From 358a861b2901d922b2be76e29221fdb2732fe861 Mon Sep 17 00:00:00 2001
From: Kenji Urushima <kenji.urushima@gmail.com>
Date: Sat, 4 Apr 2015 07:41:18 +0900
Subject: [PATCH] 3.1.0 release

---
 ChangeLog.txt                                 |    4 +
 api/files.html                                |    4 +-
 api/symbols/KJUR.jws.IntDate.html             |    2 +-
 api/symbols/KJUR.jws.JWS.html                 |   10 +-
 .../src/{jws-3.0.js.html => jws-3.1.js.html}  | 1289 +++++++++--------
 index.html                                    |   12 +-
 index_mat.html                                |   50 +-
 jws-3.1.js                                    |  715 +++++++++
 jws-3.1.min.js                                |    3 +
 sample_generate.html                          |    2 +-
 sample_generate2.html                         |    2 +-
 sample_generate3.html                         |    2 +-
 sample_jwsjsgen1.html                         |    2 +-
 sample_jwsjsgen2.html                         |    2 +-
 sample_jwsjsveri1.html                        |    2 +-
 sample_verify.html                            |    2 +-
 sample_verify2.html                           |    2 +-
 sample_verify3.html                           |    2 +-
 tool_jwt.html                                 |   20 +-
 tool_verifyanalyze.html                       |    2 +-
 20 files changed, 1457 insertions(+), 672 deletions(-)
 rename api/symbols/src/{jws-3.0.js.html => jws-3.1.js.html} (79%)
 create mode 100755 jws-3.1.js
 create mode 100755 jws-3.1.min.js

diff --git a/ChangeLog.txt b/ChangeLog.txt
index e7d92f7..4f6560a 100755
--- a/ChangeLog.txt
+++ b/ChangeLog.txt
@@ -1,6 +1,10 @@
 
 ChangeLog for jsjws
 
+* 3.1.0 Release (2015-Apr-03)
+ - remove alg=none signature validation support.
+ - jsjws will be merged into jsrsasign near in the future.
+
 * 3.0.2 Release (2013-Sep-24)
  - add HS384 support with jsrsasign 4.1.4 or later.
    Please use 
diff --git a/api/files.html b/api/files.html
index ceca735..3ac893b 100755
--- a/api/files.html
+++ b/api/files.html
@@ -203,7 +203,7 @@ <h1 class="classTitle">File Index</h1>
 			
 			
 			<div>
-				<h2><a href="symbols/src/jws-3.0.js.html">jws-3.0.js</a></h2>
+				<h2><a href="symbols/src/jws-3.1.js.html">jws-3.1.js</a></h2>
 				
 
 				<dl>
@@ -213,7 +213,7 @@ <h2><a href="symbols/src/jws-3.0.js.html">jws-3.0.js</a></h2>
 					
 					
 						<dt class="heading">Version:</dt>
-							<dd>3.0.0 (2013-Aug-27)</dd>
+							<dd>3.1.0 (2015-Apr-03)</dd>
 					
 					
 					
diff --git a/api/symbols/KJUR.jws.IntDate.html b/api/symbols/KJUR.jws.IntDate.html
index eb84c52..177ed57 100755
--- a/api/symbols/KJUR.jws.IntDate.html
+++ b/api/symbols/KJUR.jws.IntDate.html
@@ -219,7 +219,7 @@ <h1 class="classTitle">
 				KJUR.jws.IntDate class
 				
 				
-					<br /><i>Defined in: </i> <a href="../symbols/src/jws-3.0.js.html">jws-3.0.js</a>.
+					<br /><i>Defined in: </i> <a href="../symbols/src/jws-3.1.js.html">jws-3.1.js</a>.
 				
 			</p>
 
diff --git a/api/symbols/KJUR.jws.JWS.html b/api/symbols/KJUR.jws.JWS.html
index 8bc0af4..c001cdf 100755
--- a/api/symbols/KJUR.jws.JWS.html
+++ b/api/symbols/KJUR.jws.JWS.html
@@ -219,7 +219,7 @@ <h1 class="classTitle">
 				JSON Web Signature(JWS) class
 				
 				
-					<br /><i>Defined in: </i> <a href="../symbols/src/jws-3.0.js.html">jws-3.0.js</a>.
+					<br /><i>Defined in: </i> <a href="../symbols/src/jws-3.1.js.html">jws-3.1.js</a>.
 				
 			</p>
 
@@ -440,7 +440,8 @@ <h1 class="classTitle">
 							<td class="nameDescription">
 								<div class="fixedFont">KJUR.jws.JWS.<b><a href="../symbols/KJUR.jws.JWS.html#.verify">verify</a></b>(sJWS, key)
 								</div>
-								<div class="description">verify JWS signature by specified key or certificate<br/></div>
+								<div class="description">verify JWS signature by specified key or certificate<br/>
+This method verifies a JSON Web Signature Compact Serialization string by the validation 
algorithm as described in 
<a href="http://self-issued.info/docs/draft-jones-json-web-signature-04.html#anchor5">
the section 5 of Internet Draft draft-jones-json-web-signature-04.</div>
 							</td>
 						</tr>
 					
@@ -493,7 +494,7 @@ <h1 class="classTitle">
 				
 				<div class="description">
 					JSON Web Signature(JWS) class.<br/>
-<h4>Supported Algorithms</h4>
Here is supported algorithm names for <a href="../symbols/KJUR.jws.JWS.html#.sign">KJUR.jws.JWS.sign</a> and <a href="../symbols/KJUR.jws.JWS.html#.verify">KJUR.jws.JWS.verify</a>
methods.
<table>
<tr><th>alg value</th><th>spec requirement</th><th>jsjws support</th></tr>
<tr><td>HS256</td><td>REQUIRED</td><td>SUPPORTED</td></tr>
<tr><td>HS384</td><td>OPTIONAL</td><td>-</td></tr>
<tr><td>HS512</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>RS256</td><td>RECOMMENDED</td><td>SUPPORTED</td></tr>
<tr><td>RS384</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>RS512</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>ES256</td><td>RECOMMENDED+</td><td>SUPPORTED</td></tr>
<tr><td>ES384</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>ES512</td><td>OPTIONAL</td><td>-</td></tr>
<tr><td>PS256</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>PS384</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>PS512</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>none</td><td>REQUIRED</td><td>SUPPORTED</td></tr>
</table>
+<h4>Supported Algorithms</h4>
Here is supported algorithm names for <a href="../symbols/KJUR.jws.JWS.html#.sign">KJUR.jws.JWS.sign</a> and <a href="../symbols/KJUR.jws.JWS.html#.verify">KJUR.jws.JWS.verify</a>
methods.
<table>
<tr><th>alg value</th><th>spec requirement</th><th>jsjws support</th></tr>
<tr><td>HS256</td><td>REQUIRED</td><td>SUPPORTED</td></tr>
<tr><td>HS384</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>HS512</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>RS256</td><td>RECOMMENDED</td><td>SUPPORTED</td></tr>
<tr><td>RS384</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>RS512</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>ES256</td><td>RECOMMENDED+</td><td>SUPPORTED</td></tr>
<tr><td>ES384</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>ES512</td><td>OPTIONAL</td><td>-</td></tr>
<tr><td>PS256</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>PS384</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>PS512</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>none</td><td>REQUIRED</td><td>SUPPORTED(generation only)</td></tr>
</table>
NOTE1: HS384 is supported since jsjws 3.0.2 with jsrsasign 4.1.4.<br/>
NOTE2: alg=none validation was removed since jsjws 3.1.0.<br/>
 					
 				</div>
 				
@@ -1184,7 +1185,7 @@ <h4>Supported Algorithms</h4>
Here is supported algorithm names for <a href="../
 					</div>
 					<div class="description">
 						generate JWS signature by specified key<br/>
-This method supports following algorithms.
<table>
<tr><th>alg value</th><th>spec requirement</th><th>jsjws support</th></tr>
<tr><td>HS256</td><td>REQUIRED</td><td>SUPPORTED</td></tr>
<tr><td>HS384</td><td>OPTIONAL</td><td>-</td></tr>
<tr><td>HS512</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>RS256</td><td>RECOMMENDED</td><td>SUPPORTED</td></tr>
<tr><td>RS384</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>RS512</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>ES256</td><td>RECOMMENDED+</td><td>SUPPORTED</td></tr>
<tr><td>ES384</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>ES512</td><td>OPTIONAL</td><td>-</td></tr>
<tr><td>PS256</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>PS384</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>PS512</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>none</td><td>REQUIRED</td><td>SUPPORTED</td></tr>
</table>
<dl>
<dt>NOTE1:
<dd>salt length of RSAPSS signature is the same as the hash algorithm length
because of <a href="http://www.ietf.org/mail-archive/web/jose/current/msg02901.html">IETF JOSE ML discussion</a>.
<dt>NOTE2:
<dd>The reason of HS384 unsupport is  
<a href="https://code.google.com/p/crypto-js/issues/detail?id=84">CryptoJS HmacSHA384 bug</a>.
</dl>
+This method supports following algorithms.
<table>
<tr><th>alg value</th><th>spec requirement</th><th>jsjws support</th></tr>
<tr><td>HS256</td><td>REQUIRED</td><td>SUPPORTED</td></tr>
<tr><td>HS384</td><td>OPTIONAL</td><td>-</td></tr>
<tr><td>HS512</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>RS256</td><td>RECOMMENDED</td><td>SUPPORTED</td></tr>
<tr><td>RS384</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>RS512</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>ES256</td><td>RECOMMENDED+</td><td>SUPPORTED</td></tr>
<tr><td>ES384</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>ES512</td><td>OPTIONAL</td><td>-</td></tr>
<tr><td>PS256</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>PS384</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>PS512</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
<tr><td>none</td><td>REQUIRED</td><td>SUPPORTED(generation only)</td></tr>
</table>
<dl>
<dt>NOTE1:
<dd>salt length of RSAPSS signature is the same as the hash algorithm length
because of <a href="http://www.ietf.org/mail-archive/web/jose/current/msg02901.html">IETF JOSE ML discussion</a>.
<dt>NOTE2:
<dd>The reason of HS384 unsupport is  
<a href="https://code.google.com/p/crypto-js/issues/detail?id=84">CryptoJS HmacSHA384 bug</a>.
<dt>NOTE3:
<dd>alg=none validation was removed since jsjws 3.1.0.<br/>
</dl>
 						
 						
 					</div>
@@ -1267,6 +1268,7 @@ <h4>Supported Algorithms</h4>
Here is supported algorithm names for <a href="../
 					</div>
 					<div class="description">
 						verify JWS signature by specified key or certificate<br/>
+This method verifies a JSON Web Signature Compact Serialization string by the validation 
algorithm as described in 
<a href="http://self-issued.info/docs/draft-jones-json-web-signature-04.html#anchor5">
the section 5 of Internet Draft draft-jones-json-web-signature-04.</a>
<br/>
NOTE: alg=none validation was removed since jsjws 3.1.0.<br/>
 						
