ewjay
diff --git a/‎lib/src/main/java/com/auth0/jwt/creators/AccessJwtCreator.java‎
Lines changed: 36 additions & 0 deletions b/‎lib/src/main/java/com/auth0/jwt/creators/AccessJwtCreator.java‎
Lines changed: 36 additions & 0 deletions
diff --git a/‎lib/src/main/java/com/auth0/jwt/creators/EncodeType.java‎
Lines changed: 5 additions & 0 deletions b/‎lib/src/main/java/com/auth0/jwt/creators/EncodeType.java‎
Lines changed: 5 additions & 0 deletions
diff --git a/‎lib/src/main/java/com/auth0/jwt/creators/ExtendedJwtCreator.java‎
Lines changed: 36 additions & 0 deletions b/‎lib/src/main/java/com/auth0/jwt/creators/ExtendedJwtCreator.java‎
Lines changed: 36 additions & 0 deletions
diff --git a/‎lib/src/main/java/com/auth0/jwt/creators/FbJwtCreator.java‎
Lines changed: 36 additions & 0 deletions b/‎lib/src/main/java/com/auth0/jwt/creators/FbJwtCreator.java‎
Lines changed: 36 additions & 0 deletions
diff --git a/‎lib/src/main/java/com/auth0/jwt/creators/GoogleJwtCreator.java‎
Lines changed: 37 additions & 0 deletions b/‎lib/src/main/java/com/auth0/jwt/creators/GoogleJwtCreator.java‎
Lines changed: 37 additions & 0 deletions
diff --git a/‎lib/src/main/java/com/auth0/jwt/creators/ImplicitJwtCreator.java‎
Lines changed: 36 additions & 0 deletions b/‎lib/src/main/java/com/auth0/jwt/creators/ImplicitJwtCreator.java‎
Lines changed: 36 additions & 0 deletions
diff --git a/‎lib/src/main/java/com/auth0/jwt/creators/JWTCreator.java‎
Lines changed: 57 additions & 3 deletions b/‎lib/src/main/java/com/auth0/jwt/creators/JWTCreator.java‎
Lines changed: 57 additions & 3 deletions
diff --git a/‎lib/src/main/java/com/auth0/jwt/creators/RiscJwtCreator.java‎
Lines changed: 36 additions & 0 deletions b/‎lib/src/main/java/com/auth0/jwt/creators/RiscJwtCreator.java‎
Lines changed: 36 additions & 0 deletions
@@ -221,6 +221,42 @@ public String sign(Algorithm algorithm) throws Exception {
         return JWS;
     }
 
+    /**
+     * Creates a new JWT and signs it with the given algorithm.
+     *
+     * @param algorithm used to sign the JWT
+     * @return a new JWT token
+     * @throws IllegalAccessException   if the developer didn't want NONE algorithm to be allowed and it was passed in
+     * @throws IllegalArgumentException if the provided algorithm is null.
+     * @throws JWTCreationException     if the claims could not be converted to a valid JSON or there was a problem with the signing key.
+     */
+    public String signBase16Encoding(Algorithm algorithm) throws Exception {
+        if(!jwt.getIsNoneAlgorithmAllowed() && algorithm.equals(Algorithm.none())) {
+            throw new IllegalAccessException("None algorithm isn't allowed");
+        }
+        String JWS = jwt.sign(algorithm, EncodeType.Base16);
+        verifyClaims();
+        return JWS;
+    }
+
+    /**
+     * Creates a new JWT and signs it with the given algorithm.
+     *
+     * @param algorithm used to sign the JWT
+     * @return a new JWT token
+     * @throws IllegalAccessException   if the developer didn't want NONE algorithm to be allowed and it was passed in
+     * @throws IllegalArgumentException if the provided algorithm is null.
+     * @throws JWTCreationException     if the claims could not be converted to a valid JSON or there was a problem with the signing key.
+     */
+    public String signBase32Encoding(Algorithm algorithm) throws Exception {
+        if(!jwt.getIsNoneAlgorithmAllowed() && algorithm.equals(Algorithm.none())) {
+            throw new IllegalAccessException("None algorithm isn't allowed");
+        }
+        String JWS = jwt.sign(algorithm, EncodeType.Base32);
+        verifyClaims();
+        return JWS;
+    }
+
     /**
      * Verifies that all the standard claims were provided
      * @throws Exception if all the standard claims weren't provided
 
@@ -0,0 +1,5 @@
+package com.auth0.jwt.creators;
+
+public enum EncodeType {
+    Base16, Base32, Base64;
+}
@@ -43,6 +43,42 @@ public String sign(Algorithm algorithm) throws Exception {
         return JWS;
     }
 
