No Way JOSE
Help
This page offers a convenient way for you to interact with the "No Way JOSE" challenge functions. You can also use GET requests to send and receive data directly from the listed routes/endpoints if you wish. For more information see the FAQ.
Your aim is to recover the FLAG
value. Once you have have it, submit it on the Crypto On The Web challenge page.
Source
import base64
import json
import jwt # note this is the PyJWT module, not python-jwt
SECRET_KEY = ?
FLAG = ?
@chal.route('/no-way-jose/authorise/<token>/')
def authorise(token):
token_b64 = token.replace('-', '+').replace('_', '/') # JWTs use base64url encoding
try:
header = json.loads(base64.b64decode(token_b64.split('.')[0] + "==="))
except Exception as e:
return {"error": str(e)}
if "alg" in header:
algorithm = header["alg"]
else:
return {"error": "There is no algorithm key in the header"}
if algorithm == "HS256":
try:
decoded = jwt.decode(token, SECRET_KEY, algorithms=['HS256'])
except Exception as e:
return {"error": str(e)}
elif algorithm == "none":
try:
decoded = jwt.decode(token, algorithms=["none"], options={"verify_signature": False})
except Exception as e:
return {"error": str(e)}
else:
return {"error": "Cannot decode token"}
if "admin" in decoded and decoded["admin"]:
return {"response": f"Welcome admin, here is your flag: {FLAG}"}
elif "username" in decoded:
return {"response": f"Welcome {decoded['username']}"}
else:
return {"error": "There is something wrong with your session, goodbye"}
@chal.route('/no-way-jose/create_session/<username>/')
def create_session(username):
encoded = jwt.encode({'username': username, 'admin': False}, SECRET_KEY, algorithm='HS256')
return {"session": encoded}