 						
 					</div>
diff --git a/api/symbols/src/jws-3.0.js.html b/api/symbols/src/jws-3.1.js.html
similarity index 79%
rename from api/symbols/src/jws-3.0.js.html
rename to api/symbols/src/jws-3.1.js.html
index 435d459..e8b7002 100755
--- a/api/symbols/src/jws-3.0.js.html
+++ b/api/symbols/src/jws-3.1.js.html
@@ -5,14 +5,14 @@
 	.STRN {color: #393;}
 	.REGX {color: #339;}
 	.line {border-right: 1px dotted #666; color: #666; font-style: normal;}
-	</style></head><body><pre><span class='line'>  1</span> <span class="COMM">/*! jws-3.0.0 (c) 2013 Kenji Urushima | kjur.github.com/jsjws/license
+	</style></head><body><pre><span class='line'>  1</span> <span class="COMM">/*! jws-3.1.0 (c) 2013 Kenji Urushima | kjur.github.com/jsjws/license
 <span class='line'>  2</span>  */</span><span class="WHIT">
 <span class='line'>  3</span> </span><span class="COMM">/*
 <span class='line'>  4</span>  * jws.js - JSON Web Signature Class
 <span class='line'>  5</span>  *
-<span class='line'>  6</span>  * version: 3.0.0 (2013 Aug 27)
+<span class='line'>  6</span>  * version: 3.1.0 (2015 Apr 3)
 <span class='line'>  7</span>  *
-<span class='line'>  8</span>  * Copyright (c) 2010-2013 Kenji Urushima (kenji.urushima@gmail.com)
+<span class='line'>  8</span>  * Copyright (c) 2010-2014 Kenji Urushima (kenji.urushima@gmail.com)
 <span class='line'>  9</span>  *
 <span class='line'> 10</span>  * This software is licensed under the terms of the MIT License.
 <span class='line'> 11</span>  * http://kjur.github.com/jsjws/license/
@@ -23,9 +23,9 @@
 <span class='line'> 16</span> 
 <span class='line'> 17</span> </span><span class="COMM">/**
 <span class='line'> 18</span>  * @fileOverview
-<span class='line'> 19</span>  * @name jws-3.0.js
+<span class='line'> 19</span>  * @name jws-3.1.js
 <span class='line'> 20</span>  * @author Kenji Urushima kenji.urushima@gmail.com
-<span class='line'> 21</span>  * @version 3.0.0 (2013-Aug-27)
+<span class='line'> 21</span>  * @version 3.1.0 (2015-Apr-03)
 <span class='line'> 22</span>  * @since jsjws 1.0
 <span class='line'> 23</span>  * @license &lt;a href="http://kjur.github.io/jsjws/license/">MIT License&lt;/a>
 <span class='line'> 24</span>  */</span><span class="WHIT">
@@ -60,7 +60,7 @@
 <span class='line'> 53</span>  * &lt;table>
 <span class='line'> 54</span>  * &lt;tr>&lt;th>alg value&lt;/th>&lt;th>spec requirement&lt;/th>&lt;th>jsjws support&lt;/th>&lt;/tr>
 <span class='line'> 55</span>  * &lt;tr>&lt;td>HS256&lt;/td>&lt;td>REQUIRED&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
-<span class='line'> 56</span>  * &lt;tr>&lt;td>HS384&lt;/td>&lt;td>OPTIONAL&lt;/td>&lt;td>-&lt;/td>&lt;/tr>
+<span class='line'> 56</span>  * &lt;tr>&lt;td>HS384&lt;/td>&lt;td>OPTIONAL&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
 <span class='line'> 57</span>  * &lt;tr>&lt;td>HS512&lt;/td>&lt;td>OPTIONAL&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
 <span class='line'> 58</span>  * &lt;tr>&lt;td>RS256&lt;/td>&lt;td>RECOMMENDED&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
 <span class='line'> 59</span>  * &lt;tr>&lt;td>RS384&lt;/td>&lt;td>OPTIONAL&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
@@ -71,642 +71,653 @@
 <span class='line'> 64</span>  * &lt;tr>&lt;td>PS256&lt;/td>&lt;td>OPTIONAL&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
 <span class='line'> 65</span>  * &lt;tr>&lt;td>PS384&lt;/td>&lt;td>OPTIONAL&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
 <span class='line'> 66</span>  * &lt;tr>&lt;td>PS512&lt;/td>&lt;td>OPTIONAL&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
-<span class='line'> 67</span>  * &lt;tr>&lt;td>none&lt;/td>&lt;td>REQUIRED&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
+<span class='line'> 67</span>  * &lt;tr>&lt;td>none&lt;/td>&lt;td>REQUIRED&lt;/td>&lt;td>SUPPORTED(generation only)&lt;/td>&lt;/tr>
 <span class='line'> 68</span>  * &lt;/table>
-<span class='line'> 69</span>  */</span><span class="WHIT">
-<span class='line'> 70</span> </span><span class="NAME">KJUR.jws.JWS</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'> 71</span> 
-<span class='line'> 72</span> </span><span class="WHIT">    </span><span class="COMM">// === utility =============================================================</span><span class="WHIT">
+<span class='line'> 69</span>  * NOTE1: HS384 is supported since jsjws 3.0.2 with jsrsasign 4.1.4.&lt;br/>
+<span class='line'> 70</span>  * NOTE2: alg=none validation was removed since jsjws 3.1.0.&lt;br/>
+<span class='line'> 71</span>  */</span><span class="WHIT">
+<span class='line'> 72</span> </span><span class="NAME">KJUR.jws.JWS</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
 <span class='line'> 73</span> 
-<span class='line'> 74</span> </span><span class="WHIT">    </span><span class="COMM">/**
-<span class='line'> 75</span>      * parse JWS string and set public property 'parsedJWS' dictionary.&lt;br/>
-<span class='line'> 76</span>      * @name parseJWS
-<span class='line'> 77</span>      * @memberOf KJUR.jws.JWS
-<span class='line'> 78</span>      * @function
-<span class='line'> 79</span>      * @param {String} sJWS JWS signature string to be parsed.
-<span class='line'> 80</span>      * @throws if sJWS is not comma separated string such like "Header.Payload.Signature".
-<span class='line'> 81</span>      * @throws if JWS Header is a malformed JSON string.
-<span class='line'> 82</span>      * @since jws 1.1
-<span class='line'> 83</span>      */</span><span class="WHIT">
-<span class='line'> 84</span> </span><span class="WHIT">    </span><span class="NAME">this.parseJWS</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">sJWS</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sigValNotNeeded</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'> 85</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="PUNC">(</span><span class="NAME">this.parsedJWS</span><span class="WHIT"> </span><span class="PUNC">!==</span><span class="WHIT"> </span><span class="NAME">undefined</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">&&</span><span class="WHIT">
-<span class='line'> 86</span> </span><span class="WHIT">	    </span><span class="PUNC">(</span><span class="NAME">sigValNotNeeded</span><span class="WHIT"> </span><span class="PUNC">||</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">this.parsedJWS.sigvalH</span><span class="WHIT"> </span><span class="PUNC">!==</span><span class="WHIT"> </span><span class="NAME">undefined</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'> 87</span> </span><span class="WHIT">	    </span><span class="KEYW">return</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'> 88</span> </span><span class="WHIT">	</span><span class="PUNC">}</span><span class="WHIT">
-<span class='line'> 89</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">sJWS.match</span><span class="PUNC">(</span><span class="REGX">/^([^.]+)\.([^.]+)\.([^.]+)$/</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'> 90</span> </span><span class="WHIT">	    </span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"JWS signature is not a form of 'Head.Payload.SigValue'."</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'> 91</span> </span><span class="WHIT">	</span><span class="PUNC">}</span><span class="WHIT">
-<span class='line'> 92</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">b6Head</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">RegExp.$1</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'> 93</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">b6Payload</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">RegExp.$2</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'> 94</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">b6SigVal</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">RegExp.$3</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'> 95</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">b6Head</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="STRN">"."</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">b6Payload</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'> 96</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'> 97</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.headB64U</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">b6Head</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'> 98</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.payloadB64U</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">b6Payload</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'> 99</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.sigvalB64U</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">b6SigVal</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>100</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.si</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>101</span> 
-<span class='line'>102</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="PUNC">!</span><span class="NAME">sigValNotNeeded</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>103</span> </span><span class="WHIT">	    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hSigVal</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">b64utohex</span><span class="PUNC">(</span><span class="NAME">b6SigVal</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>104</span> </span><span class="WHIT">	    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">biSigVal</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">parseBigInt</span><span class="PUNC">(</span><span class="NAME">hSigVal</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NUMB">16</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>105</span> </span><span class="WHIT">	    </span><span class="NAME">this.parsedJWS.sigvalH</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">hSigVal</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>106</span> </span><span class="WHIT">	    </span><span class="NAME">this.parsedJWS.sigvalBI</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">biSigVal</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>107</span> </span><span class="WHIT">	</span><span class="PUNC">}</span><span class="WHIT">
-<span class='line'>108</span> 
-<span class='line'>109</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sHead</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">b64utoutf8</span><span class="PUNC">(</span><span class="NAME">b6Head</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>110</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">b64utoutf8</span><span class="PUNC">(</span><span class="NAME">b6Payload</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>111</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.headS</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">sHead</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>112</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.payloadS</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>113</span> 
-<span class='line'>114</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="PUNC">!</span><span class="WHIT"> </span><span class="NAME">this.isSafeJSONString</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">this.parsedJWS</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="STRN">'headP'</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="WHIT">
-<span class='line'>115</span> </span><span class="WHIT">	    </span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"malformed JSON string for JWS Head: "</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">sHead</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>116</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>117</span> 
-<span class='line'>118</span> </span><span class="WHIT">    </span><span class="COMM">// ==== JWS Validation =========================================================</span><span class="WHIT">
-<span class='line'>119</span> </span><span class="WHIT">    </span><span class="KEYW">function</span><span class="WHIT"> </span><span class="NAME">_getSignatureInputByString</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>120</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">utf8tob64u</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="STRN">"."</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">utf8tob64u</span><span class="PUNC">(</span><span class="NAME">sPayload</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>121</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>122</span> 
-<span class='line'>123</span> </span><span class="WHIT">    </span><span class="KEYW">function</span><span class="WHIT"> </span><span class="NAME">_getHashBySignatureInput</span><span class="PUNC">(</span><span class="NAME">sSignatureInput</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sHashAlg</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>124</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hashfunc</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">s</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT"> </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">KJUR.crypto.Util.hashString</span><span class="PUNC">(</span><span class="NAME">s</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sHashAlg</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT"> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>125</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">hashfunc</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"hash function not defined in jsrsasign: "</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">sHashAlg</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>126</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">hashfunc</span><span class="PUNC">(</span><span class="NAME">sSignatureInput</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>127</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>128</span> 
-<span class='line'>129</span> </span><span class="WHIT">    </span><span class="KEYW">function</span><span class="WHIT"> </span><span class="NAME">_jws_verifySignature</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hSig</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hN</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hE</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>130</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sSignatureInput</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">_getSignatureInputByString</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>131</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">biSig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">parseBigInt</span><span class="PUNC">(</span><span class="NAME">hSig</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NUMB">16</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>132</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">_rsasign_verifySignatureWithArgs</span><span class="PUNC">(</span><span class="NAME">sSignatureInput</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">biSig</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hN</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hE</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>133</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>134</span> 
-<span class='line'>135</span> </span><span class="WHIT">    </span><span class="COMM">/**
-<span class='line'>136</span>      * verify JWS signature with naked RSA public key.&lt;br/>
-<span class='line'>137</span>      * This only supports "RS256" and "RS512" algorithm.
-<span class='line'>138</span>      * @name verifyJWSByNE
-<span class='line'>139</span>      * @memberOf KJUR.jws.JWS
-<span class='line'>140</span>      * @function
-<span class='line'>141</span>      * @param {String} sJWS JWS signature string to be verified
-<span class='line'>142</span>      * @param {String} hN hexadecimal string for modulus of RSA public key
-<span class='line'>143</span>      * @param {String} hE hexadecimal string for public exponent of RSA public key
-<span class='line'>144</span>      * @return {String} returns 1 when JWS signature is valid, otherwise returns 0
-<span class='line'>145</span>      * @throws if sJWS is not comma separated string such like "Header.Payload.Signature".
-<span class='line'>146</span>      * @throws if JWS Header is a malformed JSON string.
-<span class='line'>147</span>      * @deprecated from 3.0.0 please move to {@link KJUR.jws.JWS.verify}
-<span class='line'>148</span>      */</span><span class="WHIT">
-<span class='line'>149</span> </span><span class="WHIT">    </span><span class="NAME">this.verifyJWSByNE</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">sJWS</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hN</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hE</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>150</span> </span><span class="WHIT">	</span><span class="NAME">this.parseJWS</span><span class="PUNC">(</span><span class="NAME">sJWS</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>151</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">_rsasign_verifySignatureWithArgs</span><span class="PUNC">(</span><span class="NAME">this.parsedJWS.si</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">this.parsedJWS.sigvalBI</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hN</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hE</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">    </span><span class="WHIT">
-<span class='line'>152</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>153</span> 
-<span class='line'>154</span> </span><span class="WHIT">    </span><span class="COMM">/**
-<span class='line'>155</span>      * verify JWS signature with RSA public key.&lt;br/>
-<span class='line'>156</span>      * This only supports "RS256", "RS512", "PS256" and "PS512" algorithms.
-<span class='line'>157</span>      * @name verifyJWSByKey
-<span class='line'>158</span>      * @memberOf KJUR.jws.JWS
-<span class='line'>159</span>      * @function
-<span class='line'>160</span>      * @param {String} sJWS JWS signature string to be verified
-<span class='line'>161</span>      * @param {RSAKey} key RSA public key
-<span class='line'>162</span>      * @return {Boolean} returns true when JWS signature is valid, otherwise returns false
-<span class='line'>163</span>      * @throws if sJWS is not comma separated string such like "Header.Payload.Signature".
-<span class='line'>164</span>      * @throws if JWS Header is a malformed JSON string.
-<span class='line'>165</span>      * @deprecated from 3.0.0 please move to {@link KJUR.jws.JWS.verify}
-<span class='line'>166</span>      */</span><span class="WHIT">
-<span class='line'>167</span> </span><span class="WHIT">    </span><span class="NAME">this.verifyJWSByKey</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">sJWS</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">key</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>168</span> </span><span class="WHIT">	</span><span class="NAME">this.parseJWS</span><span class="PUNC">(</span><span class="NAME">sJWS</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>169</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hashAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">_jws_getHashAlgFromParsedHead</span><span class="PUNC">(</span><span class="NAME">this.parsedJWS.headP</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>170</span> </span><span class="WHIT">        </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">isPSS</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">this.parsedJWS.headP</span><span class="PUNC">[</span><span class="STRN">'alg'</span><span class="PUNC">]</span><span class="PUNC">.</span><span class="NAME">substr</span><span class="PUNC">(</span><span class="NUMB">0</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NUMB">2</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">"PS"</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>171</span> 
-<span class='line'>172</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">key.hashAndVerify</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>173</span> </span><span class="WHIT">	    </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">key.hashAndVerify</span><span class="PUNC">(</span><span class="NAME">hashAlg</span><span class="PUNC">,</span><span class="WHIT">
-<span class='line'>174</span> </span><span class="WHIT">				     </span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">Buffer</span><span class="PUNC">(</span><span class="NAME">this.parsedJWS.si</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="STRN">'utf8'</span><span class="PUNC">)</span><span class="PUNC">.</span><span class="NAME">toString</span><span class="PUNC">(</span><span class="STRN">'base64'</span><span class="PUNC">)</span><span class="PUNC">,</span><span class="WHIT">
-<span class='line'>175</span> </span><span class="WHIT">				     </span><span class="NAME">b64utob64</span><span class="PUNC">(</span><span class="NAME">this.parsedJWS.sigvalB64U</span><span class="PUNC">)</span><span class="PUNC">,</span><span class="WHIT">
-<span class='line'>176</span> </span><span class="WHIT">				     </span><span class="STRN">'base64'</span><span class="PUNC">,</span><span class="WHIT">
-<span class='line'>177</span> </span><span class="WHIT">				     </span><span class="NAME">isPSS</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>178</span> </span><span class="WHIT">	</span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">isPSS</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>179</span> </span><span class="WHIT">	    </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">key.verifyStringPSS</span><span class="PUNC">(</span><span class="NAME">this.parsedJWS.si</span><span class="PUNC">,</span><span class="WHIT">
-<span class='line'>180</span> </span><span class="WHIT">				       </span><span class="NAME">this.parsedJWS.sigvalH</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hashAlg</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>181</span> </span><span class="WHIT">	</span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>182</span> </span><span class="WHIT">	    </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">key.verifyString</span><span class="PUNC">(</span><span class="NAME">this.parsedJWS.si</span><span class="PUNC">,</span><span class="WHIT">
-<span class='line'>183</span> </span><span class="WHIT">				    </span><span class="NAME">this.parsedJWS.sigvalH</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>184</span> </span><span class="WHIT">	</span><span class="PUNC">}</span><span class="WHIT">
-<span class='line'>185</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>186</span> 
-<span class='line'>187</span> </span><span class="WHIT">    </span><span class="COMM">/**
-<span class='line'>188</span>      * verify JWS signature by PEM formatted X.509 certificate.&lt;br/>
-<span class='line'>189</span>      * This only supports "RS256" and "RS512" algorithm.
-<span class='line'>190</span>      * @name verifyJWSByPemX509Cert
-<span class='line'>191</span>      * @memberOf KJUR.jws.JWS
-<span class='line'>192</span>      * @function
-<span class='line'>193</span>      * @param {String} sJWS JWS signature string to be verified
-<span class='line'>194</span>      * @param {String} sPemX509Cert string of PEM formatted X.509 certificate
-<span class='line'>195</span>      * @return {String} returns 1 when JWS signature is valid, otherwise returns 0
-<span class='line'>196</span>      * @throws if sJWS is not comma separated string such like "Header.Payload.Signature".
-<span class='line'>197</span>      * @throws if JWS Header is a malformed JSON string.
-<span class='line'>198</span>      * @since 1.1
-<span class='line'>199</span>      * @deprecated from 3.0.0 please move to {@link KJUR.jws.JWS.verify}
-<span class='line'>200</span>      */</span><span class="WHIT">
-<span class='line'>201</span> </span><span class="WHIT">    </span><span class="NAME">this.verifyJWSByPemX509Cert</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">sJWS</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPemX509Cert</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>202</span> </span><span class="WHIT">	</span><span class="NAME">this.parseJWS</span><span class="PUNC">(</span><span class="NAME">sJWS</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>203</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">x509</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">X509</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>204</span> </span><span class="WHIT">	</span><span class="NAME">x509.readCertPEM</span><span class="PUNC">(</span><span class="NAME">sPemX509Cert</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>205</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">x509.subjectPublicKeyRSA.verifyString</span><span class="PUNC">(</span><span class="NAME">this.parsedJWS.si</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">this.parsedJWS.sigvalH</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>206</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>207</span> 
-<span class='line'>208</span> </span><span class="WHIT">    </span><span class="COMM">// ==== JWS Generation =========================================================</span><span class="WHIT">
-<span class='line'>209</span> </span><span class="WHIT">    </span><span class="KEYW">function</span><span class="WHIT"> </span><span class="NAME">_jws_getHashAlgFromParsedHead</span><span class="PUNC">(</span><span class="NAME">head</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>210</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sigAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">head</span><span class="PUNC">[</span><span class="STRN">"alg"</span><span class="PUNC">]</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>211</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hashAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="STRN">""</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>212</span> 
-<span class='line'>213</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">sigAlg</span><span class="WHIT"> </span><span class="PUNC">!=</span><span class="WHIT"> </span><span class="STRN">"RS256"</span><span class="WHIT"> </span><span class="PUNC">&&</span><span class="WHIT"> </span><span class="NAME">sigAlg</span><span class="WHIT"> </span><span class="PUNC">!=</span><span class="WHIT"> </span><span class="STRN">"RS512"</span><span class="WHIT"> </span><span class="PUNC">&&</span><span class="WHIT">
-<span class='line'>214</span> </span><span class="WHIT">	    </span><span class="NAME">sigAlg</span><span class="WHIT"> </span><span class="PUNC">!=</span><span class="WHIT"> </span><span class="STRN">"PS256"</span><span class="WHIT"> </span><span class="PUNC">&&</span><span class="WHIT"> </span><span class="NAME">sigAlg</span><span class="WHIT"> </span><span class="PUNC">!=</span><span class="WHIT"> </span><span class="STRN">"PS512"</span><span class="PUNC">)</span><span class="WHIT">
-<span class='line'>215</span> </span><span class="WHIT">	    </span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"JWS signature algorithm not supported: "</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">sigAlg</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>216</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">sigAlg.substr</span><span class="PUNC">(</span><span class="NUMB">2</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">"256"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="NAME">hashAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="STRN">"sha256"</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>217</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">sigAlg.substr</span><span class="PUNC">(</span><span class="NUMB">2</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">"512"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="NAME">hashAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="STRN">"sha512"</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>218</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">hashAlg</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>219</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>220</span> 
-<span class='line'>221</span> </span><span class="WHIT">    </span><span class="KEYW">function</span><span class="WHIT"> </span><span class="NAME">_jws_getHashAlgFromHead</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>222</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">_jws_getHashAlgFromParsedHead</span><span class="PUNC">(</span><span class="NAME">jsonParse</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>223</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>224</span> 
-<span class='line'>225</span> </span><span class="WHIT">    </span><span class="KEYW">function</span><span class="WHIT"> </span><span class="NAME">_jws_generateSignatureValueBySI_NED</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hN</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hE</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hD</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>226</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">rsa</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">RSAKey</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>227</span> </span><span class="WHIT">	</span><span class="NAME">rsa.setPrivate</span><span class="PUNC">(</span><span class="NAME">hN</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hE</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hD</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>228</span> 
-<span class='line'>229</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hashAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">_jws_getHashAlgFromHead</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>230</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sigValue</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">rsa.signString</span><span class="PUNC">(</span><span class="NAME">sSI</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hashAlg</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>231</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">sigValue</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>232</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>233</span> 
-<span class='line'>234</span> </span><span class="WHIT">    </span><span class="KEYW">function</span><span class="WHIT"> </span><span class="NAME">_jws_generateSignatureValueBySI_Key</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">key</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">head</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>235</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hashAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>236</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="KEYW">typeof</span><span class="WHIT"> </span><span class="NAME">head</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">"undefined"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>237</span> </span><span class="WHIT">	    </span><span class="NAME">hashAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">_jws_getHashAlgFromHead</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>238</span> </span><span class="WHIT">	</span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>239</span> </span><span class="WHIT">	    </span><span class="NAME">hashAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">_jws_getHashAlgFromParsedHead</span><span class="PUNC">(</span><span class="NAME">head</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>240</span> </span><span class="WHIT">	</span><span class="PUNC">}</span><span class="WHIT">
-<span class='line'>241</span> 
-<span class='line'>242</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">isPSS</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">head</span><span class="PUNC">[</span><span class="STRN">'alg'</span><span class="PUNC">]</span><span class="PUNC">.</span><span class="NAME">substr</span><span class="PUNC">(</span><span class="NUMB">0</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NUMB">2</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">"PS"</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'> 74</span> </span><span class="WHIT">    </span><span class="COMM">// === utility =============================================================</span><span class="WHIT">
+<span class='line'> 75</span> 
+<span class='line'> 76</span> </span><span class="WHIT">    </span><span class="COMM">/**
+<span class='line'> 77</span>      * parse JWS string and set public property 'parsedJWS' dictionary.&lt;br/>
+<span class='line'> 78</span>      * @name parseJWS
+<span class='line'> 79</span>      * @memberOf KJUR.jws.JWS
+<span class='line'> 80</span>      * @function
+<span class='line'> 81</span>      * @param {String} sJWS JWS signature string to be parsed.
+<span class='line'> 82</span>      * @throws if sJWS is not comma separated string such like "Header.Payload.Signature".
+<span class='line'> 83</span>      * @throws if JWS Header is a malformed JSON string.
+<span class='line'> 84</span>      * @since jws 1.1
+<span class='line'> 85</span>      */</span><span class="WHIT">
+<span class='line'> 86</span> </span><span class="WHIT">    </span><span class="NAME">this.parseJWS</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">sJWS</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sigValNotNeeded</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'> 87</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="PUNC">(</span><span class="NAME">this.parsedJWS</span><span class="WHIT"> </span><span class="PUNC">!==</span><span class="WHIT"> </span><span class="NAME">undefined</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">&&</span><span class="WHIT">
+<span class='line'> 88</span> </span><span class="WHIT">	    </span><span class="PUNC">(</span><span class="NAME">sigValNotNeeded</span><span class="WHIT"> </span><span class="PUNC">||</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">this.parsedJWS.sigvalH</span><span class="WHIT"> </span><span class="PUNC">!==</span><span class="WHIT"> </span><span class="NAME">undefined</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'> 89</span> </span><span class="WHIT">	    </span><span class="KEYW">return</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'> 90</span> </span><span class="WHIT">	</span><span class="PUNC">}</span><span class="WHIT">
+<span class='line'> 91</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">sJWS.match</span><span class="PUNC">(</span><span class="REGX">/^([^.]+)\.([^.]+)\.([^.]+)$/</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'> 92</span> </span><span class="WHIT">	    </span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"JWS signature is not a form of 'Head.Payload.SigValue'."</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'> 93</span> </span><span class="WHIT">	</span><span class="PUNC">}</span><span class="WHIT">
+<span class='line'> 94</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">b6Head</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">RegExp.$1</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'> 95</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">b6Payload</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">RegExp.$2</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'> 96</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">b6SigVal</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">RegExp.$3</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'> 97</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">b6Head</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="STRN">"."</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">b6Payload</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'> 98</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'> 99</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.headB64U</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">b6Head</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>100</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.payloadB64U</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">b6Payload</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>101</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.sigvalB64U</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">b6SigVal</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>102</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.si</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>103</span> 
+<span class='line'>104</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="PUNC">!</span><span class="NAME">sigValNotNeeded</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>105</span> </span><span class="WHIT">	    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hSigVal</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">b64utohex</span><span class="PUNC">(</span><span class="NAME">b6SigVal</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>106</span> </span><span class="WHIT">	    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">biSigVal</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">parseBigInt</span><span class="PUNC">(</span><span class="NAME">hSigVal</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NUMB">16</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>107</span> </span><span class="WHIT">	    </span><span class="NAME">this.parsedJWS.sigvalH</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">hSigVal</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>108</span> </span><span class="WHIT">	    </span><span class="NAME">this.parsedJWS.sigvalBI</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">biSigVal</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>109</span> </span><span class="WHIT">	</span><span class="PUNC">}</span><span class="WHIT">
+<span class='line'>110</span> 
+<span class='line'>111</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sHead</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">b64utoutf8</span><span class="PUNC">(</span><span class="NAME">b6Head</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>112</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">b64utoutf8</span><span class="PUNC">(</span><span class="NAME">b6Payload</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>113</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.headS</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">sHead</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>114</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.payloadS</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>115</span> 
+<span class='line'>116</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="PUNC">!</span><span class="WHIT"> </span><span class="NAME">this.isSafeJSONString</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">this.parsedJWS</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="STRN">'headP'</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="WHIT">
+<span class='line'>117</span> </span><span class="WHIT">	    </span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"malformed JSON string for JWS Head: "</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">sHead</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>118</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>119</span> 
+<span class='line'>120</span> </span><span class="WHIT">    </span><span class="COMM">// ==== JWS Validation =========================================================</span><span class="WHIT">
+<span class='line'>121</span> </span><span class="WHIT">    </span><span class="KEYW">function</span><span class="WHIT"> </span><span class="NAME">_getSignatureInputByString</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>122</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">utf8tob64u</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="STRN">"."</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">utf8tob64u</span><span class="PUNC">(</span><span class="NAME">sPayload</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>123</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>124</span> 
+<span class='line'>125</span> </span><span class="WHIT">    </span><span class="KEYW">function</span><span class="WHIT"> </span><span class="NAME">_getHashBySignatureInput</span><span class="PUNC">(</span><span class="NAME">sSignatureInput</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sHashAlg</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>126</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hashfunc</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">s</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT"> </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">KJUR.crypto.Util.hashString</span><span class="PUNC">(</span><span class="NAME">s</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sHashAlg</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT"> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>127</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">hashfunc</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"hash function not defined in jsrsasign: "</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">sHashAlg</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>128</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">hashfunc</span><span class="PUNC">(</span><span class="NAME">sSignatureInput</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>129</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>130</span> 
+<span class='line'>131</span> </span><span class="WHIT">    </span><span class="KEYW">function</span><span class="WHIT"> </span><span class="NAME">_jws_verifySignature</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hSig</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hN</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hE</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>132</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sSignatureInput</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">_getSignatureInputByString</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>133</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">biSig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">parseBigInt</span><span class="PUNC">(</span><span class="NAME">hSig</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NUMB">16</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>134</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">_rsasign_verifySignatureWithArgs</span><span class="PUNC">(</span><span class="NAME">sSignatureInput</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">biSig</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hN</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hE</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>135</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>136</span> 
+<span class='line'>137</span> </span><span class="WHIT">    </span><span class="COMM">/**
+<span class='line'>138</span>      * verify JWS signature with naked RSA public key.&lt;br/>
+<span class='line'>139</span>      * This only supports "RS256" and "RS512" algorithm.
+<span class='line'>140</span>      * @name verifyJWSByNE
+<span class='line'>141</span>      * @memberOf KJUR.jws.JWS
+<span class='line'>142</span>      * @function
+<span class='line'>143</span>      * @param {String} sJWS JWS signature string to be verified
+<span class='line'>144</span>      * @param {String} hN hexadecimal string for modulus of RSA public key
+<span class='line'>145</span>      * @param {String} hE hexadecimal string for public exponent of RSA public key
+<span class='line'>146</span>      * @return {String} returns 1 when JWS signature is valid, otherwise returns 0
+<span class='line'>147</span>      * @throws if sJWS is not comma separated string such like "Header.Payload.Signature".
+<span class='line'>148</span>      * @throws if JWS Header is a malformed JSON string.
+<span class='line'>149</span>      * @deprecated from 3.0.0 please move to {@link KJUR.jws.JWS.verify}
+<span class='line'>150</span>      */</span><span class="WHIT">
+<span class='line'>151</span> </span><span class="WHIT">    </span><span class="NAME">this.verifyJWSByNE</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">sJWS</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hN</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hE</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>152</span> </span><span class="WHIT">	</span><span class="NAME">this.parseJWS</span><span class="PUNC">(</span><span class="NAME">sJWS</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>153</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">_rsasign_verifySignatureWithArgs</span><span class="PUNC">(</span><span class="NAME">this.parsedJWS.si</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">this.parsedJWS.sigvalBI</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hN</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hE</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">    </span><span class="WHIT">
+<span class='line'>154</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>155</span> 
+<span class='line'>156</span> </span><span class="WHIT">    </span><span class="COMM">/**
+<span class='line'>157</span>      * verify JWS signature with RSA public key.&lt;br/>
+<span class='line'>158</span>      * This only supports "RS256", "RS512", "PS256" and "PS512" algorithms.
+<span class='line'>159</span>      * @name verifyJWSByKey
+<span class='line'>160</span>      * @memberOf KJUR.jws.JWS
+<span class='line'>161</span>      * @function
+<span class='line'>162</span>      * @param {String} sJWS JWS signature string to be verified
+<span class='line'>163</span>      * @param {RSAKey} key RSA public key
+<span class='line'>164</span>      * @return {Boolean} returns true when JWS signature is valid, otherwise returns false
+<span class='line'>165</span>      * @throws if sJWS is not comma separated string such like "Header.Payload.Signature".
+<span class='line'>166</span>      * @throws if JWS Header is a malformed JSON string.
+<span class='line'>167</span>      * @deprecated from 3.0.0 please move to {@link KJUR.jws.JWS.verify}
+<span class='line'>168</span>      */</span><span class="WHIT">
+<span class='line'>169</span> </span><span class="WHIT">    </span><span class="NAME">this.verifyJWSByKey</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">sJWS</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">key</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>170</span> </span><span class="WHIT">	</span><span class="NAME">this.parseJWS</span><span class="PUNC">(</span><span class="NAME">sJWS</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>171</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hashAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">_jws_getHashAlgFromParsedHead</span><span class="PUNC">(</span><span class="NAME">this.parsedJWS.headP</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>172</span> </span><span class="WHIT">        </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">isPSS</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">this.parsedJWS.headP</span><span class="PUNC">[</span><span class="STRN">'alg'</span><span class="PUNC">]</span><span class="PUNC">.</span><span class="NAME">substr</span><span class="PUNC">(</span><span class="NUMB">0</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NUMB">2</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">"PS"</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>173</span> 
+<span class='line'>174</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">key.hashAndVerify</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>175</span> </span><span class="WHIT">	    </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">key.hashAndVerify</span><span class="PUNC">(</span><span class="NAME">hashAlg</span><span class="PUNC">,</span><span class="WHIT">
+<span class='line'>176</span> </span><span class="WHIT">				     </span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">Buffer</span><span class="PUNC">(</span><span class="NAME">this.parsedJWS.si</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="STRN">'utf8'</span><span class="PUNC">)</span><span class="PUNC">.</span><span class="NAME">toString</span><span class="PUNC">(</span><span class="STRN">'base64'</span><span class="PUNC">)</span><span class="PUNC">,</span><span class="WHIT">
+<span class='line'>177</span> </span><span class="WHIT">				     </span><span class="NAME">b64utob64</span><span class="PUNC">(</span><span class="NAME">this.parsedJWS.sigvalB64U</span><span class="PUNC">)</span><span class="PUNC">,</span><span class="WHIT">
+<span class='line'>178</span> </span><span class="WHIT">				     </span><span class="STRN">'base64'</span><span class="PUNC">,</span><span class="WHIT">
+<span class='line'>179</span> </span><span class="WHIT">				     </span><span class="NAME">isPSS</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>180</span> </span><span class="WHIT">	</span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">isPSS</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>181</span> </span><span class="WHIT">	    </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">key.verifyStringPSS</span><span class="PUNC">(</span><span class="NAME">this.parsedJWS.si</span><span class="PUNC">,</span><span class="WHIT">
+<span class='line'>182</span> </span><span class="WHIT">				       </span><span class="NAME">this.parsedJWS.sigvalH</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hashAlg</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>183</span> </span><span class="WHIT">	</span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>184</span> </span><span class="WHIT">	    </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">key.verifyString</span><span class="PUNC">(</span><span class="NAME">this.parsedJWS.si</span><span class="PUNC">,</span><span class="WHIT">
+<span class='line'>185</span> </span><span class="WHIT">				    </span><span class="NAME">this.parsedJWS.sigvalH</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>186</span> </span><span class="WHIT">	</span><span class="PUNC">}</span><span class="WHIT">
+<span class='line'>187</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>188</span> 
+<span class='line'>189</span> </span><span class="WHIT">    </span><span class="COMM">/**
+<span class='line'>190</span>      * verify JWS signature by PEM formatted X.509 certificate.&lt;br/>
+<span class='line'>191</span>      * This only supports "RS256" and "RS512" algorithm.
+<span class='line'>192</span>      * @name verifyJWSByPemX509Cert
+<span class='line'>193</span>      * @memberOf KJUR.jws.JWS
+<span class='line'>194</span>      * @function
+<span class='line'>195</span>      * @param {String} sJWS JWS signature string to be verified
+<span class='line'>196</span>      * @param {String} sPemX509Cert string of PEM formatted X.509 certificate
+<span class='line'>197</span>      * @return {String} returns 1 when JWS signature is valid, otherwise returns 0
+<span class='line'>198</span>      * @throws if sJWS is not comma separated string such like "Header.Payload.Signature".
+<span class='line'>199</span>      * @throws if JWS Header is a malformed JSON string.
+<span class='line'>200</span>      * @since 1.1
+<span class='line'>201</span>      * @deprecated from 3.0.0 please move to {@link KJUR.jws.JWS.verify}
+<span class='line'>202</span>      */</span><span class="WHIT">
+<span class='line'>203</span> </span><span class="WHIT">    </span><span class="NAME">this.verifyJWSByPemX509Cert</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">sJWS</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPemX509Cert</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>204</span> </span><span class="WHIT">	</span><span class="NAME">this.parseJWS</span><span class="PUNC">(</span><span class="NAME">sJWS</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>205</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">x509</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">X509</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>206</span> </span><span class="WHIT">	</span><span class="NAME">x509.readCertPEM</span><span class="PUNC">(</span><span class="NAME">sPemX509Cert</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>207</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">x509.subjectPublicKeyRSA.verifyString</span><span class="PUNC">(</span><span class="NAME">this.parsedJWS.si</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">this.parsedJWS.sigvalH</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>208</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>209</span> 
+<span class='line'>210</span> </span><span class="WHIT">    </span><span class="COMM">// ==== JWS Generation =========================================================</span><span class="WHIT">
+<span class='line'>211</span> </span><span class="WHIT">    </span><span class="KEYW">function</span><span class="WHIT"> </span><span class="NAME">_jws_getHashAlgFromParsedHead</span><span class="PUNC">(</span><span class="NAME">head</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>212</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sigAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">head</span><span class="PUNC">[</span><span class="STRN">"alg"</span><span class="PUNC">]</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>213</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hashAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="STRN">""</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>214</span> 
+<span class='line'>215</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">sigAlg</span><span class="WHIT"> </span><span class="PUNC">!=</span><span class="WHIT"> </span><span class="STRN">"RS256"</span><span class="WHIT"> </span><span class="PUNC">&&</span><span class="WHIT"> </span><span class="NAME">sigAlg</span><span class="WHIT"> </span><span class="PUNC">!=</span><span class="WHIT"> </span><span class="STRN">"RS512"</span><span class="WHIT"> </span><span class="PUNC">&&</span><span class="WHIT">
+<span class='line'>216</span> </span><span class="WHIT">	    </span><span class="NAME">sigAlg</span><span class="WHIT"> </span><span class="PUNC">!=</span><span class="WHIT"> </span><span class="STRN">"PS256"</span><span class="WHIT"> </span><span class="PUNC">&&</span><span class="WHIT"> </span><span class="NAME">sigAlg</span><span class="WHIT"> </span><span class="PUNC">!=</span><span class="WHIT"> </span><span class="STRN">"PS512"</span><span class="PUNC">)</span><span class="WHIT">
+<span class='line'>217</span> </span><span class="WHIT">	    </span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"JWS signature algorithm not supported: "</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">sigAlg</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>218</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">sigAlg.substr</span><span class="PUNC">(</span><span class="NUMB">2</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">"256"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="NAME">hashAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="STRN">"sha256"</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>219</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">sigAlg.substr</span><span class="PUNC">(</span><span class="NUMB">2</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">"512"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="NAME">hashAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="STRN">"sha512"</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>220</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">hashAlg</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>221</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>222</span> 
+<span class='line'>223</span> </span><span class="WHIT">    </span><span class="KEYW">function</span><span class="WHIT"> </span><span class="NAME">_jws_getHashAlgFromHead</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>224</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">_jws_getHashAlgFromParsedHead</span><span class="PUNC">(</span><span class="NAME">jsonParse</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>225</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>226</span> 
+<span class='line'>227</span> </span><span class="WHIT">    </span><span class="KEYW">function</span><span class="WHIT"> </span><span class="NAME">_jws_generateSignatureValueBySI_NED</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hN</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hE</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hD</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>228</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">rsa</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">RSAKey</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>229</span> </span><span class="WHIT">	</span><span class="NAME">rsa.setPrivate</span><span class="PUNC">(</span><span class="NAME">hN</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hE</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hD</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>230</span> 
+<span class='line'>231</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hashAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">_jws_getHashAlgFromHead</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>232</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sigValue</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">rsa.signString</span><span class="PUNC">(</span><span class="NAME">sSI</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hashAlg</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>233</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">sigValue</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>234</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>235</span> 
+<span class='line'>236</span> </span><span class="WHIT">    </span><span class="KEYW">function</span><span class="WHIT"> </span><span class="NAME">_jws_generateSignatureValueBySI_Key</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">key</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">head</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>237</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hashAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>238</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="KEYW">typeof</span><span class="WHIT"> </span><span class="NAME">head</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">"undefined"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>239</span> </span><span class="WHIT">	    </span><span class="NAME">hashAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">_jws_getHashAlgFromHead</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>240</span> </span><span class="WHIT">	</span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>241</span> </span><span class="WHIT">	    </span><span class="NAME">hashAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">_jws_getHashAlgFromParsedHead</span><span class="PUNC">(</span><span class="NAME">head</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>242</span> </span><span class="WHIT">	</span><span class="PUNC">}</span><span class="WHIT">
 <span class='line'>243</span> 
-<span class='line'>244</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">key.hashAndSign</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>245</span> </span><span class="WHIT">	    </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">b64tob64u</span><span class="PUNC">(</span><span class="NAME">key.hashAndSign</span><span class="PUNC">(</span><span class="NAME">hashAlg</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="STRN">'binary'</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="STRN">'base64'</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">isPSS</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>246</span> </span><span class="WHIT">	</span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">isPSS</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>247</span> </span><span class="WHIT">	    </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">hextob64u</span><span class="PUNC">(</span><span class="NAME">key.signStringPSS</span><span class="PUNC">(</span><span class="NAME">sSI</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hashAlg</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>248</span> </span><span class="WHIT">	</span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>249</span> </span><span class="WHIT">	    </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">hextob64u</span><span class="PUNC">(</span><span class="NAME">key.signString</span><span class="PUNC">(</span><span class="NAME">sSI</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hashAlg</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>250</span> </span><span class="WHIT">	</span><span class="PUNC">}</span><span class="WHIT">
-<span class='line'>251</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>252</span> 
-<span class='line'>253</span> </span><span class="WHIT">    </span><span class="KEYW">function</span><span class="WHIT"> </span><span class="NAME">_jws_generateSignatureValueByNED</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hN</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hE</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hD</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>254</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">_getSignatureInputByString</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>255</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">_jws_generateSignatureValueBySI_NED</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hN</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hE</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hD</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>256</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>257</span> 
-<span class='line'>258</span> </span><span class="WHIT">    </span><span class="COMM">/**
-<span class='line'>259</span>      * generate JWS signature by Header, Payload and a naked RSA private key.&lt;br/>
-<span class='line'>260</span>      * This only supports "RS256" and "RS512" algorithm.
-<span class='line'>261</span>      * @name generateJWSByNED
-<span class='line'>262</span>      * @memberOf KJUR.jws.JWS
-<span class='line'>263</span>      * @function
-<span class='line'>264</span>      * @param {String} sHead string of JWS Header
-<span class='line'>265</span>      * @param {String} sPayload string of JWS Payload
-<span class='line'>266</span>      * @param {String} hN hexadecimal string for modulus of RSA public key
-<span class='line'>267</span>      * @param {String} hE hexadecimal string for public exponent of RSA public key
-<span class='line'>268</span>      * @param {String} hD hexadecimal string for private exponent of RSA private key
-<span class='line'>269</span>      * @return {String} JWS signature string
-<span class='line'>270</span>      * @throws if sHead is a malformed JSON string.
-<span class='line'>271</span>      * @throws if supported signature algorithm was not specified in JSON Header.
-<span class='line'>272</span>      * @deprecated from 3.0.0 please move to {@link KJUR.jws.JWS.sign}
-<span class='line'>273</span>      */</span><span class="WHIT">
-<span class='line'>274</span> </span><span class="WHIT">    </span><span class="NAME">this.generateJWSByNED</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hN</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hE</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hD</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>275</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="PUNC">!</span><span class="WHIT"> </span><span class="NAME">this.isSafeJSONString</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"JWS Head is not safe JSON string: "</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">sHead</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>276</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">_getSignatureInputByString</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>277</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hSigValue</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">_jws_generateSignatureValueBySI_NED</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hN</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hE</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hD</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>278</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">b64SigValue</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">hextob64u</span><span class="PUNC">(</span><span class="NAME">hSigValue</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>279</span> </span><span class="WHIT">	</span><span class="WHIT">
-<span class='line'>280</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>281</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.headB64U</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">sSI.split</span><span class="PUNC">(</span><span class="STRN">"."</span><span class="PUNC">)</span><span class="PUNC">[</span><span class="NUMB">0</span><span class="PUNC">]</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>282</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.payloadB64U</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">sSI.split</span><span class="PUNC">(</span><span class="STRN">"."</span><span class="PUNC">)</span><span class="PUNC">[</span><span class="NUMB">1</span><span class="PUNC">]</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>283</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.sigvalB64U</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">b64SigValue</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>284</span> 
-<span class='line'>285</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="STRN">"."</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">b64SigValue</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>286</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>287</span> 
-<span class='line'>288</span> </span><span class="WHIT">    </span><span class="COMM">/**
-<span class='line'>289</span>      * generate JWS signature by Header, Payload and a RSA private key.&lt;br/>
-<span class='line'>290</span>      * This only supports "RS256", "RS512", "PS256" and "PS512" algorithms.
-<span class='line'>291</span>      * @name generateJWSByKey
-<span class='line'>292</span>      * @memberOf KJUR.jws.JWS
-<span class='line'>293</span>      * @function
-<span class='line'>294</span>      * @param {String} sHead string of JWS Header
-<span class='line'>295</span>      * @param {String} sPayload string of JWS Payload
-<span class='line'>296</span>      * @param {RSAKey} RSA private key
-<span class='line'>297</span>      * @return {String} JWS signature string
-<span class='line'>298</span>      * @throws if sHead is a malformed JSON string.
-<span class='line'>299</span>      * @throws if supported signature algorithm was not specified in JSON Header.
-<span class='line'>300</span>      * @deprecated from 3.0.0 please move to {@link KJUR.jws.JWS.sign}
-<span class='line'>301</span>      */</span><span class="WHIT">
-<span class='line'>302</span> </span><span class="WHIT">    </span><span class="NAME">this.generateJWSByKey</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">key</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>303</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">obj</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>304</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="PUNC">!</span><span class="NAME">this.isSafeJSONString</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">obj</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="STRN">'headP'</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="WHIT">
