kjwt-hardware-backed-processor/co.touchlab.kjwt.hardware

Package-level declarations

Types

class AndroidKeyStoreEncryptionKey : JweProcessor

A hardware-backed JweProcessor that wraps and unwraps content-encryption keys (CEKs) using RSA keys stored in the Android Keystore. The RSA private key never leaves the secure element (TEE or StrongBox); only the CEK — generated per-encrypt call — leaves the hardware boundary.

AndroidKeystoreEncryptionKeyFactory

object AndroidKeystoreEncryptionKeyFactory

Low-level factory that generates and registers RSA encryption key pairs in the Android Keystore.

AndroidKeyStoreSigningKey

class AndroidKeyStoreSigningKey : JwsProcessor

A hardware-backed JwsProcessor that signs and verifies data using keys stored in the Android Keystore. Key material never leaves the secure element (TEE or StrongBox) — private and secret keys are generated and used entirely within the secure hardware.

AndroidKeystoreSigningKeyFactory

object AndroidKeystoreSigningKeyFactory

Low-level factory that generates and registers signing keys in the Android Keystore.

AppleKeychainSigningKey

class AppleKeychainSigningKey : JwsProcessor

A hardware-backed JwsProcessor that signs and verifies JWT payloads using keys stored in the iOS/macOS Keychain.

AppleKeychainSigningKeyFactory

object AppleKeychainSigningKeyFactory

Low-level factory that generates and stores signing keys in the Keychain.

SecureKeyFactory

actual object SecureKeyFactory

expect object SecureKeyFactory

Platform-agnostic factory for creating hardware-backed signing keys.

actual object SecureKeyFactory