Migrated all uses of Jwts.KEY to Jwe.enc

Author: lhazlewood

README.adoc

@@ -2370,7 +2370,7 @@ Content Encryption Key (CEK):
 | PBES2 with HMAC SHA-512 and "A256KW" wrapping
 |===
 
-These are all represented as constants in the `io.jsonwebtoken.Jwts.KEY` registry singleton as
+These are all represented as constants in the `io.jsonwebtoken.Jwe.enc` registry singleton as
 implementations of the `io.jsonwebtoken.security.KeyAlgorithm` interface.
 
 But 17 algorithms are a lot to choose from.  When would you use them?  The sections below describe when you might

api/src/main/java/io/jsonwebtoken/Header.java

@@ -137,7 +137,7 @@ public interface Header extends Map<String, Object> {
      * identifies the cryptographic key management algorithm used to encrypt or determine the value of the Content
      * Encryption Key (CEK).  The encrypted content is not usable if the <code>alg</code> value does not represent a
      * supported algorithm, or if the recipient does not have a key that can be used with that algorithm.  Consider
-     * using {@link Jwts.KEY}.{@link io.jsonwebtoken.lang.Registry#get(Object) get(id)} to convert this string value
+     * using {@link Jwe.enc}.{@link io.jsonwebtoken.lang.Registry#get(Object) get(id)} to convert this string value
      * to a type-safe {@link io.jsonwebtoken.security.KeyAlgorithm KeyAlgorithm} instance.</li>
      * </ul>
      *

api/src/main/java/io/jsonwebtoken/Jwe.java

@@ -65,11 +65,11 @@ public interface JweHeader extends ProtectedHeader {
      * @return the <a href="https://www.rfc-editor.org/rfc/rfc7518.html#section-4.6.1.1">{@code epk} (Ephemeral
      * Public Key)</a> header value created by the JWE originator for use with key agreement algorithms, or
      * {@code null} if not present.
-     * @see Jwts.KEY
-     * @see Jwts.KEY#ECDH_ES
-     * @see Jwts.KEY#ECDH_ES_A128KW
-     * @see Jwts.KEY#ECDH_ES_A192KW
-     * @see Jwts.KEY#ECDH_ES_A256KW
+     * @see Jwe.enc
+     * @see Jwe.enc#ECDH_ES
+     * @see Jwe.enc#ECDH_ES_A128KW
+     * @see Jwe.enc#ECDH_ES_A192KW
+     * @see Jwe.enc#ECDH_ES_A256KW
      */
     PublicJwk<?> getEphemeralPublicKey();
 
@@ -80,10 +80,10 @@ public interface JweHeader extends ProtectedHeader {
      * @return any information about the JWE producer for use with key agreement algorithms, or {@code null} if not
      * present.
      * @see <a href="https://www.rfc-editor.org/rfc/rfc7518.html#section-4.6.1.2">JWE <code>apu</code> (Agreement PartyUInfo) Header Parameter</a>
-     * @see Jwts.KEY#ECDH_ES
-     * @see Jwts.KEY#ECDH_ES_A128KW
-     * @see Jwts.KEY#ECDH_ES_A192KW
-     * @see Jwts.KEY#ECDH_ES_A256KW
+     * @see Jwe.enc#ECDH_ES
+     * @see Jwe.enc#ECDH_ES_A128KW
+     * @see Jwe.enc#ECDH_ES_A192KW
+     * @see Jwe.enc#ECDH_ES_A256KW
      */
     byte[] getAgreementPartyUInfo();
 
@@ -94,10 +94,10 @@ public interface JweHeader extends ProtectedHeader {
      * @return any information about the JWE recipient for use with key agreement algorithms, or {@code null} if not
      * present.
      * @see <a href="https://www.rfc-editor.org/rfc/rfc7518.html#section-4.6.1.3">JWE <code>apv</code> (Agreement PartyVInfo) Header Parameter</a>
-     * @see Jwts.KEY#ECDH_ES
-     * @see Jwts.KEY#ECDH_ES_A128KW
-     * @see Jwts.KEY#ECDH_ES_A192KW
-     * @see Jwts.KEY#ECDH_ES_A256KW
+     * @see Jwe.enc#ECDH_ES
+     * @see Jwe.enc#ECDH_ES_A128KW
+     * @see Jwe.enc#ECDH_ES_A192KW
+     * @see Jwe.enc#ECDH_ES_A256KW
      */
     byte[] getAgreementPartyVInfo();
 