-<span class='line'>305</span> </span><span class="WHIT">	    </span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"JWS Head is not safe JSON string: "</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">sHead</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>306</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">_getSignatureInputByString</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>307</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">b64SigValue</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">_jws_generateSignatureValueBySI_Key</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">key</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">obj.headP</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>308</span> 
-<span class='line'>309</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>310</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.headB64U</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">sSI.split</span><span class="PUNC">(</span><span class="STRN">"."</span><span class="PUNC">)</span><span class="PUNC">[</span><span class="NUMB">0</span><span class="PUNC">]</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>311</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.payloadB64U</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">sSI.split</span><span class="PUNC">(</span><span class="STRN">"."</span><span class="PUNC">)</span><span class="PUNC">[</span><span class="NUMB">1</span><span class="PUNC">]</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>312</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.sigvalB64U</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">b64SigValue</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>313</span> 
-<span class='line'>314</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="STRN">"."</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">b64SigValue</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>315</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>316</span> 
-<span class='line'>317</span> </span><span class="WHIT">    </span><span class="COMM">// === sign with PKCS#1 RSA private key =====================================================</span><span class="WHIT">
-<span class='line'>318</span> </span><span class="WHIT">    </span><span class="KEYW">function</span><span class="WHIT"> </span><span class="NAME">_jws_generateSignatureValueBySI_PemPrvKey</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPemPrvKey</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>319</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">rsa</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">RSAKey</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>320</span> </span><span class="WHIT">	</span><span class="NAME">rsa.readPrivateKeyFromPEMString</span><span class="PUNC">(</span><span class="NAME">sPemPrvKey</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>321</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hashAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">_jws_getHashAlgFromHead</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>322</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sigValue</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">rsa.signString</span><span class="PUNC">(</span><span class="NAME">sSI</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hashAlg</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>323</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">sigValue</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>324</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>325</span> 
-<span class='line'>326</span> </span><span class="WHIT">    </span><span class="COMM">/**
-<span class='line'>327</span>      * generate JWS signature by Header, Payload and a PEM formatted PKCS#1 RSA private key.&lt;br/>
-<span class='line'>328</span>      * This only supports "RS256" and "RS512" algorithm.
-<span class='line'>329</span>      * @name generateJWSByP1PrvKey
-<span class='line'>330</span>      * @memberOf KJUR.jws.JWS
-<span class='line'>331</span>      * @function
-<span class='line'>332</span>      * @param {String} sHead string of JWS Header
-<span class='line'>333</span>      * @param {String} sPayload string of JWS Payload
-<span class='line'>334</span>      * @param {String} string for sPemPrvKey PEM formatted PKCS#1 RSA private key&lt;br/>
-<span class='line'>335</span>      *                 Heading and trailing space characters in PEM key will be ignored.
-<span class='line'>336</span>      * @return {String} JWS signature string
-<span class='line'>337</span>      * @throws if sHead is a malformed JSON string.
-<span class='line'>338</span>      * @throws if supported signature algorithm was not specified in JSON Header.
-<span class='line'>339</span>      * @since 1.1
-<span class='line'>340</span>      * @deprecated from 3.0.0 please move to {@link KJUR.jws.JWS.sign}
-<span class='line'>341</span>      */</span><span class="WHIT">
-<span class='line'>342</span> </span><span class="WHIT">    </span><span class="NAME">this.generateJWSByP1PrvKey</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPemPrvKey</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>343</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="PUNC">!</span><span class="WHIT"> </span><span class="NAME">this.isSafeJSONString</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"JWS Head is not safe JSON string: "</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">sHead</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>344</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">_getSignatureInputByString</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>345</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hSigValue</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">_jws_generateSignatureValueBySI_PemPrvKey</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPemPrvKey</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>346</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">b64SigValue</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">hextob64u</span><span class="PUNC">(</span><span class="NAME">hSigValue</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>347</span> 
-<span class='line'>348</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>349</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.headB64U</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">sSI.split</span><span class="PUNC">(</span><span class="STRN">"."</span><span class="PUNC">)</span><span class="PUNC">[</span><span class="NUMB">0</span><span class="PUNC">]</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>350</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.payloadB64U</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">sSI.split</span><span class="PUNC">(</span><span class="STRN">"."</span><span class="PUNC">)</span><span class="PUNC">[</span><span class="NUMB">1</span><span class="PUNC">]</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>351</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.sigvalB64U</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">b64SigValue</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>352</span> 
-<span class='line'>353</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="STRN">"."</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">b64SigValue</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>354</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>355</span> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>356</span> 
-<span class='line'>357</span> </span><span class="COMM">// === major static method ========================================================</span><span class="WHIT">
+<span class='line'>244</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">isPSS</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">head</span><span class="PUNC">[</span><span class="STRN">'alg'</span><span class="PUNC">]</span><span class="PUNC">.</span><span class="NAME">substr</span><span class="PUNC">(</span><span class="NUMB">0</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NUMB">2</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">"PS"</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>245</span> 
+<span class='line'>246</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">key.hashAndSign</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>247</span> </span><span class="WHIT">	    </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">b64tob64u</span><span class="PUNC">(</span><span class="NAME">key.hashAndSign</span><span class="PUNC">(</span><span class="NAME">hashAlg</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="STRN">'binary'</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="STRN">'base64'</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">isPSS</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>248</span> </span><span class="WHIT">	</span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">isPSS</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>249</span> </span><span class="WHIT">	    </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">hextob64u</span><span class="PUNC">(</span><span class="NAME">key.signStringPSS</span><span class="PUNC">(</span><span class="NAME">sSI</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hashAlg</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>250</span> </span><span class="WHIT">	</span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>251</span> </span><span class="WHIT">	    </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">hextob64u</span><span class="PUNC">(</span><span class="NAME">key.signString</span><span class="PUNC">(</span><span class="NAME">sSI</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hashAlg</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>252</span> </span><span class="WHIT">	</span><span class="PUNC">}</span><span class="WHIT">
+<span class='line'>253</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>254</span> 
+<span class='line'>255</span> </span><span class="WHIT">    </span><span class="KEYW">function</span><span class="WHIT"> </span><span class="NAME">_jws_generateSignatureValueByNED</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hN</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hE</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hD</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>256</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">_getSignatureInputByString</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>257</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">_jws_generateSignatureValueBySI_NED</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hN</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hE</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hD</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>258</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>259</span> 
+<span class='line'>260</span> </span><span class="WHIT">    </span><span class="COMM">/**
+<span class='line'>261</span>      * generate JWS signature by Header, Payload and a naked RSA private key.&lt;br/>
+<span class='line'>262</span>      * This only supports "RS256" and "RS512" algorithm.
+<span class='line'>263</span>      * @name generateJWSByNED
+<span class='line'>264</span>      * @memberOf KJUR.jws.JWS
+<span class='line'>265</span>      * @function
+<span class='line'>266</span>      * @param {String} sHead string of JWS Header
+<span class='line'>267</span>      * @param {String} sPayload string of JWS Payload
+<span class='line'>268</span>      * @param {String} hN hexadecimal string for modulus of RSA public key
+<span class='line'>269</span>      * @param {String} hE hexadecimal string for public exponent of RSA public key
+<span class='line'>270</span>      * @param {String} hD hexadecimal string for private exponent of RSA private key
+<span class='line'>271</span>      * @return {String} JWS signature string
+<span class='line'>272</span>      * @throws if sHead is a malformed JSON string.
+<span class='line'>273</span>      * @throws if supported signature algorithm was not specified in JSON Header.
+<span class='line'>274</span>      * @deprecated from 3.0.0 please move to {@link KJUR.jws.JWS.sign}
+<span class='line'>275</span>      */</span><span class="WHIT">
+<span class='line'>276</span> </span><span class="WHIT">    </span><span class="NAME">this.generateJWSByNED</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hN</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hE</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hD</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>277</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="PUNC">!</span><span class="WHIT"> </span><span class="NAME">this.isSafeJSONString</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"JWS Head is not safe JSON string: "</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">sHead</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>278</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">_getSignatureInputByString</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>279</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hSigValue</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">_jws_generateSignatureValueBySI_NED</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hN</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hE</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hD</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>280</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">b64SigValue</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">hextob64u</span><span class="PUNC">(</span><span class="NAME">hSigValue</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>281</span> </span><span class="WHIT">	</span><span class="WHIT">
+<span class='line'>282</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>283</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.headB64U</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">sSI.split</span><span class="PUNC">(</span><span class="STRN">"."</span><span class="PUNC">)</span><span class="PUNC">[</span><span class="NUMB">0</span><span class="PUNC">]</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>284</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.payloadB64U</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">sSI.split</span><span class="PUNC">(</span><span class="STRN">"."</span><span class="PUNC">)</span><span class="PUNC">[</span><span class="NUMB">1</span><span class="PUNC">]</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>285</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.sigvalB64U</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">b64SigValue</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>286</span> 
+<span class='line'>287</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="STRN">"."</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">b64SigValue</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>288</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>289</span> 
+<span class='line'>290</span> </span><span class="WHIT">    </span><span class="COMM">/**
+<span class='line'>291</span>      * generate JWS signature by Header, Payload and a RSA private key.&lt;br/>
+<span class='line'>292</span>      * This only supports "RS256", "RS512", "PS256" and "PS512" algorithms.
+<span class='line'>293</span>      * @name generateJWSByKey
+<span class='line'>294</span>      * @memberOf KJUR.jws.JWS
+<span class='line'>295</span>      * @function
+<span class='line'>296</span>      * @param {String} sHead string of JWS Header
+<span class='line'>297</span>      * @param {String} sPayload string of JWS Payload
+<span class='line'>298</span>      * @param {RSAKey} RSA private key
+<span class='line'>299</span>      * @return {String} JWS signature string
+<span class='line'>300</span>      * @throws if sHead is a malformed JSON string.
+<span class='line'>301</span>      * @throws if supported signature algorithm was not specified in JSON Header.
+<span class='line'>302</span>      * @deprecated from 3.0.0 please move to {@link KJUR.jws.JWS.sign}
+<span class='line'>303</span>      */</span><span class="WHIT">
+<span class='line'>304</span> </span><span class="WHIT">    </span><span class="NAME">this.generateJWSByKey</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">key</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>305</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">obj</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>306</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="PUNC">!</span><span class="NAME">this.isSafeJSONString</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">obj</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="STRN">'headP'</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="WHIT">
+<span class='line'>307</span> </span><span class="WHIT">	    </span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"JWS Head is not safe JSON string: "</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">sHead</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>308</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">_getSignatureInputByString</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>309</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">b64SigValue</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">_jws_generateSignatureValueBySI_Key</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">key</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">obj.headP</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>310</span> 
+<span class='line'>311</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>312</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.headB64U</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">sSI.split</span><span class="PUNC">(</span><span class="STRN">"."</span><span class="PUNC">)</span><span class="PUNC">[</span><span class="NUMB">0</span><span class="PUNC">]</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>313</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.payloadB64U</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">sSI.split</span><span class="PUNC">(</span><span class="STRN">"."</span><span class="PUNC">)</span><span class="PUNC">[</span><span class="NUMB">1</span><span class="PUNC">]</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>314</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.sigvalB64U</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">b64SigValue</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>315</span> 
+<span class='line'>316</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="STRN">"."</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">b64SigValue</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>317</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>318</span> 
+<span class='line'>319</span> </span><span class="WHIT">    </span><span class="COMM">// === sign with PKCS#1 RSA private key =====================================================</span><span class="WHIT">
+<span class='line'>320</span> </span><span class="WHIT">    </span><span class="KEYW">function</span><span class="WHIT"> </span><span class="NAME">_jws_generateSignatureValueBySI_PemPrvKey</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPemPrvKey</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>321</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">rsa</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">RSAKey</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>322</span> </span><span class="WHIT">	</span><span class="NAME">rsa.readPrivateKeyFromPEMString</span><span class="PUNC">(</span><span class="NAME">sPemPrvKey</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>323</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hashAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">_jws_getHashAlgFromHead</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>324</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sigValue</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">rsa.signString</span><span class="PUNC">(</span><span class="NAME">sSI</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hashAlg</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>325</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">sigValue</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>326</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>327</span> 
+<span class='line'>328</span> </span><span class="WHIT">    </span><span class="COMM">/**
+<span class='line'>329</span>      * generate JWS signature by Header, Payload and a PEM formatted PKCS#1 RSA private key.&lt;br/>
+<span class='line'>330</span>      * This only supports "RS256" and "RS512" algorithm.
+<span class='line'>331</span>      * @name generateJWSByP1PrvKey
+<span class='line'>332</span>      * @memberOf KJUR.jws.JWS
+<span class='line'>333</span>      * @function
+<span class='line'>334</span>      * @param {String} sHead string of JWS Header
+<span class='line'>335</span>      * @param {String} sPayload string of JWS Payload
+<span class='line'>336</span>      * @param {String} string for sPemPrvKey PEM formatted PKCS#1 RSA private key&lt;br/>
+<span class='line'>337</span>      *                 Heading and trailing space characters in PEM key will be ignored.
+<span class='line'>338</span>      * @return {String} JWS signature string
+<span class='line'>339</span>      * @throws if sHead is a malformed JSON string.
+<span class='line'>340</span>      * @throws if supported signature algorithm was not specified in JSON Header.
+<span class='line'>341</span>      * @since 1.1
+<span class='line'>342</span>      * @deprecated from 3.0.0 please move to {@link KJUR.jws.JWS.sign}
+<span class='line'>343</span>      */</span><span class="WHIT">
+<span class='line'>344</span> </span><span class="WHIT">    </span><span class="NAME">this.generateJWSByP1PrvKey</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPemPrvKey</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>345</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="PUNC">!</span><span class="WHIT"> </span><span class="NAME">this.isSafeJSONString</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"JWS Head is not safe JSON string: "</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">sHead</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>346</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">_getSignatureInputByString</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>347</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hSigValue</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">_jws_generateSignatureValueBySI_PemPrvKey</span><span class="PUNC">(</span><span class="NAME">sHead</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPemPrvKey</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>348</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">b64SigValue</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">hextob64u</span><span class="PUNC">(</span><span class="NAME">hSigValue</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>349</span> 
+<span class='line'>350</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>351</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.headB64U</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">sSI.split</span><span class="PUNC">(</span><span class="STRN">"."</span><span class="PUNC">)</span><span class="PUNC">[</span><span class="NUMB">0</span><span class="PUNC">]</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>352</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.payloadB64U</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">sSI.split</span><span class="PUNC">(</span><span class="STRN">"."</span><span class="PUNC">)</span><span class="PUNC">[</span><span class="NUMB">1</span><span class="PUNC">]</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>353</span> </span><span class="WHIT">	</span><span class="NAME">this.parsedJWS.sigvalB64U</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">b64SigValue</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>354</span> 
+<span class='line'>355</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">sSI</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="STRN">"."</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">b64SigValue</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>356</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>357</span> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
 <span class='line'>358</span> 
-<span class='line'>359</span> </span><span class="COMM">/**
-<span class='line'>360</span>  * generate JWS signature by specified key&lt;br/>
-<span class='line'>361</span>  * @name sign
-<span class='line'>362</span>  * @memberOf KJUR.jws.JWS
-<span class='line'>363</span>  * @function
-<span class='line'>364</span>  * @static
-<span class='line'>365</span>  * @param {String} alg JWS algorithm name to sign and force set to sHead or null 
-<span class='line'>366</span>  * @param {String} sHead string of JWS Header
-<span class='line'>367</span>  * @param {String} sPayload string of JWS Payload
-<span class='line'>368</span>  * @param {String} key string of private key or key object to sign
-<span class='line'>369</span>  * @param {String} pass (OPTION)passcode to use encrypted private key 
-<span class='line'>370</span>  * @return {String} JWS signature string
-<span class='line'>371</span>  * @since jws 3.0.0
-<span class='line'>372</span>  * @see &lt;a href="http://kjur.github.io/jsrsasign/api/symbols/KJUR.crypto.Signature.html">jsrsasign KJUR.crypto.Signature method&lt;/a>
-<span class='line'>373</span>  * @see &lt;a href="http://kjur.github.io/jsrsasign/api/symbols/KJUR.crypto.Mac.html">jsrsasign KJUR.crypto.Mac method&lt;/a>
-<span class='line'>374</span>  * @description
-<span class='line'>375</span>  * This method supports following algorithms.
-<span class='line'>376</span>  * &lt;table>
-<span class='line'>377</span>  * &lt;tr>&lt;th>alg value&lt;/th>&lt;th>spec requirement&lt;/th>&lt;th>jsjws support&lt;/th>&lt;/tr>
-<span class='line'>378</span>  * &lt;tr>&lt;td>HS256&lt;/td>&lt;td>REQUIRED&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
-<span class='line'>379</span>  * &lt;tr>&lt;td>HS384&lt;/td>&lt;td>OPTIONAL&lt;/td>&lt;td>-&lt;/td>&lt;/tr>
-<span class='line'>380</span>  * &lt;tr>&lt;td>HS512&lt;/td>&lt;td>OPTIONAL&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
-<span class='line'>381</span>  * &lt;tr>&lt;td>RS256&lt;/td>&lt;td>RECOMMENDED&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
-<span class='line'>382</span>  * &lt;tr>&lt;td>RS384&lt;/td>&lt;td>OPTIONAL&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
-<span class='line'>383</span>  * &lt;tr>&lt;td>RS512&lt;/td>&lt;td>OPTIONAL&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
-<span class='line'>384</span>  * &lt;tr>&lt;td>ES256&lt;/td>&lt;td>RECOMMENDED+&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
-<span class='line'>385</span>  * &lt;tr>&lt;td>ES384&lt;/td>&lt;td>OPTIONAL&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
-<span class='line'>386</span>  * &lt;tr>&lt;td>ES512&lt;/td>&lt;td>OPTIONAL&lt;/td>&lt;td>-&lt;/td>&lt;/tr>
-<span class='line'>387</span>  * &lt;tr>&lt;td>PS256&lt;/td>&lt;td>OPTIONAL&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
-<span class='line'>388</span>  * &lt;tr>&lt;td>PS384&lt;/td>&lt;td>OPTIONAL&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
-<span class='line'>389</span>  * &lt;tr>&lt;td>PS512&lt;/td>&lt;td>OPTIONAL&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
-<span class='line'>390</span>  * &lt;tr>&lt;td>none&lt;/td>&lt;td>REQUIRED&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
-<span class='line'>391</span>  * &lt;/table>
-<span class='line'>392</span>  * &lt;dl>
-<span class='line'>393</span>  * &lt;dt>NOTE1:
-<span class='line'>394</span>  * &lt;dd>salt length of RSAPSS signature is the same as the hash algorithm length
-<span class='line'>395</span>  * because of &lt;a href="http://www.ietf.org/mail-archive/web/jose/current/msg02901.html">IETF JOSE ML discussion&lt;/a>.
-<span class='line'>396</span>  * &lt;dt>NOTE2:
-<span class='line'>397</span>  * &lt;dd>The reason of HS384 unsupport is  
-<span class='line'>398</span>  * &lt;a href="https://code.google.com/p/crypto-js/issues/detail?id=84">CryptoJS HmacSHA384 bug&lt;/a>.
-<span class='line'>399</span>  * &lt;/dl>
-<span class='line'>400</span>  */</span><span class="WHIT">
-<span class='line'>401</span> </span><span class="NAME">KJUR.jws.JWS.sign</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">alg</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sHeader</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">key</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">pass</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>402</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">ns1</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">KJUR.jws.JWS</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>403</span> 
-<span class='line'>404</span> </span><span class="WHIT">    </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="PUNC">!</span><span class="WHIT"> </span><span class="NAME">ns1.isSafeJSONString</span><span class="PUNC">(</span><span class="NAME">sHeader</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="WHIT">
-<span class='line'>405</span> </span><span class="WHIT">	</span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"JWS Head is not safe JSON string: "</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">sHead</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>406</span> 
-<span class='line'>407</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">pHeader</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">ns1.readSafeJSONString</span><span class="PUNC">(</span><span class="NAME">sHeader</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>408</span> 
-<span class='line'>409</span> </span><span class="WHIT">    </span><span class="COMM">// 1. use alg if defined in sHeader</span><span class="WHIT">
-<span class='line'>410</span> </span><span class="WHIT">    </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="PUNC">(</span><span class="NAME">alg</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">''</span><span class="WHIT"> </span><span class="PUNC">||</span><span class="WHIT"> </span><span class="NAME">alg</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">&&</span><span class="WHIT">
-<span class='line'>411</span> </span><span class="WHIT">	</span><span class="NAME">pHeader</span><span class="PUNC">[</span><span class="STRN">'alg'</span><span class="PUNC">]</span><span class="WHIT"> </span><span class="PUNC">!==</span><span class="WHIT"> </span><span class="NAME">undefined</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>412</span> </span><span class="WHIT">	</span><span class="NAME">alg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">pHeader</span><span class="PUNC">[</span><span class="STRN">'alg'</span><span class="PUNC">]</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>413</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT">
-<span class='line'>414</span> 
-<span class='line'>415</span> </span><span class="WHIT">    </span><span class="COMM">// 2. set alg in sHeader if undefined</span><span class="WHIT">
-<span class='line'>416</span> </span><span class="WHIT">    </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="PUNC">(</span><span class="NAME">alg</span><span class="WHIT"> </span><span class="PUNC">!=</span><span class="WHIT"> </span><span class="STRN">''</span><span class="WHIT"> </span><span class="PUNC">&&</span><span class="WHIT"> </span><span class="NAME">alg</span><span class="WHIT"> </span><span class="PUNC">!=</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">&&</span><span class="WHIT">
-<span class='line'>417</span> </span><span class="WHIT">	</span><span class="NAME">pHeader</span><span class="PUNC">[</span><span class="STRN">'alg'</span><span class="PUNC">]</span><span class="WHIT"> </span><span class="PUNC">===</span><span class="WHIT"> </span><span class="NAME">undefined</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>418</span> </span><span class="WHIT">	</span><span class="NAME">pHeader</span><span class="PUNC">[</span><span class="STRN">'alg'</span><span class="PUNC">]</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">alg</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>419</span> </span><span class="WHIT">	</span><span class="NAME">sHeader</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">JSON.stringify</span><span class="PUNC">(</span><span class="NAME">pHeader</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>420</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT">
-<span class='line'>421</span> 
-<span class='line'>422</span> </span><span class="WHIT">    </span><span class="COMM">// 3. set signature algorithm like SHA1withRSA</span><span class="WHIT">
-<span class='line'>423</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sigAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>424</span> </span><span class="WHIT">    </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">ns1.jwsalg2sigalg</span><span class="PUNC">[</span><span class="NAME">alg</span><span class="PUNC">]</span><span class="WHIT"> </span><span class="PUNC">===</span><span class="WHIT"> </span><span class="NAME">undefined</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>425</span> </span><span class="WHIT">	</span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"unsupported alg name: "</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">alg</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>426</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>427</span> </span><span class="WHIT">	</span><span class="NAME">sigAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">ns1.jwsalg2sigalg</span><span class="PUNC">[</span><span class="NAME">alg</span><span class="PUNC">]</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>428</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT">
-<span class='line'>429</span> </span><span class="WHIT">    </span><span class="WHIT">
-<span class='line'>430</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">uHeader</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">utf8tob64u</span><span class="PUNC">(</span><span class="NAME">sHeader</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>431</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">uPayload</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">utf8tob64u</span><span class="PUNC">(</span><span class="NAME">sPayload</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>432</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">uSignatureInput</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">uHeader</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="STRN">"."</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">uPayload</span><span class="WHIT">
+<span class='line'>359</span> </span><span class="COMM">// === major static method ========================================================</span><span class="WHIT">
+<span class='line'>360</span> 
+<span class='line'>361</span> </span><span class="COMM">/**
+<span class='line'>362</span>  * generate JWS signature by specified key&lt;br/>
+<span class='line'>363</span>  * @name sign
+<span class='line'>364</span>  * @memberOf KJUR.jws.JWS
+<span class='line'>365</span>  * @function
+<span class='line'>366</span>  * @static
+<span class='line'>367</span>  * @param {String} alg JWS algorithm name to sign and force set to sHead or null 
+<span class='line'>368</span>  * @param {String} sHead string of JWS Header
+<span class='line'>369</span>  * @param {String} sPayload string of JWS Payload
+<span class='line'>370</span>  * @param {String} key string of private key or key object to sign
+<span class='line'>371</span>  * @param {String} pass (OPTION)passcode to use encrypted private key 
+<span class='line'>372</span>  * @return {String} JWS signature string
+<span class='line'>373</span>  * @since jws 3.0.0
+<span class='line'>374</span>  * @see &lt;a href="http://kjur.github.io/jsrsasign/api/symbols/KJUR.crypto.Signature.html">jsrsasign KJUR.crypto.Signature method&lt;/a>
+<span class='line'>375</span>  * @see &lt;a href="http://kjur.github.io/jsrsasign/api/symbols/KJUR.crypto.Mac.html">jsrsasign KJUR.crypto.Mac method&lt;/a>
+<span class='line'>376</span>  * @description
+<span class='line'>377</span>  * This method supports following algorithms.
+<span class='line'>378</span>  * &lt;table>
+<span class='line'>379</span>  * &lt;tr>&lt;th>alg value&lt;/th>&lt;th>spec requirement&lt;/th>&lt;th>jsjws support&lt;/th>&lt;/tr>
+<span class='line'>380</span>  * &lt;tr>&lt;td>HS256&lt;/td>&lt;td>REQUIRED&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
+<span class='line'>381</span>  * &lt;tr>&lt;td>HS384&lt;/td>&lt;td>OPTIONAL&lt;/td>&lt;td>-&lt;/td>&lt;/tr>
+<span class='line'>382</span>  * &lt;tr>&lt;td>HS512&lt;/td>&lt;td>OPTIONAL&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
+<span class='line'>383</span>  * &lt;tr>&lt;td>RS256&lt;/td>&lt;td>RECOMMENDED&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
+<span class='line'>384</span>  * &lt;tr>&lt;td>RS384&lt;/td>&lt;td>OPTIONAL&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
+<span class='line'>385</span>  * &lt;tr>&lt;td>RS512&lt;/td>&lt;td>OPTIONAL&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
+<span class='line'>386</span>  * &lt;tr>&lt;td>ES256&lt;/td>&lt;td>RECOMMENDED+&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
+<span class='line'>387</span>  * &lt;tr>&lt;td>ES384&lt;/td>&lt;td>OPTIONAL&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
+<span class='line'>388</span>  * &lt;tr>&lt;td>ES512&lt;/td>&lt;td>OPTIONAL&lt;/td>&lt;td>-&lt;/td>&lt;/tr>
+<span class='line'>389</span>  * &lt;tr>&lt;td>PS256&lt;/td>&lt;td>OPTIONAL&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
+<span class='line'>390</span>  * &lt;tr>&lt;td>PS384&lt;/td>&lt;td>OPTIONAL&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
+<span class='line'>391</span>  * &lt;tr>&lt;td>PS512&lt;/td>&lt;td>OPTIONAL&lt;/td>&lt;td>SUPPORTED&lt;/td>&lt;/tr>
+<span class='line'>392</span>  * &lt;tr>&lt;td>none&lt;/td>&lt;td>REQUIRED&lt;/td>&lt;td>SUPPORTED(generation only)&lt;/td>&lt;/tr>
+<span class='line'>393</span>  * &lt;/table>
+<span class='line'>394</span>  * &lt;dl>
+<span class='line'>395</span>  * &lt;dt>NOTE1:
+<span class='line'>396</span>  * &lt;dd>salt length of RSAPSS signature is the same as the hash algorithm length
+<span class='line'>397</span>  * because of &lt;a href="http://www.ietf.org/mail-archive/web/jose/current/msg02901.html">IETF JOSE ML discussion&lt;/a>.
+<span class='line'>398</span>  * &lt;dt>NOTE2:
+<span class='line'>399</span>  * &lt;dd>The reason of HS384 unsupport is  
+<span class='line'>400</span>  * &lt;a href="https://code.google.com/p/crypto-js/issues/detail?id=84">CryptoJS HmacSHA384 bug&lt;/a>.
+<span class='line'>401</span>  * &lt;dt>NOTE3:
+<span class='line'>402</span>  * &lt;dd>alg=none validation was removed since jsjws 3.1.0.&lt;br/>
+<span class='line'>403</span>  * &lt;/dl>
+<span class='line'>404</span>  */</span><span class="WHIT">
+<span class='line'>405</span> </span><span class="NAME">KJUR.jws.JWS.sign</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">alg</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sHeader</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sPayload</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">key</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">pass</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>406</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">ns1</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">KJUR.jws.JWS</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>407</span> 
+<span class='line'>408</span> </span><span class="WHIT">    </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="PUNC">!</span><span class="WHIT"> </span><span class="NAME">ns1.isSafeJSONString</span><span class="PUNC">(</span><span class="NAME">sHeader</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="WHIT">
+<span class='line'>409</span> </span><span class="WHIT">	</span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"JWS Head is not safe JSON string: "</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">sHead</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>410</span> 
+<span class='line'>411</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">pHeader</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">ns1.readSafeJSONString</span><span class="PUNC">(</span><span class="NAME">sHeader</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>412</span> 
+<span class='line'>413</span> </span><span class="WHIT">    </span><span class="COMM">// 1. use alg if defined in sHeader</span><span class="WHIT">
+<span class='line'>414</span> </span><span class="WHIT">    </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="PUNC">(</span><span class="NAME">alg</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">''</span><span class="WHIT"> </span><span class="PUNC">||</span><span class="WHIT"> </span><span class="NAME">alg</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">&&</span><span class="WHIT">
+<span class='line'>415</span> </span><span class="WHIT">	</span><span class="NAME">pHeader</span><span class="PUNC">[</span><span class="STRN">'alg'</span><span class="PUNC">]</span><span class="WHIT"> </span><span class="PUNC">!==</span><span class="WHIT"> </span><span class="NAME">undefined</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>416</span> </span><span class="WHIT">	</span><span class="NAME">alg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">pHeader</span><span class="PUNC">[</span><span class="STRN">'alg'</span><span class="PUNC">]</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>417</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT">
+<span class='line'>418</span> 
+<span class='line'>419</span> </span><span class="WHIT">    </span><span class="COMM">// 2. set alg in sHeader if undefined</span><span class="WHIT">
+<span class='line'>420</span> </span><span class="WHIT">    </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="PUNC">(</span><span class="NAME">alg</span><span class="WHIT"> </span><span class="PUNC">!=</span><span class="WHIT"> </span><span class="STRN">''</span><span class="WHIT"> </span><span class="PUNC">&&</span><span class="WHIT"> </span><span class="NAME">alg</span><span class="WHIT"> </span><span class="PUNC">!=</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">&&</span><span class="WHIT">
+<span class='line'>421</span> </span><span class="WHIT">	</span><span class="NAME">pHeader</span><span class="PUNC">[</span><span class="STRN">'alg'</span><span class="PUNC">]</span><span class="WHIT"> </span><span class="PUNC">===</span><span class="WHIT"> </span><span class="NAME">undefined</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>422</span> </span><span class="WHIT">	</span><span class="NAME">pHeader</span><span class="PUNC">[</span><span class="STRN">'alg'</span><span class="PUNC">]</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">alg</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>423</span> </span><span class="WHIT">	</span><span class="NAME">sHeader</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">JSON.stringify</span><span class="PUNC">(</span><span class="NAME">pHeader</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>424</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT">
+<span class='line'>425</span> 
+<span class='line'>426</span> </span><span class="WHIT">    </span><span class="COMM">// 3. set signature algorithm like SHA1withRSA</span><span class="WHIT">
+<span class='line'>427</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sigAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>428</span> </span><span class="WHIT">    </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">ns1.jwsalg2sigalg</span><span class="PUNC">[</span><span class="NAME">alg</span><span class="PUNC">]</span><span class="WHIT"> </span><span class="PUNC">===</span><span class="WHIT"> </span><span class="NAME">undefined</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>429</span> </span><span class="WHIT">	</span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"unsupported alg name: "</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">alg</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>430</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>431</span> </span><span class="WHIT">	</span><span class="NAME">sigAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">ns1.jwsalg2sigalg</span><span class="PUNC">[</span><span class="NAME">alg</span><span class="PUNC">]</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>432</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT">
 <span class='line'>433</span> </span><span class="WHIT">    </span><span class="WHIT">
-<span class='line'>434</span> </span><span class="WHIT">    </span><span class="COMM">// 4. sign</span><span class="WHIT">
-<span class='line'>435</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hSig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="STRN">""</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>436</span> </span><span class="WHIT">    </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">sigAlg.substr</span><span class="PUNC">(</span><span class="NUMB">0</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NUMB">4</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">"Hmac"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>437</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">key</span><span class="WHIT"> </span><span class="PUNC">===</span><span class="WHIT"> </span><span class="NAME">undefined</span><span class="PUNC">)</span><span class="WHIT">
-<span class='line'>438</span> </span><span class="WHIT">	    </span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"hexadecimal key shall be specified for HMAC"</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>439</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">mac</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">KJUR.crypto.Mac</span><span class="PUNC">(</span><span class="PUNC">{</span><span class="STRN">'alg'</span><span class="PUNC">:</span><span class="WHIT"> </span><span class="NAME">sigAlg</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="STRN">'pass'</span><span class="PUNC">:</span><span class="WHIT"> </span><span class="NAME">hextorstr</span><span class="PUNC">(</span><span class="NAME">key</span><span class="PUNC">)</span><span class="PUNC">}</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>440</span> </span><span class="WHIT">	</span><span class="NAME">mac.updateString</span><span class="PUNC">(</span><span class="NAME">uSignatureInput</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>441</span> </span><span class="WHIT">	</span><span class="NAME">hSig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">mac.doFinal</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>442</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">sigAlg.indexOf</span><span class="PUNC">(</span><span class="STRN">"withECDSA"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">!=</span><span class="WHIT"> </span><span class="PUNC">-</span><span class="NUMB">1</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>443</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">KJUR.crypto.Signature</span><span class="PUNC">(</span><span class="PUNC">{</span><span class="STRN">'alg'</span><span class="PUNC">:</span><span class="WHIT"> </span><span class="NAME">sigAlg</span><span class="PUNC">}</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>444</span> </span><span class="WHIT">	</span><span class="NAME">sig.init</span><span class="PUNC">(</span><span class="NAME">key</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">pass</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>445</span> </span><span class="WHIT">	</span><span class="NAME">sig.updateString</span><span class="PUNC">(</span><span class="NAME">uSignatureInput</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>446</span> </span><span class="WHIT">	</span><span class="NAME">hASN1Sig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">sig.sign</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>447</span> </span><span class="WHIT">	</span><span class="NAME">hSig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">KJUR.crypto.ECDSA.asn1SigToConcatSig</span><span class="PUNC">(</span><span class="NAME">hASN1Sig</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>448</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">sigAlg</span><span class="WHIT"> </span><span class="PUNC">!=</span><span class="WHIT"> </span><span class="STRN">"none"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>449</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">KJUR.crypto.Signature</span><span class="PUNC">(</span><span class="PUNC">{</span><span class="STRN">'alg'</span><span class="PUNC">:</span><span class="WHIT"> </span><span class="NAME">sigAlg</span><span class="PUNC">}</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>450</span> </span><span class="WHIT">	</span><span class="NAME">sig.init</span><span class="PUNC">(</span><span class="NAME">key</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">pass</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>451</span> </span><span class="WHIT">	</span><span class="NAME">sig.updateString</span><span class="PUNC">(</span><span class="NAME">uSignatureInput</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>452</span> </span><span class="WHIT">	</span><span class="NAME">hSig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">sig.sign</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>453</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT">
-<span class='line'>454</span> 
-<span class='line'>455</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">uSig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">hextob64u</span><span class="PUNC">(</span><span class="NAME">hSig</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>456</span> </span><span class="WHIT">    </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">uSignatureInput</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="STRN">"."</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">uSig</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>457</span> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>434</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">uHeader</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">utf8tob64u</span><span class="PUNC">(</span><span class="NAME">sHeader</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>435</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">uPayload</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">utf8tob64u</span><span class="PUNC">(</span><span class="NAME">sPayload</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>436</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">uSignatureInput</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">uHeader</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="STRN">"."</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">uPayload</span><span class="WHIT">
+<span class='line'>437</span> </span><span class="WHIT">    </span><span class="WHIT">
+<span class='line'>438</span> </span><span class="WHIT">    </span><span class="COMM">// 4. sign</span><span class="WHIT">
+<span class='line'>439</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hSig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="STRN">""</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>440</span> </span><span class="WHIT">    </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">sigAlg.substr</span><span class="PUNC">(</span><span class="NUMB">0</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NUMB">4</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">"Hmac"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>441</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">key</span><span class="WHIT"> </span><span class="PUNC">===</span><span class="WHIT"> </span><span class="NAME">undefined</span><span class="PUNC">)</span><span class="WHIT">
+<span class='line'>442</span> </span><span class="WHIT">	    </span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"hexadecimal key shall be specified for HMAC"</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>443</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">mac</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">KJUR.crypto.Mac</span><span class="PUNC">(</span><span class="PUNC">{</span><span class="STRN">'alg'</span><span class="PUNC">:</span><span class="WHIT"> </span><span class="NAME">sigAlg</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="STRN">'pass'</span><span class="PUNC">:</span><span class="WHIT"> </span><span class="NAME">hextorstr</span><span class="PUNC">(</span><span class="NAME">key</span><span class="PUNC">)</span><span class="PUNC">}</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>444</span> </span><span class="WHIT">	</span><span class="NAME">mac.updateString</span><span class="PUNC">(</span><span class="NAME">uSignatureInput</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>445</span> </span><span class="WHIT">	</span><span class="NAME">hSig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">mac.doFinal</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>446</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">sigAlg.indexOf</span><span class="PUNC">(</span><span class="STRN">"withECDSA"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">!=</span><span class="WHIT"> </span><span class="PUNC">-</span><span class="NUMB">1</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>447</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">KJUR.crypto.Signature</span><span class="PUNC">(</span><span class="PUNC">{</span><span class="STRN">'alg'</span><span class="PUNC">:</span><span class="WHIT"> </span><span class="NAME">sigAlg</span><span class="PUNC">}</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>448</span> </span><span class="WHIT">	</span><span class="NAME">sig.init</span><span class="PUNC">(</span><span class="NAME">key</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">pass</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>449</span> </span><span class="WHIT">	</span><span class="NAME">sig.updateString</span><span class="PUNC">(</span><span class="NAME">uSignatureInput</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>450</span> </span><span class="WHIT">	</span><span class="NAME">hASN1Sig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">sig.sign</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>451</span> </span><span class="WHIT">	</span><span class="NAME">hSig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">KJUR.crypto.ECDSA.asn1SigToConcatSig</span><span class="PUNC">(</span><span class="NAME">hASN1Sig</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>452</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">sigAlg</span><span class="WHIT"> </span><span class="PUNC">!=</span><span class="WHIT"> </span><span class="STRN">"none"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>453</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">KJUR.crypto.Signature</span><span class="PUNC">(</span><span class="PUNC">{</span><span class="STRN">'alg'</span><span class="PUNC">:</span><span class="WHIT"> </span><span class="NAME">sigAlg</span><span class="PUNC">}</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>454</span> </span><span class="WHIT">	</span><span class="NAME">sig.init</span><span class="PUNC">(</span><span class="NAME">key</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">pass</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>455</span> </span><span class="WHIT">	</span><span class="NAME">sig.updateString</span><span class="PUNC">(</span><span class="NAME">uSignatureInput</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>456</span> </span><span class="WHIT">	</span><span class="NAME">hSig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">sig.sign</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>457</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT">
 <span class='line'>458</span> 
-<span class='line'>459</span> </span><span class="COMM">/**
-<span class='line'>460</span>  * verify JWS signature by specified key or certificate&lt;br/>
-<span class='line'>461</span>  * @name verify
-<span class='line'>462</span>  * @memberOf KJUR.jws.JWS
-<span class='line'>463</span>  * @function
-<span class='line'>464</span>  * @static
-<span class='line'>465</span>  * @param {String} sJWS string of JWS signature to verify
-<span class='line'>466</span>  * @param {String} key string of public key, certificate or key object to verify
-<span class='line'>467</span>  * @return {Boolean} true if the signature is valid otherwise false
-<span class='line'>468</span>  * @since jws 3.0.0
-<span class='line'>469</span>  * @see &lt;a href="http://kjur.github.io/jsrsasign/api/symbols/KJUR.crypto.Signature.html">jsrsasign KJUR.crypto.Signature method&lt;/a>
-<span class='line'>470</span>  * @see &lt;a href="http://kjur.github.io/jsrsasign/api/symbols/KJUR.crypto.Mac.html">jsrsasign KJUR.crypto.Mac method&lt;/a>
-<span class='line'>471</span>  */</span><span class="WHIT">
-<span class='line'>472</span> </span><span class="NAME">KJUR.jws.JWS.verify</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">sJWS</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">key</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>473</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">jws</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">KJUR.jws.JWS</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>474</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">a</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">sJWS.split</span><span class="PUNC">(</span><span class="STRN">"."</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>475</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">uHeader</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">a</span><span class="PUNC">[</span><span class="NUMB">0</span><span class="PUNC">]</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>476</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">uPayload</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">a</span><span class="PUNC">[</span><span class="NUMB">1</span><span class="PUNC">]</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>477</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">uSignatureInput</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">uHeader</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="STRN">"."</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">uPayload</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>478</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hSig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">b64utohex</span><span class="PUNC">(</span><span class="NAME">a</span><span class="PUNC">[</span><span class="NUMB">2</span><span class="PUNC">]</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>479</span> 
-<span class='line'>480</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">pHeader</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">jws.readSafeJSONString</span><span class="PUNC">(</span><span class="NAME">b64utoutf8</span><span class="PUNC">(</span><span class="NAME">a</span><span class="PUNC">[</span><span class="NUMB">0</span><span class="PUNC">]</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>481</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">alg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>482</span> </span><span class="WHIT">    </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">pHeader.alg</span><span class="WHIT"> </span><span class="PUNC">===</span><span class="WHIT"> </span><span class="NAME">undefined</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>483</span> </span><span class="WHIT">	</span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"algorithm not specified in header"</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>484</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>485</span> </span><span class="WHIT">	</span><span class="NAME">alg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">pHeader.alg</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>486</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT">
-<span class='line'>487</span> 
-<span class='line'>488</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sigAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>489</span> </span><span class="WHIT">    </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">jws.jwsalg2sigalg</span><span class="PUNC">[</span><span class="NAME">pHeader.alg</span><span class="PUNC">]</span><span class="WHIT"> </span><span class="PUNC">===</span><span class="WHIT"> </span><span class="NAME">undefined</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>490</span> </span><span class="WHIT">	</span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"unsupported alg name: "</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">alg</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>491</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>492</span> </span><span class="WHIT">	</span><span class="NAME">sigAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">jws.jwsalg2sigalg</span><span class="PUNC">[</span><span class="NAME">alg</span><span class="PUNC">]</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>493</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT">
-<span class='line'>494</span> 
-<span class='line'>495</span> </span><span class="WHIT">    </span><span class="COMM">// x. verify</span><span class="WHIT">
-<span class='line'>496</span> </span><span class="WHIT">    </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">sigAlg</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">"none"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>497</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="KEYW">true</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>498</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">sigAlg.substr</span><span class="PUNC">(</span><span class="NUMB">0</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NUMB">4</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">"Hmac"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>499</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">key</span><span class="WHIT"> </span><span class="PUNC">===</span><span class="WHIT"> </span><span class="NAME">undefined</span><span class="PUNC">)</span><span class="WHIT">
-<span class='line'>500</span> </span><span class="WHIT">	    </span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"hexadecimal key shall be specified for HMAC"</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>501</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">mac</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">KJUR.crypto.Mac</span><span class="PUNC">(</span><span class="PUNC">{</span><span class="STRN">'alg'</span><span class="PUNC">:</span><span class="WHIT"> </span><span class="NAME">sigAlg</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="STRN">'pass'</span><span class="PUNC">:</span><span class="WHIT"> </span><span class="NAME">hextorstr</span><span class="PUNC">(</span><span class="NAME">key</span><span class="PUNC">)</span><span class="PUNC">}</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>502</span> </span><span class="WHIT">	</span><span class="NAME">mac.updateString</span><span class="PUNC">(</span><span class="NAME">uSignatureInput</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>503</span> </span><span class="WHIT">	</span><span class="NAME">hSig2</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">mac.doFinal</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>504</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">hSig</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="NAME">hSig2</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>505</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">sigAlg.indexOf</span><span class="PUNC">(</span><span class="STRN">"withECDSA"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">!=</span><span class="WHIT"> </span><span class="PUNC">-</span><span class="NUMB">1</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>506</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hASN1Sig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>507</span> </span><span class="WHIT">        </span><span class="KEYW">try</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>508</span> </span><span class="WHIT">	    </span><span class="NAME">hASN1Sig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">KJUR.crypto.ECDSA.concatSigToASN1Sig</span><span class="PUNC">(</span><span class="NAME">hSig</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>509</span> </span><span class="WHIT">	</span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">catch</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">ex</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>510</span> </span><span class="WHIT">	    </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="KEYW">false</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>511</span> </span><span class="WHIT">	</span><span class="PUNC">}</span><span class="WHIT">
-<span class='line'>512</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">KJUR.crypto.Signature</span><span class="PUNC">(</span><span class="PUNC">{</span><span class="STRN">'alg'</span><span class="PUNC">:</span><span class="WHIT"> </span><span class="NAME">sigAlg</span><span class="PUNC">}</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>513</span> </span><span class="WHIT">	</span><span class="NAME">sig.init</span><span class="PUNC">(</span><span class="NAME">key</span><span class="PUNC">)</span><span class="WHIT">
-<span class='line'>514</span> </span><span class="WHIT">	</span><span class="NAME">sig.updateString</span><span class="PUNC">(</span><span class="NAME">uSignatureInput</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>515</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">sig.verify</span><span class="PUNC">(</span><span class="NAME">hASN1Sig</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>516</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>517</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">KJUR.crypto.Signature</span><span class="PUNC">(</span><span class="PUNC">{</span><span class="STRN">'alg'</span><span class="PUNC">:</span><span class="WHIT"> </span><span class="NAME">sigAlg</span><span class="PUNC">}</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>518</span> </span><span class="WHIT">	</span><span class="NAME">sig.init</span><span class="PUNC">(</span><span class="NAME">key</span><span class="PUNC">)</span><span class="WHIT">
-<span class='line'>519</span> </span><span class="WHIT">	</span><span class="NAME">sig.updateString</span><span class="PUNC">(</span><span class="NAME">uSignatureInput</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>520</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">sig.verify</span><span class="PUNC">(</span><span class="NAME">hSig</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>521</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT">