+    /**
+     * Creates a new JWT and signs it with the given algorithm.
+     *
+     * @param algorithm used to sign the JWT
+     * @return a new JWT token
+     * @throws IllegalAccessException   if the developer didn't want NONE algorithm to be allowed and it was passed in
+     * @throws IllegalArgumentException if the provided algorithm is null.
+     * @throws JWTCreationException     if the claims could not be converted to a valid JSON or there was a problem with the signing key.
+     */
+    public String signBase16Encoding(Algorithm algorithm) throws Exception {
+        if(!jwt.getIsNoneAlgorithmAllowed() && algorithm.equals(Algorithm.none())) {
+            throw new IllegalAccessException("None algorithm isn't allowed");
+        }
+        String JWS = jwt.sign(algorithm, EncodeType.Base16);
+        verifyClaims();
+        return JWS;
+    }
+
+    /**
+     * Creates a new JWT and signs it with the given algorithm.
+     *
+     * @param algorithm used to sign the JWT
+     * @return a new JWT token
+     * @throws IllegalAccessException   if the developer didn't want NONE algorithm to be allowed and it was passed in
+     * @throws IllegalArgumentException if the provided algorithm is null.
+     * @throws JWTCreationException     if the claims could not be converted to a valid JSON or there was a problem with the signing key.
+     */
+    public String signBase32Encoding(Algorithm algorithm) throws Exception {
+        if(!jwt.getIsNoneAlgorithmAllowed() && algorithm.equals(Algorithm.none())) {
+            throw new IllegalAccessException("None algorithm isn't allowed");
+        }
+        String JWS = jwt.sign(algorithm, EncodeType.Base32);
+        verifyClaims();
+        return JWS;
+    }
+
     /**
      * Verifies that all the standard claims were provided
      * @throws Exception if all the standard claims weren't provided
 
@@ -202,6 +202,42 @@ public String sign(Algorithm algorithm) throws Exception {
         return JWS;
     }
 
+    /**
+     * Creates a new JWT and signs it with the given algorithm.
+     *
+     * @param algorithm used to sign the JWT
+     * @return a new JWT token
+     * @throws IllegalAccessException   if the developer didn't want NONE algorithm to be allowed and it was passed in
+     * @throws IllegalArgumentException if the provided algorithm is null.
+     * @throws JWTCreationException     if the claims could not be converted to a valid JSON or there was a problem with the signing key.
+     */
+    public String signBase16Encoding(Algorithm algorithm) throws Exception {
+        if(!jwt.getIsNoneAlgorithmAllowed() && algorithm.equals(Algorithm.none())) {
+            throw new IllegalAccessException("None algorithm isn't allowed");
+        }
+        String JWS = jwt.sign(algorithm, EncodeType.Base16);
+        verifyClaims();
+        return JWS;
+    }
+
+    /**
+     * Creates a new JWT and signs it with the given algorithm.
+     *
+     * @param algorithm used to sign the JWT
+     * @return a new JWT token
+     * @throws IllegalAccessException   if the developer didn't want NONE algorithm to be allowed and it was passed in
+     * @throws IllegalArgumentException if the provided algorithm is null.
+     * @throws JWTCreationException     if the claims could not be converted to a valid JSON or there was a problem with the signing key.
+     */
+    public String signBase32Encoding(Algorithm algorithm) throws Exception {
+        if(!jwt.getIsNoneAlgorithmAllowed() && algorithm.equals(Algorithm.none())) {
+            throw new IllegalAccessException("None algorithm isn't allowed");
+        }
+        String JWS = jwt.sign(algorithm, EncodeType.Base32);
+        verifyClaims();
+        return JWS;
+    }
+
     /**
      * Verifies that all the standard claims were provided
      * @throws Exception if all the standard claims weren't provided
 
@@ -261,6 +261,43 @@ public String sign(Algorithm algorithm) throws Exception {
         return JWS;
     }
 