@@ -113,9 +113,9 @@ public interface JweHeader extends ProtectedHeader {
      * automatically when producing the encryption key.</p>
      *
      * @return the 96-bit initialization vector generated during key encryption, or {@code null} if not present.
-     * @see Jwts.KEY#A128GCMKW
-     * @see Jwts.KEY#A192GCMKW
-     * @see Jwts.KEY#A256GCMKW
+     * @see Jwe.enc#A128GCMKW
+     * @see Jwe.enc#A192GCMKW
+     * @see Jwe.enc#A256GCMKW
      */
     byte[] getInitializationVector();
 
@@ -130,9 +130,9 @@ public interface JweHeader extends ProtectedHeader {
      * automatically when producing the encryption key.</p>
      *
      * @return the 128-bit authentication tag resulting from key encryption, or {@code null} if not present.
-     * @see Jwts.KEY#A128GCMKW
-     * @see Jwts.KEY#A192GCMKW
-     * @see Jwts.KEY#A256GCMKW
+     * @see Jwe.enc#A128GCMKW
+     * @see Jwe.enc#A192GCMKW
+     * @see Jwe.enc#A256GCMKW
      */
     byte[] getAuthenticationTag();
 
@@ -143,9 +143,9 @@ public interface JweHeader extends ProtectedHeader {
      * @return the number of PBKDF2 iterations necessary to derive the key used during JWE encryption, or {@code null}
      * if not present.
      * @see <a href="https://www.rfc-editor.org/rfc/rfc7518.html#section-4.8.1.2">JWE <code>p2c</code> (PBES2 Count) Header Parameter</a>
-     * @see Jwts.KEY#PBES2_HS256_A128KW
-     * @see Jwts.KEY#PBES2_HS384_A192KW
-     * @see Jwts.KEY#PBES2_HS512_A256KW
+     * @see Jwe.enc#PBES2_HS256_A128KW
+     * @see Jwe.enc#PBES2_HS384_A192KW
+     * @see Jwe.enc#PBES2_HS512_A256KW
      */
     Integer getPbes2Count();
 
@@ -162,9 +162,9 @@ public interface JweHeader extends ProtectedHeader {
      * @return the PBKDF2 {@code Salt Input} value necessary to derive the key used during JWE encryption, or
      * {@code null} if not present.
      * @see <a href="https://www.rfc-editor.org/rfc/rfc7518.html#section-4.8.1.1">JWE <code>p2s</code> (PBES2 Salt Input) Header Parameter</a>
-     * @see Jwts.KEY#PBES2_HS256_A128KW
-     * @see Jwts.KEY#PBES2_HS384_A192KW
-     * @see Jwts.KEY#PBES2_HS512_A256KW
+     * @see Jwe.enc#PBES2_HS256_A128KW
+     * @see Jwe.enc#PBES2_HS384_A192KW
+     * @see Jwe.enc#PBES2_HS512_A256KW
      */
     byte[] getPbes2Salt();
 }

api/src/main/java/io/jsonwebtoken/JweHeader.java

@@ -32,10 +32,10 @@ public interface JweHeaderMutator<T extends JweHeaderMutator<T>> extends Protect
      * @param info information about the JWE producer to use with key agreement algorithms.
      * @return the header for method chaining.
      * @see <a href="https://www.rfc-editor.org/rfc/rfc7518.html#section-4.6.1.2">JWE <code>apu</code> (Agreement PartyUInfo) Header Parameter</a>
-     * @see Jwts.KEY#ECDH_ES
-     * @see Jwts.KEY#ECDH_ES_A128KW
-     * @see Jwts.KEY#ECDH_ES_A192KW
-     * @see Jwts.KEY#ECDH_ES_A256KW
+     * @see Jwe.enc#ECDH_ES
+     * @see Jwe.enc#ECDH_ES_A128KW
+     * @see Jwe.enc#ECDH_ES_A192KW
+     * @see Jwe.enc#ECDH_ES_A256KW
      */
     T agreementPartyUInfo(byte[] info);
 