-<span class='line'>522</span> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>523</span> 
-<span class='line'>524</span> </span><span class="COMM">/*
-<span class='line'>525</span>  * @since jws 3.0.0
-<span class='line'>526</span>  */</span><span class="WHIT">
-<span class='line'>527</span> </span><span class="NAME">KJUR.jws.JWS.jwsalg2sigalg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>528</span> </span><span class="WHIT">    </span><span class="STRN">"HS256"</span><span class="PUNC">:</span><span class="WHIT">	</span><span class="STRN">"HmacSHA256"</span><span class="PUNC">,</span><span class="WHIT">
-<span class='line'>529</span> </span><span class="WHIT">    </span><span class="COMM">//"HS384":	"HmacSHA384", // unsupported because of CryptoJS bug</span><span class="WHIT">
-<span class='line'>530</span> </span><span class="WHIT">    </span><span class="STRN">"HS512"</span><span class="PUNC">:</span><span class="WHIT">	</span><span class="STRN">"HmacSHA512"</span><span class="PUNC">,</span><span class="WHIT">
-<span class='line'>531</span> </span><span class="WHIT">    </span><span class="STRN">"RS256"</span><span class="PUNC">:</span><span class="WHIT">	</span><span class="STRN">"SHA256withRSA"</span><span class="PUNC">,</span><span class="WHIT">
-<span class='line'>532</span> </span><span class="WHIT">    </span><span class="STRN">"RS384"</span><span class="PUNC">:</span><span class="WHIT">	</span><span class="STRN">"SHA384withRSA"</span><span class="PUNC">,</span><span class="WHIT">
-<span class='line'>533</span> </span><span class="WHIT">    </span><span class="STRN">"RS512"</span><span class="PUNC">:</span><span class="WHIT">	</span><span class="STRN">"SHA512withRSA"</span><span class="PUNC">,</span><span class="WHIT">
-<span class='line'>534</span> </span><span class="WHIT">    </span><span class="STRN">"ES256"</span><span class="PUNC">:</span><span class="WHIT">	</span><span class="STRN">"SHA256withECDSA"</span><span class="PUNC">,</span><span class="WHIT">
-<span class='line'>535</span> </span><span class="WHIT">    </span><span class="STRN">"ES384"</span><span class="PUNC">:</span><span class="WHIT">	</span><span class="STRN">"SHA384withECDSA"</span><span class="PUNC">,</span><span class="WHIT">
-<span class='line'>536</span> </span><span class="WHIT">    </span><span class="COMM">//"ES512":	"SHA512withECDSA", // unsupported because of jsrsasign's bug</span><span class="WHIT">
-<span class='line'>537</span> </span><span class="WHIT">    </span><span class="STRN">"PS256"</span><span class="PUNC">:</span><span class="WHIT">	</span><span class="STRN">"SHA256withRSAandMGF1"</span><span class="PUNC">,</span><span class="WHIT">
-<span class='line'>538</span> </span><span class="WHIT">    </span><span class="STRN">"PS384"</span><span class="PUNC">:</span><span class="WHIT">	</span><span class="STRN">"SHA384withRSAandMGF1"</span><span class="PUNC">,</span><span class="WHIT">
-<span class='line'>539</span> </span><span class="WHIT">    </span><span class="STRN">"PS512"</span><span class="PUNC">:</span><span class="WHIT">	</span><span class="STRN">"SHA512withRSAandMGF1"</span><span class="PUNC">,</span><span class="WHIT">
-<span class='line'>540</span> </span><span class="WHIT">    </span><span class="STRN">"none"</span><span class="PUNC">:</span><span class="WHIT">	</span><span class="STRN">"none"</span><span class="PUNC">,</span><span class="WHIT">
-<span class='line'>541</span> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>542</span> 
-<span class='line'>543</span> </span><span class="COMM">// === utility static method ======================================================</span><span class="WHIT">
-<span class='line'>544</span> 
-<span class='line'>545</span> </span><span class="COMM">/**
-<span class='line'>546</span>  * check whether a String "s" is a safe JSON string or not.&lt;br/>
-<span class='line'>547</span>  * If a String "s" is a malformed JSON string or an other object type
-<span class='line'>548</span>  * this returns 0, otherwise this returns 1.
-<span class='line'>549</span>  * @name isSafeJSONString
-<span class='line'>550</span>  * @memberOf KJUR.jws.JWS
-<span class='line'>551</span>  * @function
-<span class='line'>552</span>  * @static
-<span class='line'>553</span>  * @param {String} s JSON string
-<span class='line'>554</span>  * @return {Number} 1 or 0
-<span class='line'>555</span>  */</span><span class="WHIT">
-<span class='line'>556</span> </span><span class="NAME">KJUR.jws.JWS.isSafeJSONString</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">s</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">h</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">p</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>557</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">o</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>558</span> </span><span class="WHIT">    </span><span class="KEYW">try</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>559</span> </span><span class="WHIT">	</span><span class="NAME">o</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">jsonParse</span><span class="PUNC">(</span><span class="NAME">s</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>560</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="KEYW">typeof</span><span class="WHIT"> </span><span class="NAME">o</span><span class="WHIT"> </span><span class="PUNC">!=</span><span class="WHIT"> </span><span class="STRN">"object"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NUMB">0</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>561</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">o.constructor</span><span class="WHIT"> </span><span class="PUNC">===</span><span class="WHIT"> </span><span class="NAME">Array</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NUMB">0</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>562</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">h</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="NAME">h</span><span class="PUNC">[</span><span class="NAME">p</span><span class="PUNC">]</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">o</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>563</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NUMB">1</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>564</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">catch</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">ex</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>565</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NUMB">0</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>566</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT">
-<span class='line'>567</span> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>568</span> 
-<span class='line'>569</span> </span><span class="COMM">/**
-<span class='line'>570</span>  * read a String "s" as JSON object if it is safe.&lt;br/>
-<span class='line'>571</span>  * If a String "s" is a malformed JSON string or not JSON string,
-<span class='line'>572</span>  * this returns null, otherwise returns JSON object.
-<span class='line'>573</span>  * @name readSafeJSONString
-<span class='line'>574</span>  * @memberOf KJUR.jws.JWS
-<span class='line'>575</span>  * @function
-<span class='line'>576</span>  * @static
-<span class='line'>577</span>  * @param {String} s JSON string
-<span class='line'>578</span>  * @return {Object} JSON object or null
-<span class='line'>579</span>  * @since 1.1.1
-<span class='line'>580</span>  */</span><span class="WHIT">
-<span class='line'>581</span> </span><span class="NAME">KJUR.jws.JWS.readSafeJSONString</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">s</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>582</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">o</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>583</span> </span><span class="WHIT">    </span><span class="KEYW">try</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>584</span> </span><span class="WHIT">	</span><span class="NAME">o</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">jsonParse</span><span class="PUNC">(</span><span class="NAME">s</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>585</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="KEYW">typeof</span><span class="WHIT"> </span><span class="NAME">o</span><span class="WHIT"> </span><span class="PUNC">!=</span><span class="WHIT"> </span><span class="STRN">"object"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>586</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">o.constructor</span><span class="WHIT"> </span><span class="PUNC">===</span><span class="WHIT"> </span><span class="NAME">Array</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>587</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">o</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>588</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">catch</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">ex</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>589</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>590</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT">
-<span class='line'>591</span> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>592</span> 
-<span class='line'>593</span> </span><span class="COMM">/**
-<span class='line'>594</span>  * get Encoed Signature Value from JWS string.&lt;br/>
-<span class='line'>595</span>  * @name getEncodedSignatureValueFromJWS
-<span class='line'>596</span>  * @memberOf KJUR.jws.JWS
-<span class='line'>597</span>  * @function
-<span class='line'>598</span>  * @static
-<span class='line'>599</span>  * @param {String} sJWS JWS signature string to be verified
-<span class='line'>600</span>  * @return {String} string of Encoded Signature Value 
-<span class='line'>601</span>  * @throws if sJWS is not comma separated string such like "Header.Payload.Signature".
-<span class='line'>602</span>  */</span><span class="WHIT">
-<span class='line'>603</span> </span><span class="NAME">KJUR.jws.JWS.getEncodedSignatureValueFromJWS</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">sJWS</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>604</span> </span><span class="WHIT">    </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">sJWS.match</span><span class="PUNC">(</span><span class="REGX">/^[^.]+\.[^.]+\.([^.]+)$/</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>605</span> </span><span class="WHIT">	</span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"JWS signature is not a form of 'Head.Payload.SigValue'."</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>606</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT">
-<span class='line'>607</span> </span><span class="WHIT">    </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">RegExp.$1</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>608</span> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>609</span> 
-<span class='line'>610</span> </span><span class="COMM">/**
-<span class='line'>611</span>  * IntDate class for time representation for JSON Web Token(JWT)
-<span class='line'>612</span>  * @class KJUR.jws.IntDate class
-<span class='line'>613</span>  * @name KJUR.jws.IntDate
-<span class='line'>614</span>  * @since jws 3.0.1
-<span class='line'>615</span>  * @description
-<span class='line'>616</span>  * Utility class for IntDate which is integer representation of UNIX origin time
-<span class='line'>617</span>  * used in JSON Web Token(JWT).
-<span class='line'>618</span>  */</span><span class="WHIT">
-<span class='line'>619</span> </span><span class="NAME">KJUR.jws.IntDate</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>620</span> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>621</span> 
-<span class='line'>622</span> </span><span class="COMM">/**
-<span class='line'>623</span>  * @name get
-<span class='line'>624</span>  * @memberOf KJUR.jws.IntDate
-<span class='line'>625</span>  * @function
-<span class='line'>626</span>  * @static
-<span class='line'>627</span>  * @param {String} s string of time representation
-<span class='line'>628</span>  * @return {Integer} UNIX origin time in seconds for argument 's'
-<span class='line'>629</span>  * @since jws 3.0.1
-<span class='line'>630</span>  * @throws "unsupported format: s" when malformed format
-<span class='line'>631</span>  * @description
-<span class='line'>632</span>  * This method will accept following representation of time.
-<span class='line'>633</span>  * &lt;ul>
-<span class='line'>634</span>  * &lt;li>now - current time&lt;/li>
-<span class='line'>635</span>  * &lt;li>now + 1hour - after 1 hour from now&lt;/li>
-<span class='line'>636</span>  * &lt;li>now + 1day - after 1 day from now&lt;/li>
-<span class='line'>637</span>  * &lt;li>now + 1month - after 30 days from now&lt;/li>
-<span class='line'>638</span>  * &lt;li>now + 1year - after 365 days from now&lt;/li>
-<span class='line'>639</span>  * &lt;li>YYYYmmDDHHMMSSZ - UTC time (ex. 20130828235959Z)&lt;/li>
-<span class='line'>640</span>  * &lt;li>number - UNIX origin time (seconds from 1970-01-01 00:00:00) (ex. 1377714748)&lt;/li>
-<span class='line'>641</span>  * &lt;/ul>
-<span class='line'>642</span>  */</span><span class="WHIT">
-<span class='line'>643</span> </span><span class="NAME">KJUR.jws.IntDate.get</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">s</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>644</span> </span><span class="WHIT">    </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">s</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">"now"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>645</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">KJUR.jws.IntDate.getNow</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>646</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">s</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">"now + 1hour"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>647</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">KJUR.jws.IntDate.getNow</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NUMB">60</span><span class="WHIT"> </span><span class="PUNC">*</span><span class="WHIT"> </span><span class="NUMB">60</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>648</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">s</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">"now + 1day"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>649</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">KJUR.jws.IntDate.getNow</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NUMB">60</span><span class="WHIT"> </span><span class="PUNC">*</span><span class="WHIT"> </span><span class="NUMB">60</span><span class="WHIT"> </span><span class="PUNC">*</span><span class="WHIT"> </span><span class="NUMB">24</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>650</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">s</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">"now + 1month"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>651</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">KJUR.jws.IntDate.getNow</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NUMB">60</span><span class="WHIT"> </span><span class="PUNC">*</span><span class="WHIT"> </span><span class="NUMB">60</span><span class="WHIT"> </span><span class="PUNC">*</span><span class="WHIT"> </span><span class="NUMB">24</span><span class="WHIT"> </span><span class="PUNC">*</span><span class="WHIT"> </span><span class="NUMB">30</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>652</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">s</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">"now + 1year"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>653</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">KJUR.jws.IntDate.getNow</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NUMB">60</span><span class="WHIT"> </span><span class="PUNC">*</span><span class="WHIT"> </span><span class="NUMB">60</span><span class="WHIT"> </span><span class="PUNC">*</span><span class="WHIT"> </span><span class="NUMB">24</span><span class="WHIT"> </span><span class="PUNC">*</span><span class="WHIT"> </span><span class="NUMB">365</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>654</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">s.match</span><span class="PUNC">(</span><span class="REGX">/Z$/</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>655</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">KJUR.jws.IntDate.getZulu</span><span class="PUNC">(</span><span class="NAME">s</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>656</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">s.match</span><span class="PUNC">(</span><span class="REGX">/^[0-9]+$/</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>657</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">parseInt</span><span class="PUNC">(</span><span class="NAME">s</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>658</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT">
-<span class='line'>659</span> </span><span class="WHIT">    </span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"unsupported format: "</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">s</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>660</span> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>661</span> 
-<span class='line'>662</span> </span><span class="NAME">KJUR.jws.IntDate.getZulu</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">s</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>663</span> </span><span class="WHIT">    </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">a</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">s.match</span><span class="PUNC">(</span><span class="REGX">/(\d{4})(\d\d)(\d\d)(\d\d)(\d\d)(\d\d)Z/</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>664</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">year</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">parseInt</span><span class="PUNC">(</span><span class="NAME">RegExp.$1</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>665</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">month</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">parseInt</span><span class="PUNC">(</span><span class="NAME">RegExp.$2</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">-</span><span class="WHIT"> </span><span class="NUMB">1</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>666</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">day</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">parseInt</span><span class="PUNC">(</span><span class="NAME">RegExp.$3</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>667</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hour</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">parseInt</span><span class="PUNC">(</span><span class="NAME">RegExp.$4</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>668</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">min</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">parseInt</span><span class="PUNC">(</span><span class="NAME">RegExp.$5</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>669</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sec</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">parseInt</span><span class="PUNC">(</span><span class="NAME">RegExp.$6</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>670</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">d</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">Date</span><span class="PUNC">(</span><span class="NAME">Date.UTC</span><span class="PUNC">(</span><span class="NAME">year</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">month</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">day</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hour</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">min</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sec</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>671</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="PUNC">~</span><span class="PUNC">~</span><span class="PUNC">(</span><span class="NAME">d</span><span class="WHIT"> </span><span class="PUNC">/</span><span class="WHIT"> </span><span class="NUMB">1000</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>672</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT">
-<span class='line'>673</span> </span><span class="WHIT">    </span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"unsupported format: "</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">s</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>674</span> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>675</span> 
-<span class='line'>676</span> </span><span class="COMM">/*
-<span class='line'>677</span>  * @since jws 3.0.1
-<span class='line'>678</span>  */</span><span class="WHIT">
-<span class='line'>679</span> </span><span class="NAME">KJUR.jws.IntDate.getNow</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>680</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">d</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="PUNC">~</span><span class="PUNC">~</span><span class="PUNC">(</span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">Date</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">/</span><span class="WHIT"> </span><span class="NUMB">1000</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>681</span> </span><span class="WHIT">    </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">d</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>682</span> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>683</span> 
-<span class='line'>684</span> </span><span class="COMM">/*
-<span class='line'>685</span>  * @since jws 3.0.1
-<span class='line'>686</span>  */</span><span class="WHIT">
-<span class='line'>687</span> </span><span class="NAME">KJUR.jws.IntDate.intDate2UTCString</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">intDate</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>688</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">d</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">Date</span><span class="PUNC">(</span><span class="NAME">intDate</span><span class="WHIT"> </span><span class="PUNC">*</span><span class="WHIT"> </span><span class="NUMB">1000</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>689</span> </span><span class="WHIT">    </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">d.toUTCString</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>690</span> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>691</span> 
-<span class='line'>692</span> </span><span class="COMM">/*
-<span class='line'>693</span>  * @since jws 3.0.1
-<span class='line'>694</span>  */</span><span class="WHIT">
-<span class='line'>695</span> </span><span class="NAME">KJUR.jws.IntDate.intDate2Zulu</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">intDate</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
-<span class='line'>696</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">d</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">Date</span><span class="PUNC">(</span><span class="NAME">intDate</span><span class="WHIT"> </span><span class="PUNC">*</span><span class="WHIT"> </span><span class="NUMB">1000</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>697</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">year</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="STRN">"0000"</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">d.getUTCFullYear</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="PUNC">.</span><span class="NAME">slice</span><span class="PUNC">(</span><span class="PUNC">-</span><span class="NUMB">4</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">    </span><span class="WHIT">
-<span class='line'>698</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">mon</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT">  </span><span class="PUNC">(</span><span class="STRN">"00"</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">d.getUTCMonth</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NUMB">1</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="PUNC">.</span><span class="NAME">slice</span><span class="PUNC">(</span><span class="PUNC">-</span><span class="NUMB">2</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">    </span><span class="WHIT">
-<span class='line'>699</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">day</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT">  </span><span class="PUNC">(</span><span class="STRN">"00"</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">d.getUTCDate</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="PUNC">.</span><span class="NAME">slice</span><span class="PUNC">(</span><span class="PUNC">-</span><span class="NUMB">2</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">    </span><span class="WHIT">
-<span class='line'>700</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hour</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="STRN">"00"</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">d.getUTCHours</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="PUNC">.</span><span class="NAME">slice</span><span class="PUNC">(</span><span class="PUNC">-</span><span class="NUMB">2</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">    </span><span class="WHIT">
-<span class='line'>701</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">min</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT">  </span><span class="PUNC">(</span><span class="STRN">"00"</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">d.getUTCMinutes</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="PUNC">.</span><span class="NAME">slice</span><span class="PUNC">(</span><span class="PUNC">-</span><span class="NUMB">2</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">    </span><span class="WHIT">
-<span class='line'>702</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sec</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT">  </span><span class="PUNC">(</span><span class="STRN">"00"</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">d.getUTCSeconds</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="PUNC">.</span><span class="NAME">slice</span><span class="PUNC">(</span><span class="PUNC">-</span><span class="NUMB">2</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">    </span><span class="WHIT">
-<span class='line'>703</span> </span><span class="WHIT">    </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">year</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">mon</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">day</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">hour</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">min</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">sec</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="STRN">"Z"</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>704</span> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>705</span> </span></pre></body></html>
\ No newline at end of file
+<span class='line'>459</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">uSig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">hextob64u</span><span class="PUNC">(</span><span class="NAME">hSig</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>460</span> </span><span class="WHIT">    </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">uSignatureInput</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="STRN">"."</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">uSig</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>461</span> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>462</span> 
+<span class='line'>463</span> </span><span class="COMM">/**
+<span class='line'>464</span>  * verify JWS signature by specified key or certificate&lt;br/>
+<span class='line'>465</span>  * @name verify
+<span class='line'>466</span>  * @memberOf KJUR.jws.JWS
+<span class='line'>467</span>  * @function
+<span class='line'>468</span>  * @static
+<span class='line'>469</span>  * @param {String} sJWS string of JWS signature to verify
+<span class='line'>470</span>  * @param {String} key string of public key, certificate or key object to verify
+<span class='line'>471</span>  * @return {Boolean} true if the signature is valid otherwise false
+<span class='line'>472</span>  * @since jws 3.0.0
+<span class='line'>473</span>  * @see &lt;a href="http://kjur.github.io/jsrsasign/api/symbols/KJUR.crypto.Signature.html">jsrsasign KJUR.crypto.Signature method&lt;/a>
+<span class='line'>474</span>  * @see &lt;a href="http://kjur.github.io/jsrsasign/api/symbols/KJUR.crypto.Mac.html">jsrsasign KJUR.crypto.Mac method&lt;/a>
+<span class='line'>475</span>  * @description
+<span class='line'>476</span>  * This method verifies a JSON Web Signature Compact Serialization string by the validation 
+<span class='line'>477</span>  * algorithm as described in 
+<span class='line'>478</span>  * &lt;a href="http://self-issued.info/docs/draft-jones-json-web-signature-04.html#anchor5">
+<span class='line'>479</span>  * the section 5 of Internet Draft draft-jones-json-web-signature-04.&lt;/a>
+<span class='line'>480</span>  * &lt;br/>
+<span class='line'>481</span>  * NOTE: alg=none validation was removed since jsjws 3.1.0.&lt;br/>
+<span class='line'>482</span>  */</span><span class="WHIT">
+<span class='line'>483</span> </span><span class="NAME">KJUR.jws.JWS.verify</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">sJWS</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">key</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>484</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">jws</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">KJUR.jws.JWS</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>485</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">a</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">sJWS.split</span><span class="PUNC">(</span><span class="STRN">"."</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>486</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">uHeader</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">a</span><span class="PUNC">[</span><span class="NUMB">0</span><span class="PUNC">]</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>487</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">uPayload</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">a</span><span class="PUNC">[</span><span class="NUMB">1</span><span class="PUNC">]</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>488</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">uSignatureInput</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">uHeader</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="STRN">"."</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">uPayload</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>489</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hSig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">b64utohex</span><span class="PUNC">(</span><span class="NAME">a</span><span class="PUNC">[</span><span class="NUMB">2</span><span class="PUNC">]</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>490</span> 
+<span class='line'>491</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">pHeader</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">jws.readSafeJSONString</span><span class="PUNC">(</span><span class="NAME">b64utoutf8</span><span class="PUNC">(</span><span class="NAME">a</span><span class="PUNC">[</span><span class="NUMB">0</span><span class="PUNC">]</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>492</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">alg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>493</span> </span><span class="WHIT">    </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">pHeader.alg</span><span class="WHIT"> </span><span class="PUNC">===</span><span class="WHIT"> </span><span class="NAME">undefined</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>494</span> </span><span class="WHIT">	</span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"algorithm not specified in header"</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>495</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>496</span> </span><span class="WHIT">	</span><span class="NAME">alg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">pHeader.alg</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>497</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT">
+<span class='line'>498</span> 
+<span class='line'>499</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sigAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>500</span> </span><span class="WHIT">    </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">jws.jwsalg2sigalg</span><span class="PUNC">[</span><span class="NAME">pHeader.alg</span><span class="PUNC">]</span><span class="WHIT"> </span><span class="PUNC">===</span><span class="WHIT"> </span><span class="NAME">undefined</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>501</span> </span><span class="WHIT">	</span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"unsupported alg name: "</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">alg</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>502</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>503</span> </span><span class="WHIT">	</span><span class="NAME">sigAlg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">jws.jwsalg2sigalg</span><span class="PUNC">[</span><span class="NAME">alg</span><span class="PUNC">]</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>504</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT">
+<span class='line'>505</span> 
+<span class='line'>506</span> </span><span class="WHIT">    </span><span class="COMM">// x. verify</span><span class="WHIT">
+<span class='line'>507</span> </span><span class="WHIT">    </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">sigAlg</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">"none"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>508</span> </span><span class="WHIT">        </span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"not supported"</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>509</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">sigAlg.substr</span><span class="PUNC">(</span><span class="NUMB">0</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NUMB">4</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">"Hmac"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>510</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">key</span><span class="WHIT"> </span><span class="PUNC">===</span><span class="WHIT"> </span><span class="NAME">undefined</span><span class="PUNC">)</span><span class="WHIT">
+<span class='line'>511</span> </span><span class="WHIT">	    </span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"hexadecimal key shall be specified for HMAC"</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>512</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">mac</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">KJUR.crypto.Mac</span><span class="PUNC">(</span><span class="PUNC">{</span><span class="STRN">'alg'</span><span class="PUNC">:</span><span class="WHIT"> </span><span class="NAME">sigAlg</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="STRN">'pass'</span><span class="PUNC">:</span><span class="WHIT"> </span><span class="NAME">hextorstr</span><span class="PUNC">(</span><span class="NAME">key</span><span class="PUNC">)</span><span class="PUNC">}</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>513</span> </span><span class="WHIT">	</span><span class="NAME">mac.updateString</span><span class="PUNC">(</span><span class="NAME">uSignatureInput</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>514</span> </span><span class="WHIT">	</span><span class="NAME">hSig2</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">mac.doFinal</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>515</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">hSig</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="NAME">hSig2</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>516</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">sigAlg.indexOf</span><span class="PUNC">(</span><span class="STRN">"withECDSA"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">!=</span><span class="WHIT"> </span><span class="PUNC">-</span><span class="NUMB">1</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>517</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hASN1Sig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>518</span> </span><span class="WHIT">        </span><span class="KEYW">try</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>519</span> </span><span class="WHIT">	    </span><span class="NAME">hASN1Sig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">KJUR.crypto.ECDSA.concatSigToASN1Sig</span><span class="PUNC">(</span><span class="NAME">hSig</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>520</span> </span><span class="WHIT">	</span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">catch</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">ex</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>521</span> </span><span class="WHIT">	    </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="KEYW">false</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>522</span> </span><span class="WHIT">	</span><span class="PUNC">}</span><span class="WHIT">
+<span class='line'>523</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">KJUR.crypto.Signature</span><span class="PUNC">(</span><span class="PUNC">{</span><span class="STRN">'alg'</span><span class="PUNC">:</span><span class="WHIT"> </span><span class="NAME">sigAlg</span><span class="PUNC">}</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>524</span> </span><span class="WHIT">	</span><span class="NAME">sig.init</span><span class="PUNC">(</span><span class="NAME">key</span><span class="PUNC">)</span><span class="WHIT">
+<span class='line'>525</span> </span><span class="WHIT">	</span><span class="NAME">sig.updateString</span><span class="PUNC">(</span><span class="NAME">uSignatureInput</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>526</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">sig.verify</span><span class="PUNC">(</span><span class="NAME">hASN1Sig</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>527</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>528</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sig</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">KJUR.crypto.Signature</span><span class="PUNC">(</span><span class="PUNC">{</span><span class="STRN">'alg'</span><span class="PUNC">:</span><span class="WHIT"> </span><span class="NAME">sigAlg</span><span class="PUNC">}</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>529</span> </span><span class="WHIT">	</span><span class="NAME">sig.init</span><span class="PUNC">(</span><span class="NAME">key</span><span class="PUNC">)</span><span class="WHIT">
+<span class='line'>530</span> </span><span class="WHIT">	</span><span class="NAME">sig.updateString</span><span class="PUNC">(</span><span class="NAME">uSignatureInput</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>531</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">sig.verify</span><span class="PUNC">(</span><span class="NAME">hSig</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>532</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT">
+<span class='line'>533</span> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>534</span> 
+<span class='line'>535</span> </span><span class="COMM">/*
+<span class='line'>536</span>  * @since jws 3.0.0
+<span class='line'>537</span>  */</span><span class="WHIT">
+<span class='line'>538</span> </span><span class="NAME">KJUR.jws.JWS.jwsalg2sigalg</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>539</span> </span><span class="WHIT">    </span><span class="STRN">"HS256"</span><span class="PUNC">:</span><span class="WHIT">	</span><span class="STRN">"HmacSHA256"</span><span class="PUNC">,</span><span class="WHIT">
+<span class='line'>540</span> </span><span class="WHIT">    </span><span class="COMM">//"HS384":	"HmacSHA384", // unsupported because of CryptoJS bug</span><span class="WHIT">
+<span class='line'>541</span> </span><span class="WHIT">    </span><span class="STRN">"HS512"</span><span class="PUNC">:</span><span class="WHIT">	</span><span class="STRN">"HmacSHA512"</span><span class="PUNC">,</span><span class="WHIT">
+<span class='line'>542</span> </span><span class="WHIT">    </span><span class="STRN">"RS256"</span><span class="PUNC">:</span><span class="WHIT">	</span><span class="STRN">"SHA256withRSA"</span><span class="PUNC">,</span><span class="WHIT">
+<span class='line'>543</span> </span><span class="WHIT">    </span><span class="STRN">"RS384"</span><span class="PUNC">:</span><span class="WHIT">	</span><span class="STRN">"SHA384withRSA"</span><span class="PUNC">,</span><span class="WHIT">
+<span class='line'>544</span> </span><span class="WHIT">    </span><span class="STRN">"RS512"</span><span class="PUNC">:</span><span class="WHIT">	</span><span class="STRN">"SHA512withRSA"</span><span class="PUNC">,</span><span class="WHIT">
+<span class='line'>545</span> </span><span class="WHIT">    </span><span class="STRN">"ES256"</span><span class="PUNC">:</span><span class="WHIT">	</span><span class="STRN">"SHA256withECDSA"</span><span class="PUNC">,</span><span class="WHIT">
+<span class='line'>546</span> </span><span class="WHIT">    </span><span class="STRN">"ES384"</span><span class="PUNC">:</span><span class="WHIT">	</span><span class="STRN">"SHA384withECDSA"</span><span class="PUNC">,</span><span class="WHIT">
+<span class='line'>547</span> </span><span class="WHIT">    </span><span class="COMM">//"ES512":	"SHA512withECDSA", // unsupported because of jsrsasign's bug</span><span class="WHIT">
+<span class='line'>548</span> </span><span class="WHIT">    </span><span class="STRN">"PS256"</span><span class="PUNC">:</span><span class="WHIT">	</span><span class="STRN">"SHA256withRSAandMGF1"</span><span class="PUNC">,</span><span class="WHIT">
+<span class='line'>549</span> </span><span class="WHIT">    </span><span class="STRN">"PS384"</span><span class="PUNC">:</span><span class="WHIT">	</span><span class="STRN">"SHA384withRSAandMGF1"</span><span class="PUNC">,</span><span class="WHIT">
+<span class='line'>550</span> </span><span class="WHIT">    </span><span class="STRN">"PS512"</span><span class="PUNC">:</span><span class="WHIT">	</span><span class="STRN">"SHA512withRSAandMGF1"</span><span class="PUNC">,</span><span class="WHIT">
+<span class='line'>551</span> </span><span class="WHIT">    </span><span class="STRN">"none"</span><span class="PUNC">:</span><span class="WHIT">	</span><span class="STRN">"none"</span><span class="PUNC">,</span><span class="WHIT">
+<span class='line'>552</span> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>553</span> 
+<span class='line'>554</span> </span><span class="COMM">// === utility static method ======================================================</span><span class="WHIT">
+<span class='line'>555</span> 
+<span class='line'>556</span> </span><span class="COMM">/**
+<span class='line'>557</span>  * check whether a String "s" is a safe JSON string or not.&lt;br/>
+<span class='line'>558</span>  * If a String "s" is a malformed JSON string or an other object type
+<span class='line'>559</span>  * this returns 0, otherwise this returns 1.
+<span class='line'>560</span>  * @name isSafeJSONString
+<span class='line'>561</span>  * @memberOf KJUR.jws.JWS
+<span class='line'>562</span>  * @function
+<span class='line'>563</span>  * @static
+<span class='line'>564</span>  * @param {String} s JSON string
+<span class='line'>565</span>  * @return {Number} 1 or 0
+<span class='line'>566</span>  */</span><span class="WHIT">
+<span class='line'>567</span> </span><span class="NAME">KJUR.jws.JWS.isSafeJSONString</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">s</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">h</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">p</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>568</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">o</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>569</span> </span><span class="WHIT">    </span><span class="KEYW">try</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>570</span> </span><span class="WHIT">	</span><span class="NAME">o</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">jsonParse</span><span class="PUNC">(</span><span class="NAME">s</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>571</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="KEYW">typeof</span><span class="WHIT"> </span><span class="NAME">o</span><span class="WHIT"> </span><span class="PUNC">!=</span><span class="WHIT"> </span><span class="STRN">"object"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NUMB">0</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>572</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">o.constructor</span><span class="WHIT"> </span><span class="PUNC">===</span><span class="WHIT"> </span><span class="NAME">Array</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NUMB">0</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>573</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">h</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="NAME">h</span><span class="PUNC">[</span><span class="NAME">p</span><span class="PUNC">]</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">o</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>574</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NUMB">1</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>575</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">catch</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">ex</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>576</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NUMB">0</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>577</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT">
+<span class='line'>578</span> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>579</span> 
+<span class='line'>580</span> </span><span class="COMM">/**
+<span class='line'>581</span>  * read a String "s" as JSON object if it is safe.&lt;br/>
+<span class='line'>582</span>  * If a String "s" is a malformed JSON string or not JSON string,
+<span class='line'>583</span>  * this returns null, otherwise returns JSON object.
+<span class='line'>584</span>  * @name readSafeJSONString
+<span class='line'>585</span>  * @memberOf KJUR.jws.JWS
+<span class='line'>586</span>  * @function
+<span class='line'>587</span>  * @static
+<span class='line'>588</span>  * @param {String} s JSON string
+<span class='line'>589</span>  * @return {Object} JSON object or null
+<span class='line'>590</span>  * @since 1.1.1
+<span class='line'>591</span>  */</span><span class="WHIT">
+<span class='line'>592</span> </span><span class="NAME">KJUR.jws.JWS.readSafeJSONString</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">s</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>593</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">o</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>594</span> </span><span class="WHIT">    </span><span class="KEYW">try</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>595</span> </span><span class="WHIT">	</span><span class="NAME">o</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">jsonParse</span><span class="PUNC">(</span><span class="NAME">s</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>596</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="KEYW">typeof</span><span class="WHIT"> </span><span class="NAME">o</span><span class="WHIT"> </span><span class="PUNC">!=</span><span class="WHIT"> </span><span class="STRN">"object"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>597</span> </span><span class="WHIT">	</span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">o.constructor</span><span class="WHIT"> </span><span class="PUNC">===</span><span class="WHIT"> </span><span class="NAME">Array</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>598</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">o</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>599</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">catch</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">ex</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>600</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>601</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT">
+<span class='line'>602</span> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>603</span> 
+<span class='line'>604</span> </span><span class="COMM">/**
+<span class='line'>605</span>  * get Encoed Signature Value from JWS string.&lt;br/>
+<span class='line'>606</span>  * @name getEncodedSignatureValueFromJWS
+<span class='line'>607</span>  * @memberOf KJUR.jws.JWS
+<span class='line'>608</span>  * @function
+<span class='line'>609</span>  * @static
+<span class='line'>610</span>  * @param {String} sJWS JWS signature string to be verified
+<span class='line'>611</span>  * @return {String} string of Encoded Signature Value 
+<span class='line'>612</span>  * @throws if sJWS is not comma separated string such like "Header.Payload.Signature".
+<span class='line'>613</span>  */</span><span class="WHIT">
+<span class='line'>614</span> </span><span class="NAME">KJUR.jws.JWS.getEncodedSignatureValueFromJWS</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">sJWS</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>615</span> </span><span class="WHIT">    </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">sJWS.match</span><span class="PUNC">(</span><span class="REGX">/^[^.]+\.[^.]+\.([^.]+)$/</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="KEYW">null</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>616</span> </span><span class="WHIT">	</span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"JWS signature is not a form of 'Head.Payload.SigValue'."</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>617</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT">
+<span class='line'>618</span> </span><span class="WHIT">    </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">RegExp.$1</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>619</span> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>620</span> 
+<span class='line'>621</span> </span><span class="COMM">/**
+<span class='line'>622</span>  * IntDate class for time representation for JSON Web Token(JWT)
+<span class='line'>623</span>  * @class KJUR.jws.IntDate class
+<span class='line'>624</span>  * @name KJUR.jws.IntDate
+<span class='line'>625</span>  * @since jws 3.0.1
+<span class='line'>626</span>  * @description
+<span class='line'>627</span>  * Utility class for IntDate which is integer representation of UNIX origin time
+<span class='line'>628</span>  * used in JSON Web Token(JWT).
+<span class='line'>629</span>  */</span><span class="WHIT">
+<span class='line'>630</span> </span><span class="NAME">KJUR.jws.IntDate</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>631</span> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>632</span> 
+<span class='line'>633</span> </span><span class="COMM">/**
+<span class='line'>634</span>  * @name get
+<span class='line'>635</span>  * @memberOf KJUR.jws.IntDate
+<span class='line'>636</span>  * @function
+<span class='line'>637</span>  * @static
+<span class='line'>638</span>  * @param {String} s string of time representation
+<span class='line'>639</span>  * @return {Integer} UNIX origin time in seconds for argument 's'
+<span class='line'>640</span>  * @since jws 3.0.1
+<span class='line'>641</span>  * @throws "unsupported format: s" when malformed format
+<span class='line'>642</span>  * @description
+<span class='line'>643</span>  * This method will accept following representation of time.
+<span class='line'>644</span>  * &lt;ul>
+<span class='line'>645</span>  * &lt;li>now - current time&lt;/li>
+<span class='line'>646</span>  * &lt;li>now + 1hour - after 1 hour from now&lt;/li>
+<span class='line'>647</span>  * &lt;li>now + 1day - after 1 day from now&lt;/li>
+<span class='line'>648</span>  * &lt;li>now + 1month - after 30 days from now&lt;/li>
+<span class='line'>649</span>  * &lt;li>now + 1year - after 365 days from now&lt;/li>
+<span class='line'>650</span>  * &lt;li>YYYYmmDDHHMMSSZ - UTC time (ex. 20130828235959Z)&lt;/li>
+<span class='line'>651</span>  * &lt;li>number - UNIX origin time (seconds from 1970-01-01 00:00:00) (ex. 1377714748)&lt;/li>
+<span class='line'>652</span>  * &lt;/ul>
+<span class='line'>653</span>  */</span><span class="WHIT">
+<span class='line'>654</span> </span><span class="NAME">KJUR.jws.IntDate.get</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">s</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>655</span> </span><span class="WHIT">    </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">s</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">"now"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>656</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">KJUR.jws.IntDate.getNow</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>657</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">s</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">"now + 1hour"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>658</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">KJUR.jws.IntDate.getNow</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NUMB">60</span><span class="WHIT"> </span><span class="PUNC">*</span><span class="WHIT"> </span><span class="NUMB">60</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>659</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">s</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">"now + 1day"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>660</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">KJUR.jws.IntDate.getNow</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NUMB">60</span><span class="WHIT"> </span><span class="PUNC">*</span><span class="WHIT"> </span><span class="NUMB">60</span><span class="WHIT"> </span><span class="PUNC">*</span><span class="WHIT"> </span><span class="NUMB">24</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>661</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">s</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">"now + 1month"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>662</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">KJUR.jws.IntDate.getNow</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NUMB">60</span><span class="WHIT"> </span><span class="PUNC">*</span><span class="WHIT"> </span><span class="NUMB">60</span><span class="WHIT"> </span><span class="PUNC">*</span><span class="WHIT"> </span><span class="NUMB">24</span><span class="WHIT"> </span><span class="PUNC">*</span><span class="WHIT"> </span><span class="NUMB">30</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>663</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">s</span><span class="WHIT"> </span><span class="PUNC">==</span><span class="WHIT"> </span><span class="STRN">"now + 1year"</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>664</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">KJUR.jws.IntDate.getNow</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NUMB">60</span><span class="WHIT"> </span><span class="PUNC">*</span><span class="WHIT"> </span><span class="NUMB">60</span><span class="WHIT"> </span><span class="PUNC">*</span><span class="WHIT"> </span><span class="NUMB">24</span><span class="WHIT"> </span><span class="PUNC">*</span><span class="WHIT"> </span><span class="NUMB">365</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>665</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">s.match</span><span class="PUNC">(</span><span class="REGX">/Z$/</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>666</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">KJUR.jws.IntDate.getZulu</span><span class="PUNC">(</span><span class="NAME">s</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>667</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT"> </span><span class="KEYW">else</span><span class="WHIT"> </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">s.match</span><span class="PUNC">(</span><span class="REGX">/^[0-9]+$/</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>668</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">parseInt</span><span class="PUNC">(</span><span class="NAME">s</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>669</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT">
+<span class='line'>670</span> </span><span class="WHIT">    </span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"unsupported format: "</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">s</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>671</span> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>672</span> 
+<span class='line'>673</span> </span><span class="NAME">KJUR.jws.IntDate.getZulu</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">s</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>674</span> </span><span class="WHIT">    </span><span class="KEYW">if</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">a</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">s.match</span><span class="PUNC">(</span><span class="REGX">/(\d{4})(\d\d)(\d\d)(\d\d)(\d\d)(\d\d)Z/</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>675</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">year</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">parseInt</span><span class="PUNC">(</span><span class="NAME">RegExp.$1</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>676</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">month</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">parseInt</span><span class="PUNC">(</span><span class="NAME">RegExp.$2</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">-</span><span class="WHIT"> </span><span class="NUMB">1</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>677</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">day</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">parseInt</span><span class="PUNC">(</span><span class="NAME">RegExp.$3</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>678</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hour</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">parseInt</span><span class="PUNC">(</span><span class="NAME">RegExp.$4</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>679</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">min</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">parseInt</span><span class="PUNC">(</span><span class="NAME">RegExp.$5</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>680</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sec</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">parseInt</span><span class="PUNC">(</span><span class="NAME">RegExp.$6</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>681</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">d</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">Date</span><span class="PUNC">(</span><span class="NAME">Date.UTC</span><span class="PUNC">(</span><span class="NAME">year</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">month</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">day</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">hour</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">min</span><span class="PUNC">,</span><span class="WHIT"> </span><span class="NAME">sec</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>682</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="PUNC">~</span><span class="PUNC">~</span><span class="PUNC">(</span><span class="NAME">d</span><span class="WHIT"> </span><span class="PUNC">/</span><span class="WHIT"> </span><span class="NUMB">1000</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>683</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="WHIT">
+<span class='line'>684</span> </span><span class="WHIT">    </span><span class="KEYW">throw</span><span class="WHIT"> </span><span class="STRN">"unsupported format: "</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">s</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>685</span> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>686</span> 
+<span class='line'>687</span> </span><span class="COMM">/*
+<span class='line'>688</span>  * @since jws 3.0.1
+<span class='line'>689</span>  */</span><span class="WHIT">
+<span class='line'>690</span> </span><span class="NAME">KJUR.jws.IntDate.getNow</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>691</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">d</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="PUNC">~</span><span class="PUNC">~</span><span class="PUNC">(</span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">Date</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">/</span><span class="WHIT"> </span><span class="NUMB">1000</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>692</span> </span><span class="WHIT">    </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">d</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>693</span> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>694</span> 
+<span class='line'>695</span> </span><span class="COMM">/*
+<span class='line'>696</span>  * @since jws 3.0.1
+<span class='line'>697</span>  */</span><span class="WHIT">
+<span class='line'>698</span> </span><span class="NAME">KJUR.jws.IntDate.intDate2UTCString</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">intDate</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>699</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">d</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">Date</span><span class="PUNC">(</span><span class="NAME">intDate</span><span class="WHIT"> </span><span class="PUNC">*</span><span class="WHIT"> </span><span class="NUMB">1000</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>700</span> </span><span class="WHIT">    </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">d.toUTCString</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>701</span> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>702</span> 
+<span class='line'>703</span> </span><span class="COMM">/*
+<span class='line'>704</span>  * @since jws 3.0.1
+<span class='line'>705</span>  */</span><span class="WHIT">
+<span class='line'>706</span> </span><span class="NAME">KJUR.jws.IntDate.intDate2Zulu</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">intDate</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
+<span class='line'>707</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">d</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">Date</span><span class="PUNC">(</span><span class="NAME">intDate</span><span class="WHIT"> </span><span class="PUNC">*</span><span class="WHIT"> </span><span class="NUMB">1000</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>708</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">year</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="STRN">"0000"</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">d.getUTCFullYear</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="PUNC">.</span><span class="NAME">slice</span><span class="PUNC">(</span><span class="PUNC">-</span><span class="NUMB">4</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">    </span><span class="WHIT">
+<span class='line'>709</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">mon</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT">  </span><span class="PUNC">(</span><span class="STRN">"00"</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="NAME">d.getUTCMonth</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NUMB">1</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="PUNC">.</span><span class="NAME">slice</span><span class="PUNC">(</span><span class="PUNC">-</span><span class="NUMB">2</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">    </span><span class="WHIT">
+<span class='line'>710</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">day</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT">  </span><span class="PUNC">(</span><span class="STRN">"00"</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">d.getUTCDate</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="PUNC">.</span><span class="NAME">slice</span><span class="PUNC">(</span><span class="PUNC">-</span><span class="NUMB">2</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">    </span><span class="WHIT">
+<span class='line'>711</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hour</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="PUNC">(</span><span class="STRN">"00"</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">d.getUTCHours</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="PUNC">.</span><span class="NAME">slice</span><span class="PUNC">(</span><span class="PUNC">-</span><span class="NUMB">2</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">    </span><span class="WHIT">
+<span class='line'>712</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">min</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT">  </span><span class="PUNC">(</span><span class="STRN">"00"</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">d.getUTCMinutes</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="PUNC">.</span><span class="NAME">slice</span><span class="PUNC">(</span><span class="PUNC">-</span><span class="NUMB">2</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">    </span><span class="WHIT">
+<span class='line'>713</span> </span><span class="WHIT">    </span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">sec</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT">  </span><span class="PUNC">(</span><span class="STRN">"00"</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">d.getUTCSeconds</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">)</span><span class="PUNC">.</span><span class="NAME">slice</span><span class="PUNC">(</span><span class="PUNC">-</span><span class="NUMB">2</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">    </span><span class="WHIT">
+<span class='line'>714</span> </span><span class="WHIT">    </span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">year</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">mon</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">day</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">hour</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">min</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="NAME">sec</span><span class="WHIT"> </span><span class="PUNC">+</span><span class="WHIT"> </span><span class="STRN">"Z"</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>715</span> </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>716</span> </span></pre></body></html>
\ No newline at end of file
diff --git a/index.html b/index.html
index a35a60a..d44573a 100755
--- a/index.html
+++ b/index.html
@@ -28,6 +28,7 @@ <h2 id="project_tagline">jsjws : pure JavaScript implementation of JWT ( JSON We
           <a href="http://kjur.github.io/jsjws/api/" target="_blank">API REFERENCE</a> | 
           <a href="http://kjur.github.io/jsjws/index.html#demo" target="_blank">DEMOS</a> | 
           <a href="http://kjur.github.io/jsjws/mobile/">MOBILE</a> | 
+          <a href="https://npmjs.org/package/jsrsasign" target="_blank">NPM</a> | 
         </header>
     </div>
 