+    /**
+     * Creates a new JWT and signs it with the given algorithm.
+     *
+     * @param algorithm used to sign the JWT
+     * @return a new JWT token
+     * @throws IllegalAccessException   if the developer didn't want NONE algorithm to be allowed and it was passed in
+     * @throws IllegalArgumentException if the provided algorithm is null.
+     * @throws JWTCreationException     if the claims could not be converted to a valid JSON or there was a problem with the signing key.
+     */
+    public String signBase16Encoding(Algorithm algorithm) throws Exception {
+        if(!jwt.getIsNoneAlgorithmAllowed() && algorithm.equals(Algorithm.none())) {
+            throw new IllegalAccessException("None algorithm isn't allowed");
+        }
+        String JWS = jwt.sign(algorithm, EncodeType.Base16);
+        verifyClaims();
+        return JWS;
+    }
+
+    /**
+     * Creates a new JWT and signs it with the given algorithm.
+     *
+     * @param algorithm used to sign the JWT
+     * @return a new JWT token
+     * @throws IllegalAccessException   if the developer didn't want NONE algorithm to be allowed and it was passed in
+     * @throws IllegalArgumentException if the provided algorithm is null.
+     * @throws JWTCreationException     if the claims could not be converted to a valid JSON or there was a problem with the signing key.
+     */
+    public String signBase32Encoding(Algorithm algorithm) throws Exception {
+        if(!jwt.getIsNoneAlgorithmAllowed() && algorithm.equals(Algorithm.none())) {
+            throw new IllegalAccessException("None algorithm isn't allowed");
+        }
+        String JWS = jwt.sign(algorithm, EncodeType.Base32);
+        verifyClaims();
+        return JWS;
+    }
+
+
     /**
      * Verifies that all the standard claims were provided
      * @throws Exception if all the standard claims weren't provided
 
@@ -207,6 +207,42 @@ public String sign(Algorithm algorithm) throws Exception {
         return JWS;
     }
 
+    /**
+     * Creates a new JWT and signs it with the given algorithm.
+     *
+     * @param algorithm used to sign the JWT
+     * @return a new JWT token
+     * @throws IllegalAccessException   if the developer didn't want NONE algorithm to be allowed and it was passed in
+     * @throws IllegalArgumentException if the provided algorithm is null.
+     * @throws JWTCreationException     if the claims could not be converted to a valid JSON or there was a problem with the signing key.
+     */
+    public String signBase16Encoding(Algorithm algorithm) throws Exception {
+        if(!jwt.getIsNoneAlgorithmAllowed() && algorithm.equals(Algorithm.none())) {
+            throw new IllegalAccessException("None algorithm isn't allowed");
+        }
+        String JWS = jwt.sign(algorithm, EncodeType.Base16);
+        verifyClaims();
+        return JWS;
+    }
+
+    /**
+     * Creates a new JWT and signs it with the given algorithm.
+     *
+     * @param algorithm used to sign the JWT
+     * @return a new JWT token
+     * @throws IllegalAccessException   if the developer didn't want NONE algorithm to be allowed and it was passed in
+     * @throws IllegalArgumentException if the provided algorithm is null.
+     * @throws JWTCreationException     if the claims could not be converted to a valid JSON or there was a problem with the signing key.
+     */
+    public String signBase32Encoding(Algorithm algorithm) throws Exception {
+        if(!jwt.getIsNoneAlgorithmAllowed() && algorithm.equals(Algorithm.none())) {
+            throw new IllegalAccessException("None algorithm isn't allowed");
+        }
+        String JWS = jwt.sign(algorithm, EncodeType.Base32);
+        verifyClaims();
+        return JWS;
+    }
+
     /**
      * Verifies that all the standard claims were provided
      * @throws Exception if all the standard claims weren't provided
 
@@ -10,8 +10,11 @@
 import com.fasterxml.jackson.databind.MapperFeature;
 import com.fasterxml.jackson.databind.ObjectMapper;
 import com.fasterxml.jackson.databind.module.SimpleModule;
+import org.apache.commons.codec.binary.Base32;
 import org.apache.commons.codec.binary.Base64;
+import org.apache.commons.codec.binary.Hex;
 
+import java.net.URLEncoder;
 import java.nio.charset.StandardCharsets;
 import java.util.Date;
 import java.util.HashMap;
@@ -312,24 +315,52 @@ public Builder withArrayClaim(String name, Long[] items) throws IllegalArgumentE
         }
 