@@ -50,10 +50,10 @@ public interface JweHeaderMutator<T extends JweHeaderMutator<T>> extends Protect
      * @param info information about the JWE producer to use with key agreement algorithms.
      * @return the header for method chaining.
      * @see <a href="https://www.rfc-editor.org/rfc/rfc7518.html#section-4.6.1.2">JWE <code>apu</code> (Agreement PartyUInfo) Header Parameter</a>
-     * @see Jwts.KEY#ECDH_ES
-     * @see Jwts.KEY#ECDH_ES_A128KW
-     * @see Jwts.KEY#ECDH_ES_A192KW
-     * @see Jwts.KEY#ECDH_ES_A256KW
+     * @see Jwe.enc#ECDH_ES
+     * @see Jwe.enc#ECDH_ES_A128KW
+     * @see Jwe.enc#ECDH_ES_A192KW
+     * @see Jwe.enc#ECDH_ES_A256KW
      */
     T agreementPartyUInfo(String info);
 
@@ -64,10 +64,10 @@ public interface JweHeaderMutator<T extends JweHeaderMutator<T>> extends Protect
      * @param info information about the JWE recipient to use with key agreement algorithms.
      * @return the header for method chaining.
      * @see <a href="https://www.rfc-editor.org/rfc/rfc7518.html#section-4.6.1.3">JWE <code>apv</code> (Agreement PartyVInfo) Header Parameter</a>
-     * @see Jwts.KEY#ECDH_ES
-     * @see Jwts.KEY#ECDH_ES_A128KW
-     * @see Jwts.KEY#ECDH_ES_A192KW
-     * @see Jwts.KEY#ECDH_ES_A256KW
+     * @see Jwe.enc#ECDH_ES
+     * @see Jwe.enc#ECDH_ES_A128KW
+     * @see Jwe.enc#ECDH_ES_A192KW
+     * @see Jwe.enc#ECDH_ES_A256KW
      */
     T agreementPartyVInfo(byte[] info);
 
@@ -82,10 +82,10 @@ public interface JweHeaderMutator<T extends JweHeaderMutator<T>> extends Protect
      * @param info information about the JWE recipient to use with key agreement algorithms.
      * @return the header for method chaining.
      * @see <a href="https://www.rfc-editor.org/rfc/rfc7518.html#section-4.6.1.3">JWE <code>apv</code> (Agreement PartyVInfo) Header Parameter</a>
-     * @see Jwts.KEY#ECDH_ES
-     * @see Jwts.KEY#ECDH_ES_A128KW
-     * @see Jwts.KEY#ECDH_ES_A192KW
-     * @see Jwts.KEY#ECDH_ES_A256KW
+     * @see Jwe.enc#ECDH_ES
+     * @see Jwe.enc#ECDH_ES_A128KW
+     * @see Jwe.enc#ECDH_ES_A192KW
+     * @see Jwe.enc#ECDH_ES_A256KW
      */
     T agreementPartyVInfo(String info);
 
@@ -107,9 +107,9 @@ public interface JweHeaderMutator<T extends JweHeaderMutator<T>> extends Protect
      *              greater than or equal to 1000 (one thousand).
      * @return the header for method chaining
      * @see <a href="https://www.rfc-editor.org/rfc/rfc7518.html#section-4.8.1.2">JWE <code>p2c</code> (PBES2 Count) Header Parameter</a>
-     * @see Jwts.KEY#PBES2_HS256_A128KW
-     * @see Jwts.KEY#PBES2_HS384_A192KW
-     * @see Jwts.KEY#PBES2_HS512_A256KW
+     * @see Jwe.enc#PBES2_HS256_A128KW
+     * @see Jwe.enc#PBES2_HS384_A192KW
+     * @see Jwe.enc#PBES2_HS512_A256KW
      * @see <a href="https://cheatsheetseries.owasp.org/cheatsheets/Password_Storage_Cheat_Sheet.html#pbkdf2">OWASP PBKDF2 Iteration Recommendations</a>
      */
     T pbes2Count(int count);