@@ -54,8 +55,8 @@ <h3>FEATURES</h3>
 <li>sign and verify a JSON Web Token(JWT) and Signature(JWS) with RSA/RSAPSS/ECDSA algorithm</li>
 <li>implemented by pure JavaScript</li>
 <li>work on any modern browsers including smart phones</li>
-<li>supports all algorithms except HS384 and ES512 (i.e. jsjws now supports 
-     HS256, HS384, HS512, RS256, RS384, RS512, ES256, ES384, PS256, PS384, PS512, none.)</li>
+<li>supports all algorithms except ES512 (i.e. jsjws now supports 
+     HS256, HS384, HS512, RS256, RS384, RS512, ES256, ES384, PS256, PS384, PS512)</li>
 <li>powerful and easy 'sign' and 'verify' method.</li>
 <li>used with naked key, X.509 certificate and PKCS#5/PKCS#8 encrypted/plain private/public key</li>
 <li>supports UTF-8 characters including CJK, Latin and non-ASCII in JWS Header and Payload</li>
@@ -65,6 +66,13 @@ <h3>FEATURES</h3>
 
 <h3>NEWS</h3>
 <dl>
+<dt><b>2015-Apr-04</b>: 
+<dd>
+3.1.0 released. alg=none support have been removed.
+
+<dt><b>2013-Oct-07</b>: 
+<dd>Node.js <a href="https://npmjs.org/package/jsrsasign" target="_blank">npm module of jsrsasign</a> is now registered in the repository. It also includes this <a href="http://kjur.github.io/jsjws/">'jsjws'</a>.
+
 <dt><b>2013-Sep-24</b>
 <dd>
 3.0.2 released. Now supports HS384 (HmacSHA384) signature 
diff --git a/index_mat.html b/index_mat.html
index 4668dcf..c796745 100755
--- a/index_mat.html
+++ b/index_mat.html
@@ -46,7 +46,7 @@ <h1 id="project_title">Algorithm Support Matrix of JWT/JWS Implementations</h1>
 <section id="main_content" class="inner">
 
