indirect
-	go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.49.0 // indirect
-	go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.49.0 // indirect
-	go.opentelemetry.io/otel v1.24.0 // indirect
-	go.opentelemetry.io/otel/metric v1.24.0 // indirect
-	go.opentelemetry.io/otel/trace v1.24.0 // indirect
+	go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.52.0 // indirect
+	go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.52.0 // indirect
+	go.opentelemetry.io/otel v1.27.0 // indirect
+	go.opentelemetry.io/otel/metric v1.27.0 // indirect
+	go.opentelemetry.io/otel/trace v1.27.0 // indirect
 	go.uber.org/multierr v1.11.0 // indirect
-	golang.org/x/crypto v0.21.0 // indirect
-	golang.org/x/net v0.23.0 // indirect
-	golang.org/x/oauth2 v0.18.0 // indirect
-	golang.org/x/sync v0.6.0 // indirect
-	golang.org/x/sys v0.18.0 // indirect
-	golang.org/x/text v0.14.0 // indirect
+	golang.org/x/crypto v0.24.0 // indirect
+	golang.org/x/net v0.26.0 // indirect
+	golang.org/x/oauth2 v0.21.0 // indirect
+	golang.org/x/sync v0.7.0 // indirect
+	golang.org/x/sys v0.21.0 // indirect
+	golang.org/x/text v0.16.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
-	google.golang.org/api v0.172.0 // indirect
-	google.golang.org/appengine v1.6.8 // indirect
-	google.golang.org/genproto v0.0.0-20240401170217-c3f982113cda // indirect
-	google.golang.org/genproto/googleapis/api v0.0.0-20240401170217-c3f982113cda // indirect
-	google.golang.org/genproto/googleapis/rpc v0.0.0-20240401170217-c3f982113cda // indirect
-	google.golang.org/grpc v1.63.0 // indirect
-	google.golang.org/protobuf v1.33.0 // indirect
+	google.golang.org/api v0.183.0 // indirect
+	google.golang.org/genproto v0.0.0-20240604185151-ef581f913117 // indirect
+	google.golang.org/genproto/googleapis/api v0.0.0-20240604185151-ef581f913117 // indirect
+	google.golang.org/genproto/googleapis/rpc v0.0.0-20240604185151-ef581f913117 // indirect
+	google.golang.org/grpc v1.64.0 // indirect
+	google.golang.org/protobuf v1.34.1 // indirect
 )
 
 replace github.com/salrashid123/golang-jwt-signer => ../