api/src/main/java/io/jsonwebtoken/JweHeaderMutator.java

@@ -871,12 +871,12 @@ public interface JwtBuilder extends ClaimsMutator<JwtBuilder> {
      * <ul>
      *     <li>If the provided {@code key} is a {@link Password Password} instance,
      *     the {@code KeyAlgorithm} used will be one of the three JWA-standard password-based key algorithms
-     *      ({@link Jwts.KEY#PBES2_HS256_A128KW PBES2_HS256_A128KW},
-     *      {@link Jwts.KEY#PBES2_HS384_A192KW PBES2_HS384_A192KW}, or
-     *      {@link Jwts.KEY#PBES2_HS512_A256KW PBES2_HS512_A256KW}) as determined by the {@code enc} algorithm's
+     *      ({@link Jwe.enc#PBES2_HS256_A128KW PBES2_HS256_A128KW},
+     *      {@link Jwe.enc#PBES2_HS384_A192KW PBES2_HS384_A192KW}, or
+     *      {@link Jwe.enc#PBES2_HS512_A256KW PBES2_HS512_A256KW}) as determined by the {@code enc} algorithm's
      *      {@link AeadAlgorithm#getKeyBitLength() key length} requirement.</li>
      *     <li>If the {@code key} is otherwise a standard {@code SecretKey}, the {@code KeyAlgorithm} will be
-     *     {@link Jwts.KEY#DIRECT DIRECT}, indicating that {@code key} should be used directly with the
+     *     {@link Jwe.enc#DIRECT DIRECT}, indicating that {@code key} should be used directly with the
      *     {@code enc} algorithm.  In this case, the {@code key} argument <em>MUST</em> be of sufficient strength to
      *     use with the specified {@code enc} algorithm, otherwise an exception will be thrown during encryption. If
      *     desired, secure-random keys suitable for an {@link AeadAlgorithm} may be generated using the algorithm's
@@ -908,7 +908,7 @@ public interface JwtBuilder extends ClaimsMutator<JwtBuilder> {
      * </ol>
      *
      * <p>Most application developers will reference one of the JWA
-     * {@link Jwts.KEY standard key algorithms} and {@link Jwe.alg standard encryption algorithms}
+     * {@link Jwe.enc standard key algorithms} and {@link Jwe.alg standard encryption algorithms}
      * when invoking this method, but custom implementations are also supported.</p>
      *
      * @param <K>    the type of key that must be used with the specified {@code keyAlg} instance.
@@ -918,7 +918,7 @@ public interface JwtBuilder extends ClaimsMutator<JwtBuilder> {
      * @param enc    the {@link AeadAlgorithm} algorithm used to encrypt the JWE
      * @return the JWE builder for method chaining.
      * @see Jwe.alg
-     * @see Jwts.KEY
+     * @see Jwe.enc
      */
     <K extends Key> JwtBuilder encryptWith(K key, KeyAlgorithm<? super K, ?> keyAlg, AeadAlgorithm enc);
 

api/src/main/java/io/jsonwebtoken/JwtBuilder.java

@@ -614,7 +614,7 @@ public interface JwtParserBuilder extends Builder<JwtParser> {
      *
      * <p><b>Standard Algorithms and Overrides</b></p>
      *
-     * <p>All JWA-standard key encryption algorithms in the {@link Jwts.KEY} registry are supported by default and
+     * <p>All JWA-standard key encryption algorithms in the {@link Jwe.enc} registry are supported by default and
      * do not need to be added. The collection may be useful however for removing some algorithms (for example,
      * any algorithms not used by the application, or those not compatible with application security requirements),
      * or for adding custom implementations.</p>
@@ -635,7 +635,7 @@ public interface JwtParserBuilder extends Builder<JwtParser> {
      *
      * @return the {@link NestedCollection} to use to configure the key algorithms available when parsing.
      * @see JwtBuilder#encryptWith(Key, KeyAlgorithm, AeadAlgorithm)
-     * @see Jwts.KEY
+     * @see Jwe.enc
      * @see <a href="https://www.rfc-editor.org/rfc/rfc7516.html#section-4.1.1">JWE &quot;alg&quot; (Algorithm) Header Parameter</a>
      * @see <a href="https://www.rfc-editor.org/rfc/rfc7518.html#section-7.1.1">Key Algorithm Name (id) requirements</a>
      * @since 0.12.0