 <!-- now editing -->
-<div><i>LAST UPDATE: 2013-Sep-24</i></div>
+<div><i>LAST UPDATE: 2014-Jun-06</i></div>
 <p>
 There are many implementations of JWT/JWS and
 below shows which algorithms are supported.
@@ -89,7 +89,7 @@ <h1 id="project_title">Algorithm Support Matrix of JWT/JWS Implementations</h1>
 <td>&#10004;</td>
 <td>&#10004;</td>
 <td>&#10004;</td>
-<td>&#10004;</td>
+<td>&mdash;</td>
 <td nowrap>
 <a href="http://www-cs-students.stanford.edu/~tjw/jsbn/">Tom Wu's RSA</a>,
 <a href="http://kjur.github.io/jsrsasign/">jsrsasign</a>,
@@ -210,6 +210,27 @@ <h1 id="project_title">Algorithm Support Matrix of JWT/JWS Implementations</h1>
 </td>
 </tr>
 
+<tr>
+<td><a href="https://bitbucket.org/b_c/jose4j/wiki/Home">jose.4.j</a></td>
+<td>Java</td>
+<td>&#10004;</td>
+<td>&#10004;</td>
+<td>&#10004;</td>
+<td>&#10004;</td>
+<td>&#10004;</td>
+<td>&#10004;</td>
+<td>&#10004;</td>
+<td>&#10004;</td>
+<td>&#10004;</td>
+<td>&#10004;</td>
+<td>&#10004;</td>
+<td>&#10004;</td>
+<td>&#10004;</td>
+<td nowrap>
+Default JCE
+</td>
+</tr>
+
 <tr>
 <td><a href="https://bitbucket.org/nimbusds/nimbus-jose-jwt">Nimbus JWT</a></td>
 <td>Java</td>
@@ -266,7 +287,7 @@ <h1 id="project_title">Algorithm Support Matrix of JWT/JWS Implementations</h1>
 <td>&mdash;</td>
 <td>&mdash;</td>
 <td>&mdash;</td>
-<td nowrap>?</td>
+<td nowrap>hashlib, ecdsa, Crypto.PublicKey.RSA module</td>
 </tr>
 
 <tr>
@@ -325,7 +346,7 @@ <h1 id="project_title">Algorithm Support Matrix of JWT/JWS Implementations</h1>
 <td>&mdash;</td>
 <td>&mdash;</td>
 <td>&mdash;</td>
-<td nowrap>?</td>
+<td nowrap>Digest::SHA, Crypt::OpenSSL::RSA module</td>
 </tr>
 