         /**
-         * Creates a new JWT and signs is with the given algorithm
+         * Creates a new JWT and signs it with the given algorithm
+         * Defaults to Base64 encoding
          *
          * @param algorithm used to sign the JWT
          * @return a new JWT token
          * @throws IllegalArgumentException if the provided algorithm is null.
          * @throws JWTCreationException     if the claims could not be converted to a valid JSON or there was a problem with the signing key.
          */
-        public String sign(Algorithm algorithm) throws Exception {
+        public String sign(Algorithm algorithm) throws Exception{
+            return sign(algorithm, EncodeType.Base64);
+        }
+
+        /**
+         * Creates a new JWT and signs it with the given algorithm
+         *
+         * @param algorithm used to sign the JWT
+         * @param encodeType specifies which base encoding is required
+         * @return a new JWT token
+         * @throws IllegalArgumentException if the provided algorithm is null.
+         * @throws JWTCreationException     if the claims could not be converted to a valid JSON or there was a problem with the signing key.
+         */
+        public String sign(Algorithm algorithm, EncodeType encodeType) throws Exception {
             if (algorithm == null) {
                 throw new IllegalArgumentException("The Algorithm cannot be null.");
             }
+            if(encodeType == null) {
+                throw new IllegalArgumentException("Encodetype cannot be null.");
+            }
             headerClaims.put(PublicClaims.ALGORITHM, algorithm.getName());
             headerClaims.put(PublicClaims.TYPE, "JWT");
             String signingKeyId = algorithm.getSigningKeyId();
             if (signingKeyId != null) {
                 withKeyId(signingKeyId);
             }
-            return new JWTCreator(algorithm, headerClaims, payloadClaims).sign();
+            JWTCreator jwtCreator = new JWTCreator(algorithm, headerClaims, payloadClaims);
+            String token = null;
+            switch (encodeType) {
+                case Base16:
+                    token = jwtCreator.signBase16Encoding();
+                case Base32:
+                    token = jwtCreator.signBase32Encoding();
+                case Base64:
+                    token = jwtCreator.sign();
+            }
+
+            return token;
         }
 
         protected void assertNonNull(String name) {
@@ -347,6 +378,29 @@ private void addClaim(String name, Object value) {
         }
     }
 
+    private String signBase16Encoding() {
+        String header = Hex.encodeHexString(headerJson.getBytes(StandardCharsets.UTF_8));
+        String payload = Hex.encodeHexString(payloadJson.getBytes(StandardCharsets.UTF_8));
+        String content = String.format("%s.%s", header, payload);
+
+        byte[] signatureBytes = algorithm.sign(content.getBytes(StandardCharsets.UTF_8));
+        String signature = Hex.encodeHexString((signatureBytes));
+
+        return String.format("%s.%s", content, signature);
+    }
+
+    private String signBase32Encoding() {
+        Base32 base32 = new Base32();
+        String header = base32.encodeAsString(headerJson.getBytes(StandardCharsets.UTF_8));
+        String payload = base32.encodeAsString(payloadJson.getBytes(StandardCharsets.UTF_8));
+        String content = String.format("%s.%s", header, payload);
+
+        byte[] signatureBytes = algorithm.sign(content.getBytes(StandardCharsets.UTF_8));
+        String signature = base32.encodeAsString((signatureBytes));
+
+        return String.format("%s.%s", content, signature);
+    }
+
     private String sign() throws SignatureGenerationException {
         String header = Base64.encodeBase64URLSafeString(headerJson.getBytes(StandardCharsets.UTF_8));
         String payload = Base64.encodeBase64URLSafeString(payloadJson.getBytes(StandardCharsets.UTF_8));
 
@@ -246,6 +246,42 @@ public String sign(Algorithm algorithm) throws Exception {
         return JWS;
     }
 
+    /**
+     * Creates a new JWT and signs it with the given algorithm.
+     *
+     * @param algorithm used to sign the JWT
+     * @return a new JWT token
+     * @throws IllegalAccessException   if the developer didn't want NONE algorithm to be allowed and it was passed in
+     * @throws IllegalArgumentException if the provided algorithm is null.
+     * @throws JWTCreationException     if the claims could not be converted to a valid JSON or there was a problem with the signing key.
+     */
+    public String signBase16Encoding(Algorithm algorithm) throws Exception {
+        if(!jwt.getIsNoneAlgorithmAllowed() && algorithm.equals(Algorithm.none())) {
+            throw new IllegalAccessException("None algorithm isn't allowed");
+        }
+        String JWS = jwt.sign(algorithm, EncodeType.Base16);
+        verifyClaims();
+        return JWS;
+    }
+
+    /**
+     * Creates a new JWT and signs it with the given algorithm.
+     *
+     * @param algorithm used to sign the JWT
+     * @return a new JWT token
+     * @throws IllegalAccessException   if the developer didn't want NONE algorithm to be allowed and it was passed in
+     * @throws IllegalArgumentException if the provided algorithm is null.
+     * @throws JWTCreationException     if the claims could not be converted to a valid JSON or there was a problem with the signing key.
+     */
+    public String signBase32Encoding(Algorithm algorithm) throws Exception {
+        if(!jwt.getIsNoneAlgorithmAllowed() && algorithm.equals(Algorithm.none())) {
+            throw new IllegalAccessException("None algorithm isn't allowed");
+        }
+        String JWS = jwt.sign(algorithm, EncodeType.Base32);
+        verifyClaims();
+        return JWS;
+    }
+
     /**
      * Verifies that all the standard claims were provided
      * @throws Exception if all the standard claims weren't provided