 <tr>
@@ -347,6 +368,25 @@ <h1 id="project_title">Algorithm Support Matrix of JWT/JWS Implementations</h1>
 <td nowrap>CNG,CAPI</td>
 </tr>
 
+<tr>
+<td><a href="https://github.com/pingidentity/mod_auth_openidc/tree/master/src/jose">mod_auth_openidc</a></td>
+<td>C</td>
+<td>&#10004;</td>
+<td>&#10004;</td>
+<td>&#10004;</td>
+<td>&#10004;</td>
+<td>&#10004;</td>
+<td>&#10004;</td>
+<td>&#10004;</td>
+<td>&#10004;</td>
+<td>&#10004;</td>
+<td>&#10004;</td>
+<td>&#10004;</td>
+<td>&#10004;</td>
+<td>&mdash;</td>
+<td nowrap>OpenSSL</td>
+</tr>
+
 </table>
 
 Back to <a href="index.html">TOP</a>.
@@ -362,7 +402,7 @@ <h1 id="project_title">Algorithm Support Matrix of JWT/JWS Implementations</h1>
 <p class="copyright">jsrsasign maintained by <a href="https://github.com/kjur">kjur</a></p>
 <p>Published with <a href="http://pages.github.com">GitHub Pages</a></p>
 <div align="center" style="color: white">
-Copyright &copy; 2013 Kenji Urushima. All rights reserved.
+Copyright &copy; 2013-2014 Kenji Urushima. All rights reserved.
 </div>
 </footer>
 </div>
diff --git a/jws-3.1.js b/jws-3.1.js
new file mode 100755
index 0000000..97c6afd
--- /dev/null
+++ b/jws-3.1.js
@@ -0,0 +1,715 @@
+/*! jws-3.1.0 (c) 2013 Kenji Urushima | kjur.github.com/jsjws/license
+ */
+/*
+ * jws.js - JSON Web Signature Class
+ *
+ * version: 3.1.0 (2015 Apr 3)
+ *
+ * Copyright (c) 2010-2014 Kenji Urushima (kenji.urushima@gmail.com)
+ *
+ * This software is licensed under the terms of the MIT License.
+ * http://kjur.github.com/jsjws/license/
+ *
+ * The above copyright and license notice shall be 
+ * included in all copies or substantial portions of the Software.
+ */
+
+/**
+ * @fileOverview
+ * @name jws-3.1.js
+ * @author Kenji Urushima kenji.urushima@gmail.com
+ * @version 3.1.0 (2015-Apr-03)
+ * @since jsjws 1.0
+ * @license <a href="http://kjur.github.io/jsjws/license/">MIT License</a>
+ */
+
+if (typeof KJUR == "undefined" || !KJUR) KJUR = {};
+if (typeof KJUR.jws == "undefined" || !KJUR.jws) KJUR.jws = {};
+
+/**
+ * JSON Web Signature(JWS) class.<br/>
+ * @name KJUR.jws.JWS
+ * @class JSON Web Signature(JWS) class
+ * @property {Dictionary} parsedJWS This property is set after JWS signature verification. <br/>
+ *           Following "parsedJWS_*" properties can be accessed as "parsedJWS.*" because of
+ *           JsDoc restriction.
+ * @property {String} parsedJWS_headB64U string of Encrypted JWS Header
+ * @property {String} parsedJWS_payloadB64U string of Encrypted JWS Payload
+ * @property {String} parsedJWS_sigvalB64U string of Encrypted JWS signature value
+ * @property {String} parsedJWS_si string of Signature Input
+ * @property {String} parsedJWS_sigvalH hexadecimal string of JWS signature value
+ * @property {String} parsedJWS_sigvalBI BigInteger(defined in jsbn.js) object of JWS signature value
+ * @property {String} parsedJWS_headS string of decoded JWS Header
+ * @property {String} parsedJWS_headS string of decoded JWS Payload
+ * @requires base64x.js, json-sans-eval.js and jsrsasign library
+ * @see <a href="http://kjur.github.com/jsjws/">'jwjws'(JWS JavaScript Library) home page http://kjur.github.com/jsjws/</a>
+ * @see <a href="http://kjur.github.com/jsrsasigns/">'jwrsasign'(RSA Sign JavaScript Library) home page http://kjur.github.com/jsrsasign/</a>
+ * @see <a href="http://tools.ietf.org/html/draft-ietf-jose-json-web-algorithms-14">IETF I-D JSON Web Algorithms (JWA)</a>
+ * @since jsjws 1.0
+ * @description
+ * <h4>Supported Algorithms</h4>
+ * Here is supported algorithm names for {@link KJUR.jws.JWS.sign} and {@link KJUR.jws.JWS.verify}
+ * methods.
+ * <table>
+ * <tr><th>alg value</th><th>spec requirement</th><th>jsjws support</th></tr>
+ * <tr><td>HS256</td><td>REQUIRED</td><td>SUPPORTED</td></tr>
+ * <tr><td>HS384</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
+ * <tr><td>HS512</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
+ * <tr><td>RS256</td><td>RECOMMENDED</td><td>SUPPORTED</td></tr>
+ * <tr><td>RS384</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
+ * <tr><td>RS512</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
+ * <tr><td>ES256</td><td>RECOMMENDED+</td><td>SUPPORTED</td></tr>
+ * <tr><td>ES384</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
+ * <tr><td>ES512</td><td>OPTIONAL</td><td>-</td></tr>
+ * <tr><td>PS256</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
+ * <tr><td>PS384</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
+ * <tr><td>PS512</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
+ * <tr><td>none</td><td>REQUIRED</td><td>SUPPORTED(generation only)</td></tr>
+ * </table>
+ * NOTE1: HS384 is supported since jsjws 3.0.2 with jsrsasign 4.1.4.<br/>
+ * NOTE2: alg=none validation was removed since jsjws 3.1.0.<br/>
+ */
+KJUR.jws.JWS = function() {
+
+    // === utility =============================================================
+
+    /**
+     * parse JWS string and set public property 'parsedJWS' dictionary.<br/>
+     * @name parseJWS
+     * @memberOf KJUR.jws.JWS
+     * @function
+     * @param {String} sJWS JWS signature string to be parsed.
+     * @throws if sJWS is not comma separated string such like "Header.Payload.Signature".
+     * @throws if JWS Header is a malformed JSON string.
+     * @since jws 1.1
+     */
+    this.parseJWS = function(sJWS, sigValNotNeeded) {
+	if ((this.parsedJWS !== undefined) &&
+	    (sigValNotNeeded || (this.parsedJWS.sigvalH !== undefined))) {
+	    return;
+	}
+	if (sJWS.match(/^([^.]+)\.([^.]+)\.([^.]+)$/) == null) {
+	    throw "JWS signature is not a form of 'Head.Payload.SigValue'.";
+	}
+	var b6Head = RegExp.$1;
+	var b6Payload = RegExp.$2;
+	var b6SigVal = RegExp.$3;
+	var sSI = b6Head + "." + b6Payload;
+	this.parsedJWS = {};
+	this.parsedJWS.headB64U = b6Head;
+	this.parsedJWS.payloadB64U = b6Payload;
+	this.parsedJWS.sigvalB64U = b6SigVal;
+	this.parsedJWS.si = sSI;
+
+	if (!sigValNotNeeded) {
+	    var hSigVal = b64utohex(b6SigVal);
+	    var biSigVal = parseBigInt(hSigVal, 16);
+	    this.parsedJWS.sigvalH = hSigVal;
+	    this.parsedJWS.sigvalBI = biSigVal;
+	}
+
+	var sHead = b64utoutf8(b6Head);
+	var sPayload = b64utoutf8(b6Payload);
+	this.parsedJWS.headS = sHead;
+	this.parsedJWS.payloadS = sPayload;
+
+	if (! this.isSafeJSONString(sHead, this.parsedJWS, 'headP'))
+	    throw "malformed JSON string for JWS Head: " + sHead;
+    };
+
+    // ==== JWS Validation =========================================================
+    function _getSignatureInputByString(sHead, sPayload) {
+	return utf8tob64u(sHead) + "." + utf8tob64u(sPayload);
+    };
+
+    function _getHashBySignatureInput(sSignatureInput, sHashAlg) {
+	var hashfunc = function(s) { return KJUR.crypto.Util.hashString(s, sHashAlg); };
+	if (hashfunc == null) throw "hash function not defined in jsrsasign: " + sHashAlg;
+	return hashfunc(sSignatureInput);
+    };
+
+    function _jws_verifySignature(sHead, sPayload, hSig, hN, hE) {
+	var sSignatureInput = _getSignatureInputByString(sHead, sPayload);
+	var biSig = parseBigInt(hSig, 16);
+	return _rsasign_verifySignatureWithArgs(sSignatureInput, biSig, hN, hE);
+    };
+
+    /**
+     * verify JWS signature with naked RSA public key.<br/>
+     * This only supports "RS256" and "RS512" algorithm.
+     * @name verifyJWSByNE
+     * @memberOf KJUR.jws.JWS
+     * @function
+     * @param {String} sJWS JWS signature string to be verified
+     * @param {String} hN hexadecimal string for modulus of RSA public key
+     * @param {String} hE hexadecimal string for public exponent of RSA public key
+     * @return {String} returns 1 when JWS signature is valid, otherwise returns 0
+     * @throws if sJWS is not comma separated string such like "Header.Payload.Signature".
+     * @throws if JWS Header is a malformed JSON string.
+     * @deprecated from 3.0.0 please move to {@link KJUR.jws.JWS.verify}
+     */
+    this.verifyJWSByNE = function(sJWS, hN, hE) {
+	this.parseJWS(sJWS);
+	return _rsasign_verifySignatureWithArgs(this.parsedJWS.si, this.parsedJWS.sigvalBI, hN, hE);    
+    };
+
+    /**
+     * verify JWS signature with RSA public key.<br/>
+     * This only supports "RS256", "RS512", "PS256" and "PS512" algorithms.
+     * @name verifyJWSByKey
+     * @memberOf KJUR.jws.JWS
+     * @function
+     * @param {String} sJWS JWS signature string to be verified
+     * @param {RSAKey} key RSA public key
+     * @return {Boolean} returns true when JWS signature is valid, otherwise returns false
+     * @throws if sJWS is not comma separated string such like "Header.Payload.Signature".
+     * @throws if JWS Header is a malformed JSON string.
+     * @deprecated from 3.0.0 please move to {@link KJUR.jws.JWS.verify}
+     */
+    this.verifyJWSByKey = function(sJWS, key) {
+	this.parseJWS(sJWS);
+	var hashAlg = _jws_getHashAlgFromParsedHead(this.parsedJWS.headP);
+        var isPSS = this.parsedJWS.headP['alg'].substr(0, 2) == "PS";
+
+	if (key.hashAndVerify) {
+	    return key.hashAndVerify(hashAlg,
+				     new Buffer(this.parsedJWS.si, 'utf8').toString('base64'),
+				     b64utob64(this.parsedJWS.sigvalB64U),
+				     'base64',
+				     isPSS);
+	} else if (isPSS) {
+	    return key.verifyStringPSS(this.parsedJWS.si,
+				       this.parsedJWS.sigvalH, hashAlg);
+	} else {
+	    return key.verifyString(this.parsedJWS.si,
+				    this.parsedJWS.sigvalH);
+	}
+    };
+
+    /**
+     * verify JWS signature by PEM formatted X.509 certificate.<br/>
+     * This only supports "RS256" and "RS512" algorithm.
+     * @name verifyJWSByPemX509Cert
+     * @memberOf KJUR.jws.JWS
+     * @function
+     * @param {String} sJWS JWS signature string to be verified
+     * @param {String} sPemX509Cert string of PEM formatted X.509 certificate
+     * @return {String} returns 1 when JWS signature is valid, otherwise returns 0
+     * @throws if sJWS is not comma separated string such like "Header.Payload.Signature".
+     * @throws if JWS Header is a malformed JSON string.
+     * @since 1.1
+     * @deprecated from 3.0.0 please move to {@link KJUR.jws.JWS.verify}
+     */
+    this.verifyJWSByPemX509Cert = function(sJWS, sPemX509Cert) {
+	this.parseJWS(sJWS);
+	var x509 = new X509();
+	x509.readCertPEM(sPemX509Cert);
+	return x509.subjectPublicKeyRSA.verifyString(this.parsedJWS.si, this.parsedJWS.sigvalH);
+    };
+
+    // ==== JWS Generation =========================================================
+    function _jws_getHashAlgFromParsedHead(head) {
+	var sigAlg = head["alg"];
+	var hashAlg = "";
+
+	if (sigAlg != "RS256" && sigAlg != "RS512" &&
+	    sigAlg != "PS256" && sigAlg != "PS512")
+	    throw "JWS signature algorithm not supported: " + sigAlg;
+	if (sigAlg.substr(2) == "256") hashAlg = "sha256";
+	if (sigAlg.substr(2) == "512") hashAlg = "sha512";
+	return hashAlg;
+    };
+
+    function _jws_getHashAlgFromHead(sHead) {
+	return _jws_getHashAlgFromParsedHead(jsonParse(sHead));
+    };
+
+    function _jws_generateSignatureValueBySI_NED(sHead, sPayload, sSI, hN, hE, hD) {
+	var rsa = new RSAKey();
+	rsa.setPrivate(hN, hE, hD);
+
+	var hashAlg = _jws_getHashAlgFromHead(sHead);
+	var sigValue = rsa.signString(sSI, hashAlg);
+	return sigValue;
+    };
+
+    function _jws_generateSignatureValueBySI_Key(sHead, sPayload, sSI, key, head) {
+	var hashAlg = null;
+	if (typeof head == "undefined") {
+	    hashAlg = _jws_getHashAlgFromHead(sHead);
+	} else {
+	    hashAlg = _jws_getHashAlgFromParsedHead(head);
+	}
+
+	var isPSS = head['alg'].substr(0, 2) == "PS";
+
+	if (key.hashAndSign) {
+	    return b64tob64u(key.hashAndSign(hashAlg, sSI, 'binary', 'base64', isPSS));
+	} else if (isPSS) {
+	    return hextob64u(key.signStringPSS(sSI, hashAlg));
+	} else {
+	    return hextob64u(key.signString(sSI, hashAlg));
+	}
+    };
+
+    function _jws_generateSignatureValueByNED(sHead, sPayload, hN, hE, hD) {
+	var sSI = _getSignatureInputByString(sHead, sPayload);
+	return _jws_generateSignatureValueBySI_NED(sHead, sPayload, sSI, hN, hE, hD);
+    };
+
+    /**
+     * generate JWS signature by Header, Payload and a naked RSA private key.<br/>
+     * This only supports "RS256" and "RS512" algorithm.
+     * @name generateJWSByNED
+     * @memberOf KJUR.jws.JWS
+     * @function
+     * @param {String} sHead string of JWS Header
+     * @param {String} sPayload string of JWS Payload
+     * @param {String} hN hexadecimal string for modulus of RSA public key
+     * @param {String} hE hexadecimal string for public exponent of RSA public key
+     * @param {String} hD hexadecimal string for private exponent of RSA private key
+     * @return {String} JWS signature string
+     * @throws if sHead is a malformed JSON string.
+     * @throws if supported signature algorithm was not specified in JSON Header.
+     * @deprecated from 3.0.0 please move to {@link KJUR.jws.JWS.sign}
+     */
+    this.generateJWSByNED = function(sHead, sPayload, hN, hE, hD) {
+	if (! this.isSafeJSONString(sHead)) throw "JWS Head is not safe JSON string: " + sHead;
+	var sSI = _getSignatureInputByString(sHead, sPayload);
+	var hSigValue = _jws_generateSignatureValueBySI_NED(sHead, sPayload, sSI, hN, hE, hD);
+	var b64SigValue = hextob64u(hSigValue);
+	
+	this.parsedJWS = {};
+	this.parsedJWS.headB64U = sSI.split(".")[0];
+	this.parsedJWS.payloadB64U = sSI.split(".")[1];
+	this.parsedJWS.sigvalB64U = b64SigValue;
+
+	return sSI + "." + b64SigValue;
+    };
+
+    /**
+     * generate JWS signature by Header, Payload and a RSA private key.<br/>
+     * This only supports "RS256", "RS512", "PS256" and "PS512" algorithms.
+     * @name generateJWSByKey
+     * @memberOf KJUR.jws.JWS
+     * @function
+     * @param {String} sHead string of JWS Header
+     * @param {String} sPayload string of JWS Payload
+     * @param {RSAKey} RSA private key
+     * @return {String} JWS signature string
+     * @throws if sHead is a malformed JSON string.
+     * @throws if supported signature algorithm was not specified in JSON Header.
+     * @deprecated from 3.0.0 please move to {@link KJUR.jws.JWS.sign}
+     */
+    this.generateJWSByKey = function(sHead, sPayload, key) {
+	var obj = {};
+	if (!this.isSafeJSONString(sHead, obj, 'headP'))
+	    throw "JWS Head is not safe JSON string: " + sHead;
+	var sSI = _getSignatureInputByString(sHead, sPayload);
+	var b64SigValue = _jws_generateSignatureValueBySI_Key(sHead, sPayload, sSI, key, obj.headP);
+
+	this.parsedJWS = {};
+	this.parsedJWS.headB64U = sSI.split(".")[0];
+	this.parsedJWS.payloadB64U = sSI.split(".")[1];
+	this.parsedJWS.sigvalB64U = b64SigValue;
+
+	return sSI + "." + b64SigValue;
+    };
+
+    // === sign with PKCS#1 RSA private key =====================================================
+    function _jws_generateSignatureValueBySI_PemPrvKey(sHead, sPayload, sSI, sPemPrvKey) {
+	var rsa = new RSAKey();
+	rsa.readPrivateKeyFromPEMString(sPemPrvKey);
+	var hashAlg = _jws_getHashAlgFromHead(sHead);
+	var sigValue = rsa.signString(sSI, hashAlg);
+	return sigValue;
+    };
+
+    /**
+     * generate JWS signature by Header, Payload and a PEM formatted PKCS#1 RSA private key.<br/>
+     * This only supports "RS256" and "RS512" algorithm.
+     * @name generateJWSByP1PrvKey
+     * @memberOf KJUR.jws.JWS
+     * @function
+     * @param {String} sHead string of JWS Header
+     * @param {String} sPayload string of JWS Payload
+     * @param {String} string for sPemPrvKey PEM formatted PKCS#1 RSA private key<br/>
+     *                 Heading and trailing space characters in PEM key will be ignored.
+     * @return {String} JWS signature string
+     * @throws if sHead is a malformed JSON string.
+     * @throws if supported signature algorithm was not specified in JSON Header.
+     * @since 1.1
+     * @deprecated from 3.0.0 please move to {@link KJUR.jws.JWS.sign}
+     */
+    this.generateJWSByP1PrvKey = function(sHead, sPayload, sPemPrvKey) {
+	if (! this.isSafeJSONString(sHead)) throw "JWS Head is not safe JSON string: " + sHead;
+	var sSI = _getSignatureInputByString(sHead, sPayload);
+	var hSigValue = _jws_generateSignatureValueBySI_PemPrvKey(sHead, sPayload, sSI, sPemPrvKey);
+	var b64SigValue = hextob64u(hSigValue);
+
+	this.parsedJWS = {};
+	this.parsedJWS.headB64U = sSI.split(".")[0];
+	this.parsedJWS.payloadB64U = sSI.split(".")[1];
+	this.parsedJWS.sigvalB64U = b64SigValue;
+
+	return sSI + "." + b64SigValue;
+    };
+};
+
+// === major static method ========================================================
+
+/**
+ * generate JWS signature by specified key<br/>
+ * @name sign
+ * @memberOf KJUR.jws.JWS
+ * @function
+ * @static
+ * @param {String} alg JWS algorithm name to sign and force set to sHead or null 
+ * @param {String} sHead string of JWS Header
+ * @param {String} sPayload string of JWS Payload
+ * @param {String} key string of private key or key object to sign
+ * @param {String} pass (OPTION)passcode to use encrypted private key 
+ * @return {String} JWS signature string
+ * @since jws 3.0.0
+ * @see <a href="http://kjur.github.io/jsrsasign/api/symbols/KJUR.crypto.Signature.html">jsrsasign KJUR.crypto.Signature method</a>
+ * @see <a href="http://kjur.github.io/jsrsasign/api/symbols/KJUR.crypto.Mac.html">jsrsasign KJUR.crypto.Mac method</a>
+ * @description
+ * This method supports following algorithms.
+ * <table>
+ * <tr><th>alg value</th><th>spec requirement</th><th>jsjws support</th></tr>
+ * <tr><td>HS256</td><td>REQUIRED</td><td>SUPPORTED</td></tr>
+ * <tr><td>HS384</td><td>OPTIONAL</td><td>-</td></tr>
+ * <tr><td>HS512</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
+ * <tr><td>RS256</td><td>RECOMMENDED</td><td>SUPPORTED</td></tr>
+ * <tr><td>RS384</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
+ * <tr><td>RS512</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
+ * <tr><td>ES256</td><td>RECOMMENDED+</td><td>SUPPORTED</td></tr>
+ * <tr><td>ES384</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
+ * <tr><td>ES512</td><td>OPTIONAL</td><td>-</td></tr>
+ * <tr><td>PS256</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
+ * <tr><td>PS384</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
+ * <tr><td>PS512</td><td>OPTIONAL</td><td>SUPPORTED</td></tr>
+ * <tr><td>none</td><td>REQUIRED</td><td>SUPPORTED(generation only)</td></tr>
+ * </table>
+ * <dl>
+ * <dt>NOTE1:
+ * <dd>salt length of RSAPSS signature is the same as the hash algorithm length
+ * because of <a href="http://www.ietf.org/mail-archive/web/jose/current/msg02901.html">IETF JOSE ML discussion</a>.
+ * <dt>NOTE2:
+ * <dd>The reason of HS384 unsupport is  
+ * <a href="https://code.google.com/p/crypto-js/issues/detail?id=84">CryptoJS HmacSHA384 bug</a>.
+ * <dt>NOTE3:
+ * <dd>alg=none validation was removed since jsjws 3.1.0.<br/>
+ * </dl>
+ */
+KJUR.jws.JWS.sign = function(alg, sHeader, sPayload, key, pass) {
+    var ns1 = KJUR.jws.JWS;
+
+    if (! ns1.isSafeJSONString(sHeader))
+	throw "JWS Head is not safe JSON string: " + sHead;
+
+    var pHeader = ns1.readSafeJSONString(sHeader);
+
+    // 1. use alg if defined in sHeader
+    if ((alg == '' || alg == null) &&
+	pHeader['alg'] !== undefined) {
+	alg = pHeader['alg'];
+    }
+
+    // 2. set alg in sHeader if undefined
+    if ((alg != '' && alg != null) &&
+	pHeader['alg'] === undefined) {
+	pHeader['alg'] = alg;
+	sHeader = JSON.stringify(pHeader);
+    }
+
+    // 3. set signature algorithm like SHA1withRSA
+    var sigAlg = null;
+    if (ns1.jwsalg2sigalg[alg] === undefined) {
+	throw "unsupported alg name: " + alg;
+    } else {
+	sigAlg = ns1.jwsalg2sigalg[alg];
+    }
+    
+    var uHeader = utf8tob64u(sHeader);
+    var uPayload = utf8tob64u(sPayload);
+    var uSignatureInput = uHeader + "." + uPayload
+    
+    // 4. sign
+    var hSig = "";
+    if (sigAlg.substr(0, 4) == "Hmac") {
+	if (key === undefined)
+	    throw "hexadecimal key shall be specified for HMAC";
+	var mac = new KJUR.crypto.Mac({'alg': sigAlg, 'pass': hextorstr(key)});
+	mac.updateString(uSignatureInput);
+	hSig = mac.doFinal();
+    } else if (sigAlg.indexOf("withECDSA") != -1) {
+	var sig = new KJUR.crypto.Signature({'alg': sigAlg});
+	sig.init(key, pass);
+	sig.updateString(uSignatureInput);
+	hASN1Sig = sig.sign();
+	hSig = KJUR.crypto.ECDSA.asn1SigToConcatSig(hASN1Sig);
+    } else if (sigAlg != "none") {
+	var sig = new KJUR.crypto.Signature({'alg': sigAlg});
+	sig.init(key, pass);
+	sig.updateString(uSignatureInput);
+	hSig = sig.sign();
+    }
+
+    var uSig = hextob64u(hSig);
+    return uSignatureInput + "." + uSig;
+};
+
+/**
+ * verify JWS signature by specified key or certificate<br/>
+ * @name verify
+ * @memberOf KJUR.jws.JWS
+ * @function
+ * @static
+ * @param {String} sJWS string of JWS signature to verify
+ * @param {String} key string of public key, certificate or key object to verify
+ * @return {Boolean} true if the signature is valid otherwise false
+ * @since jws 3.0.0
+ * @see <a href="http://kjur.github.io/jsrsasign/api/symbols/KJUR.crypto.Signature.html">jsrsasign KJUR.crypto.Signature method</a>
+ * @see <a href="http://kjur.github.io/jsrsasign/api/symbols/KJUR.crypto.Mac.html">jsrsasign KJUR.crypto.Mac method</a>
+ * @description
+ * This method verifies a JSON Web Signature Compact Serialization string by the validation 
+ * algorithm as described in 
+ * <a href="http://self-issued.info/docs/draft-jones-json-web-signature-04.html#anchor5">
+ * the section 5 of Internet Draft draft-jones-json-web-signature-04.</a>
+ * <br/>
+ * NOTE: alg=none validation was removed since jsjws 3.1.0.<br/>
+ */
+KJUR.jws.JWS.verify = function(sJWS, key) {
+    var jws = KJUR.jws.JWS;
+    var a = sJWS.split(".");
+    var uHeader = a[0];
+    var uPayload = a[1];
+    var uSignatureInput = uHeader + "." + uPayload;
+    var hSig = b64utohex(a[2]);
+
+    var pHeader = jws.readSafeJSONString(b64utoutf8(a[0]));
+    var alg = null;
+    if (pHeader.alg === undefined) {
+	throw "algorithm not specified in header";
+    } else {
+	alg = pHeader.alg;
+    }
+
+    var sigAlg = null;
+    if (jws.jwsalg2sigalg[pHeader.alg] === undefined) {
+	throw "unsupported alg name: " + alg;
+    } else {
+	sigAlg = jws.jwsalg2sigalg[alg];
+    }
+
+    // x. verify
+    if (sigAlg == "none") {
+        throw "not supported";
+    } else if (sigAlg.substr(0, 4) == "Hmac") {
+	if (key === undefined)
+	    throw "hexadecimal key shall be specified for HMAC";
+	var mac = new KJUR.crypto.Mac({'alg': sigAlg, 'pass': hextorstr(key)});
+	mac.updateString(uSignatureInput);
+	hSig2 = mac.doFinal();
+	return hSig == hSig2;
+    } else if (sigAlg.indexOf("withECDSA") != -1) {
+	var hASN1Sig = null;
+        try {
+	    hASN1Sig = KJUR.crypto.ECDSA.concatSigToASN1Sig(hSig);
+	} catch (ex) {
+	    return false;
+	}
+	var sig = new KJUR.crypto.Signature({'alg': sigAlg});
+	sig.init(key)
+	sig.updateString(uSignatureInput);
+	return sig.verify(hASN1Sig);
+    } else {
+	var sig = new KJUR.crypto.Signature({'alg': sigAlg});
+	sig.init(key)
+	sig.updateString(uSignatureInput);
+	return sig.verify(hSig);
+    }
+};
+
+/*
+ * @since jws 3.0.0
+ */
+KJUR.jws.JWS.jwsalg2sigalg = {
+    "HS256":	"HmacSHA256",
+    //"HS384":	"HmacSHA384", // unsupported because of CryptoJS bug
+    "HS512":	"HmacSHA512",
+    "RS256":	"SHA256withRSA",
+    "RS384":	"SHA384withRSA",
+    "RS512":	"SHA512withRSA",
+    "ES256":	"SHA256withECDSA",
+    "ES384":	"SHA384withECDSA",
+    //"ES512":	"SHA512withECDSA", // unsupported because of jsrsasign's bug
+    "PS256":	"SHA256withRSAandMGF1",
+    "PS384":	"SHA384withRSAandMGF1",
+    "PS512":	"SHA512withRSAandMGF1",
+    "none":	"none",
+};
+
+// === utility static method ======================================================
+
+/**
+ * check whether a String "s" is a safe JSON string or not.<br/>
+ * If a String "s" is a malformed JSON string or an other object type
+ * this returns 0, otherwise this returns 1.
+ * @name isSafeJSONString
+ * @memberOf KJUR.jws.JWS
+ * @function
+ * @static
+ * @param {String} s JSON string
+ * @return {Number} 1 or 0
+ */
+KJUR.jws.JWS.isSafeJSONString = function(s, h, p) {
+    var o = null;
+    try {
+	o = jsonParse(s);
+	if (typeof o != "object") return 0;
+	if (o.constructor === Array) return 0;
+	if (h) h[p] = o;
+	return 1;
+    } catch (ex) {
+	return 0;
+    }
+};
+
+/**
+ * read a String "s" as JSON object if it is safe.<br/>
+ * If a String "s" is a malformed JSON string or not JSON string,
+ * this returns null, otherwise returns JSON object.
+ * @name readSafeJSONString
+ * @memberOf KJUR.jws.JWS
+ * @function
+ * @static
+ * @param {String} s JSON string
+ * @return {Object} JSON object or null
+ * @since 1.1.1
+ */
+KJUR.jws.JWS.readSafeJSONString = function(s) {
+    var o = null;
+    try {
+	o = jsonParse(s);
+	if (typeof o != "object") return null;
+	if (o.constructor === Array) return null;
+	return o;
+    } catch (ex) {
+	return null;
+    }
+};
+
+/**
+ * get Encoed Signature Value from JWS string.<br/>
+ * @name getEncodedSignatureValueFromJWS
+ * @memberOf KJUR.jws.JWS
+ * @function
+ * @static
+ * @param {String} sJWS JWS signature string to be verified
+ * @return {String} string of Encoded Signature Value 
+ * @throws if sJWS is not comma separated string such like "Header.Payload.Signature".
+ */
+KJUR.jws.JWS.getEncodedSignatureValueFromJWS = function(sJWS) {
+    if (sJWS.match(/^[^.]+\.[^.]+\.([^.]+)$/) == null) {
+	throw "JWS signature is not a form of 'Head.Payload.SigValue'.";
+    }
+    return RegExp.$1;
+};
+
+/**
+ * IntDate class for time representation for JSON Web Token(JWT)
+ * @class KJUR.jws.IntDate class
+ * @name KJUR.jws.IntDate
+ * @since jws 3.0.1
+ * @description
+ * Utility class for IntDate which is integer representation of UNIX origin time
+ * used in JSON Web Token(JWT).
+ */
+KJUR.jws.IntDate = function() {
+};
+
+/**
+ * @name get
+ * @memberOf KJUR.jws.IntDate
+ * @function
+ * @static
+ * @param {String} s string of time representation
+ * @return {Integer} UNIX origin time in seconds for argument 's'
+ * @since jws 3.0.1
+ * @throws "unsupported format: s" when malformed format
+ * @description
+ * This method will accept following representation of time.
+ * <ul>
+ * <li>now - current time</li>
+ * <li>now + 1hour - after 1 hour from now</li>
+ * <li>now + 1day - after 1 day from now</li>
+ * <li>now + 1month - after 30 days from now</li>
+ * <li>now + 1year - after 365 days from now</li>
+ * <li>YYYYmmDDHHMMSSZ - UTC time (ex. 20130828235959Z)</li>
+ * <li>number - UNIX origin time (seconds from 1970-01-01 00:00:00) (ex. 1377714748)</li>
+ * </ul>
+ */
+KJUR.jws.IntDate.get = function(s) {
+    if (s == "now") {
+	return KJUR.jws.IntDate.getNow();
+    } else if (s == "now + 1hour") {
+	return KJUR.jws.IntDate.getNow() + 60 * 60;
+    } else if (s == "now + 1day") {
+	return KJUR.jws.IntDate.getNow() + 60 * 60 * 24;
+    } else if (s == "now + 1month") {
+	return KJUR.jws.IntDate.getNow() + 60 * 60 * 24 * 30;
+    } else if (s == "now + 1year") {
+	return KJUR.jws.IntDate.getNow() + 60 * 60 * 24 * 365;
+    } else if (s.match(/Z$/)) {
+	return KJUR.jws.IntDate.getZulu(s);
+    } else if (s.match(/^[0-9]+$/)) {
+	return parseInt(s);
+    }
+    throw "unsupported format: " + s;
+};
+
+KJUR.jws.IntDate.getZulu = function(s) {
+    if (a = s.match(/(\d{4})(\d\d)(\d\d)(\d\d)(\d\d)(\d\d)Z/)) {
+	var year = parseInt(RegExp.$1);
+	var month = parseInt(RegExp.$2) - 1;
+	var day = parseInt(RegExp.$3);
+	var hour = parseInt(RegExp.$4);
+	var min = parseInt(RegExp.$5);
+	var sec = parseInt(RegExp.$6);
+	var d = new Date(Date.UTC(year, month, day, hour, min, sec));
+	return ~~(d / 1000);
+    }
+    throw "unsupported format: " + s;
+};
+
+/*
+ * @since jws 3.0.1
+ */
+KJUR.jws.IntDate.getNow = function() {
+    var d = ~~(new Date() / 1000);
+    return d;
+};
+
+/*
+ * @since jws 3.0.1
+ */
+KJUR.jws.IntDate.intDate2UTCString = function(intDate) {
+    var d = new Date(intDate * 1000);
+    return d.toUTCString();
+};
+
+/*
+ * @since jws 3.0.1
+ */
+KJUR.jws.IntDate.intDate2Zulu = function(intDate) {
+    var d = new Date(intDate * 1000);
+    var year = ("0000" + d.getUTCFullYear()).slice(-4);    
+    var mon =  ("00" + (d.getUTCMonth() + 1)).slice(-2);    
+    var day =  ("00" + d.getUTCDate()).slice(-2);    
+    var hour = ("00" + d.getUTCHours()).slice(-2);    
+    var min =  ("00" + d.getUTCMinutes()).slice(-2);    
+    var sec =  ("00" + d.getUTCSeconds()).slice(-2);    
+    return year + mon + day + hour + min + sec + "Z";
+};
diff --git a/jws-3.1.min.js b/jws-3.1.min.js
new file mode 100755
index 0000000..b2ef9bf
--- /dev/null
+++ b/jws-3.1.min.js
@@ -0,0 +1,3 @@
+/*! jws-3.1.0 (c) 2013 Kenji Urushima | kjur.github.com/jsjws/license
+ */
+if(typeof KJUR=="undefined"||!KJUR){KJUR={}}if(typeof KJUR.jws=="undefined"||!KJUR.jws){KJUR.jws={}}KJUR.jws.JWS=function(){this.parseJWS=function(n,p){if((this.parsedJWS!==undefined)&&(p||(this.parsedJWS.sigvalH!==undefined))){return}if(n.match(/^([^.]+)\.([^.]+)\.([^.]+)$/)==null){throw"JWS signature is not a form of 'Head.Payload.SigValue'."}var q=RegExp.$1;var l=RegExp.$2;var r=RegExp.$3;var t=q+"."+l;this.parsedJWS={};this.parsedJWS.headB64U=q;this.parsedJWS.payloadB64U=l;this.parsedJWS.sigvalB64U=r;this.parsedJWS.si=t;if(!p){var o=b64utohex(r);var m=parseBigInt(o,16);this.parsedJWS.sigvalH=o;this.parsedJWS.sigvalBI=m}var k=b64utoutf8(q);var s=b64utoutf8(l);this.parsedJWS.headS=k;this.parsedJWS.payloadS=s;if(!this.isSafeJSONString(k,this.parsedJWS,"headP")){throw"malformed JSON string for JWS Head: "+k}};function b(l,k){return utf8tob64u(l)+"."+utf8tob64u(k)}function f(m,l){var k=function(n){return KJUR.crypto.Util.hashString(n,l)};if(k==null){throw"hash function not defined in jsrsasign: "+l}return k(m)}function h(q,n,k,o,m){var p=b(q,n);var l=parseBigInt(k,16);return _rsasign_verifySignatureWithArgs(p,l,o,m)}this.verifyJWSByNE=function(m,l,k){this.parseJWS(m);return _rsasign_verifySignatureWithArgs(this.parsedJWS.si,this.parsedJWS.sigvalBI,l,k)};this.verifyJWSByKey=function(n,m){this.parseJWS(n);var k=c(this.parsedJWS.headP);var l=this.parsedJWS.headP.alg.substr(0,2)=="PS";if(m.hashAndVerify){return m.hashAndVerify(k,new Buffer(this.parsedJWS.si,"utf8").toString("base64"),b64utob64(this.parsedJWS.sigvalB64U),"base64",l)}else{if(l){return m.verifyStringPSS(this.parsedJWS.si,this.parsedJWS.sigvalH,k)}else{return m.verifyString(this.parsedJWS.si,this.parsedJWS.sigvalH)}}};this.verifyJWSByPemX509Cert=function(m,k){this.parseJWS(m);var l=new X509();l.readCertPEM(k);return l.subjectPublicKeyRSA.verifyString(this.parsedJWS.si,this.parsedJWS.sigvalH)};function c(l){var m=l.alg;var k="";if(m!="RS256"&&m!="RS512"&&m!="PS256"&&m!="PS512"){throw"JWS signature algorithm not supported: "+m}if(m.substr(2)=="256"){k="sha256"}if(m.substr(2)=="512"){k="sha512"}return k}function e(k){return c(jsonParse(k))}function j(k,p,s,m,q,r){var n=new RSAKey();n.setPrivate(m,q,r);var l=e(k);var o=n.signString(s,l);return o}function i(q,p,o,n,m){var k=null;if(typeof m=="undefined"){k=e(q)}else{k=c(m)}var l=m.alg.substr(0,2)=="PS";if(n.hashAndSign){return b64tob64u(n.hashAndSign(k,o,"binary","base64",l))}else{if(l){return hextob64u(n.signStringPSS(o,k))}else{return hextob64u(n.signString(o,k))}}}function g(p,m,o,l,n){var k=b(p,m);return j(p,m,k,o,l,n)}this.generateJWSByNED=function(r,n,q,m,p){if(!this.isSafeJSONString(r)){throw"JWS Head is not safe JSON string: "+r}var l=b(r,n);var o=j(r,n,l,q,m,p);var k=hextob64u(o);this.parsedJWS={};this.parsedJWS.headB64U=l.split(".")[0];this.parsedJWS.payloadB64U=l.split(".")[1];this.parsedJWS.sigvalB64U=k;return l+"."+k};this.generateJWSByKey=function(p,n,k){var o={};if(!this.isSafeJSONString(p,o,"headP")){throw"JWS Head is not safe JSON string: "+p}var m=b(p,n);var l=i(p,n,m,k,o.headP);this.parsedJWS={};this.parsedJWS.headB64U=m.split(".")[0];this.parsedJWS.payloadB64U=m.split(".")[1];this.parsedJWS.sigvalB64U=l;return m+"."+l};function d(q,p,o,l){var n=new RSAKey();n.readPrivateKeyFromPEMString(l);var k=e(q);var m=n.signString(o,k);return m}this.generateJWSByP1PrvKey=function(p,n,k){if(!this.isSafeJSONString(p)){throw"JWS Head is not safe JSON string: "+p}var m=b(p,n);var o=d(p,n,m,k);var l=hextob64u(o);this.parsedJWS={};this.parsedJWS.headB64U=m.split(".")[0];this.parsedJWS.payloadB64U=m.split(".")[1];this.parsedJWS.sigvalB64U=l;return m+"."+l}};KJUR.jws.JWS.sign=function(b,p,i,l,k){var j=KJUR.jws.JWS;if(!j.isSafeJSONString(p)){throw"JWS Head is not safe JSON string: "+sHead}var e=j.readSafeJSONString(p);if((b==""||b==null)&&e.alg!==undefined){b=e.alg}if((b!=""&&b!=null)&&e.alg===undefined){e.alg=b;p=JSON.stringify(e)}var d=null;if(j.jwsalg2sigalg[b]===undefined){throw"unsupported alg name: "+b}else{d=j.jwsalg2sigalg[b]}var c=utf8tob64u(p);var g=utf8tob64u(i);var n=c+"."+g;var m="";if(d.substr(0,4)=="Hmac"){if(l===undefined){throw"hexadecimal key shall be specified for HMAC"}var h=new KJUR.crypto.Mac({alg:d,pass:hextorstr(l)});h.updateString(n);m=h.doFinal()}else{if(d.indexOf("withECDSA")!=-1){var o=new KJUR.crypto.Signature({alg:d});o.init(l,k);o.updateString(n);hASN1Sig=o.sign();m=KJUR.crypto.ECDSA.asn1SigToConcatSig(hASN1Sig)}else{if(d!="none"){var o=new KJUR.crypto.Signature({alg:d});o.init(l,k);o.updateString(n);m=o.sign()}}}var f=hextob64u(m);return n+"."+f};KJUR.jws.JWS.verify=function(d,m){var k=KJUR.jws.JWS;var l=d.split(".");var c=l[0];var h=l[1];var o=c+"."+h;var n=b64utohex(l[2]);var f=k.readSafeJSONString(b64utoutf8(l[0]));var b=null;if(f.alg===undefined){throw"algorithm not specified in header"}else{b=f.alg}var e=null;if(k.jwsalg2sigalg[f.alg]===undefined){throw"unsupported alg name: "+b}else{e=k.jwsalg2sigalg[b]}if(e=="none"){throw"not supported"}else{if(e.substr(0,4)=="Hmac"){if(m===undefined){throw"hexadecimal key shall be specified for HMAC"}var j=new KJUR.crypto.Mac({alg:e,pass:hextorstr(m)});j.updateString(o);hSig2=j.doFinal();return n==hSig2}else{if(e.indexOf("withECDSA")!=-1){var g=null;try{g=KJUR.crypto.ECDSA.concatSigToASN1Sig(n)}catch(i){return false}var p=new KJUR.crypto.Signature({alg:e});p.init(m);p.updateString(o);return p.verify(g)}else{var p=new KJUR.crypto.Signature({alg:e});p.init(m);p.updateString(o);return p.verify(n)}}}};KJUR.jws.JWS.jwsalg2sigalg={HS256:"HmacSHA256",HS512:"HmacSHA512",RS256:"SHA256withRSA",RS384:"SHA384withRSA",RS512:"SHA512withRSA",ES256:"SHA256withECDSA",ES384:"SHA384withECDSA",PS256:"SHA256withRSAandMGF1",PS384:"SHA384withRSAandMGF1",PS512:"SHA512withRSAandMGF1",none:"none",};KJUR.jws.JWS.isSafeJSONString=function(d,c,e){var f=null;try{f=jsonParse(d);if(typeof f!="object"){return 0}if(f.constructor===Array){return 0}if(c){c[e]=f}return 1}catch(b){return 0}};KJUR.jws.JWS.readSafeJSONString=function(c){var d=null;try{d=jsonParse(c);if(typeof d!="object"){return null}if(d.constructor===Array){return null}return d}catch(b){return null}};KJUR.jws.JWS.getEncodedSignatureValueFromJWS=function(b){if(b.match(/^[^.]+\.[^.]+\.([^.]+)$/)==null){throw"JWS signature is not a form of 'Head.Payload.SigValue'."}return RegExp.$1};KJUR.jws.IntDate=function(){};KJUR.jws.IntDate.get=function(b){if(b=="now"){return KJUR.jws.IntDate.getNow()}else{if(b=="now + 1hour"){return KJUR.jws.IntDate.getNow()+60*60}else{if(b=="now + 1day"){return KJUR.jws.IntDate.getNow()+60*60*24}else{if(b=="now + 1month"){return KJUR.jws.IntDate.getNow()+60*60*24*30}else{if(b=="now + 1year"){return KJUR.jws.IntDate.getNow()+60*60*24*365}else{if(b.match(/Z$/)){return KJUR.jws.IntDate.getZulu(b)}else{if(b.match(/^[0-9]+$/)){return parseInt(b)}}}}}}}throw"unsupported format: "+b};KJUR.jws.IntDate.getZulu=function(h){if(a=h.match(/(\d{4})(\d\d)(\d\d)(\d\d)(\d\d)(\d\d)Z/)){var g=parseInt(RegExp.$1);var i=parseInt(RegExp.$2)-1;var c=parseInt(RegExp.$3);var b=parseInt(RegExp.$4);var e=parseInt(RegExp.$5);var f=parseInt(RegExp.$6);var j=new Date(Date.UTC(g,i,c,b,e,f));return ~~(j/1000)}throw"unsupported format: "+h};KJUR.jws.IntDate.getNow=function(){var b=~~(new Date()/1000);return b};KJUR.jws.IntDate.intDate2UTCString=function(b){var c=new Date(b*1000);return c.toUTCString()};KJUR.jws.IntDate.intDate2Zulu=function(f){var j=new Date(f*1000);var i=("0000"+j.getUTCFullYear()).slice(-4);var h=("00"+(j.getUTCMonth()+1)).slice(-2);var c=("00"+j.getUTCDate()).slice(-2);var b=("00"+j.getUTCHours()).slice(-2);var e=("00"+j.getUTCMinutes()).slice(-2);var g=("00"+j.getUTCSeconds()).slice(-2);return i+h+c+b+e+g+"Z"};
\ No newline at end of file
diff --git a/sample_generate.html b/sample_generate.html
index 4cc31ec..e0deb5c 100644
--- a/sample_generate.html
+++ b/sample_generate.html
@@ -20,7 +20,7 @@
 <script language="JavaScript" type="text/javascript" src="http://kjur.github.io/jsrsasign/base64x-1.1.js"></script>
 
 <script language="JavaScript" type="text/javascript" src="ext/json-sans-eval.js"></script>
-<script language="JavaScript" type="text/javascript" src="jws-2.0.js"></script>
+<script language="JavaScript" type="text/javascript" src="jws-3.1.js"></script>
 
 <style type="text/css">
 TD  {vertical-align: top; border: solid 1px #000000; }
diff --git a/sample_generate2.html b/sample_generate2.html
index 78babdd..6b5a273 100644
--- a/sample_generate2.html
+++ b/sample_generate2.html
@@ -20,7 +20,7 @@
 <script language="JavaScript" type="text/javascript" src="http://kjur.github.io/jsrsasign/base64x-1.1.js"></script>
 
 <script language="JavaScript" type="text/javascript" src="ext/json-sans-eval.js"></script>
-<script language="JavaScript" type="text/javascript" src="jws-2.0.js"></script>
+<script language="JavaScript" type="text/javascript" src="jws-3.1.js"></script>
 
 <style type="text/css">
 TD  {vertical-align: top; border: solid 1px #000000; }
diff --git a/sample_generate3.html b/sample_generate3.html
index d4a70e2..cfdcf8d 100755
--- a/sample_generate3.html
+++ b/sample_generate3.html
@@ -20,7 +20,7 @@
 <script language="JavaScript" type="text/javascript" src="http://kjur.github.io/jsrsasign/rsasign-1.2.js"></script>
 
 <script language="JavaScript" type="text/javascript" src="ext/json-sans-eval.js"></script>
-<script language="JavaScript" type="text/javascript" src="jws-2.0.js"></script>
+<script language="JavaScript" type="text/javascript" src="jws-3.1.js"></script>
 
 <style type="text/css">
 TD  {vertical-align: top; border: solid 1px #000000; }
diff --git a/sample_jwsjsgen1.html b/sample_jwsjsgen1.html
index 024848d..5d7e093 100644
--- a/sample_jwsjsgen1.html
+++ b/sample_jwsjsgen1.html
@@ -20,7 +20,7 @@
 <script language="JavaScript" type="text/javascript" src="http://kjur.github.io/jsrsasign/base64x-1.1.js"></script>
 
 <script language="JavaScript" type="text/javascript" src="ext/json-sans-eval.js"></script>
-<script language="JavaScript" type="text/javascript" src="jws-2.0.js"></script>
+<script language="JavaScript" type="text/javascript" src="jws-3.1.js"></script>
 <script language="JavaScript" type="text/javascript" src="jwsjs-2.0.js"></script>
 <style type="text/css">
 TD  {vertical-align: top; border: solid 1px #000000; }
diff --git a/sample_jwsjsgen2.html b/sample_jwsjsgen2.html
index 8557318..8efa0ca 100644
--- a/sample_jwsjsgen2.html
+++ b/sample_jwsjsgen2.html
@@ -20,7 +20,7 @@
 <script language="JavaScript" type="text/javascript" src="http://kjur.github.io/jsrsasign/base64x-1.1.js"></script>
 
 <script language="JavaScript" type="text/javascript" src="ext/json-sans-eval.js"></script>
-<script language="JavaScript" type="text/javascript" src="jws-2.0.js"></script>
+<script language="JavaScript" type="text/javascript" src="jws-3.1.js"></script>
 <script language="JavaScript" type="text/javascript" src="jwsjs-2.0.js"></script>
 
 <style type="text/css">
diff --git a/sample_jwsjsveri1.html b/sample_jwsjsveri1.html
index c844042..7dce79c 100644
--- a/sample_jwsjsveri1.html
+++ b/sample_jwsjsveri1.html
@@ -20,7 +20,7 @@
 <script language="JavaScript" type="text/javascript" src="http://kjur.github.io/jsrsasign/base64x-1.1.js"></script>
 
 <script language="JavaScript" type="text/javascript" src="ext/json-sans-eval.js"></script>
-<script language="JavaScript" type="text/javascript" src="jws-2.0.js"></script>
+<script language="JavaScript" type="text/javascript" src="jws-3.1.js"></script>
 <script language="JavaScript" type="text/javascript" src="jwsjs-2.0.js"></script>
 
 <style type="text/css">
diff --git a/sample_verify.html b/sample_verify.html
index 6ef87de..8ff0955 100644
--- a/sample_verify.html
+++ b/sample_verify.html
@@ -20,7 +20,7 @@
 <script language="JavaScript" type="text/javascript" src="http://kjur.github.io/jsrsasign/base64x-1.1.js"></script>
 
 <script language="JavaScript" type="text/javascript" src="ext/json-sans-eval.js"></script>
-<script language="JavaScript" type="text/javascript" src="jws-2.0.js"></script>
+<script language="JavaScript" type="text/javascript" src="jws-3.1.js"></script>
 
 <style type="text/css">
 TD  {vertical-align: top; border: solid 1px #000000; }
diff --git a/sample_verify2.html b/sample_verify2.html
index 329f1ac..6f8f309 100644
--- a/sample_verify2.html
+++ b/sample_verify2.html
@@ -20,7 +20,7 @@
 <script language="JavaScript" type="text/javascript" src="http://kjur.github.io/jsrsasign/base64x-1.1.js"></script>
 
 <script language="JavaScript" type="text/javascript" src="ext/json-sans-eval.js"></script>
-<script language="JavaScript" type="text/javascript" src="jws-2.0.js"></script>
+<script language="JavaScript" type="text/javascript" src="jws-3.1.js"></script>
 
 <style type="text/css">
 TD  {vertical-align: top; border: solid 1px #000000; }
diff --git a/sample_verify3.html b/sample_verify3.html
index 2e28079..0c39b1e 100755
--- a/sample_verify3.html
+++ b/sample_verify3.html
@@ -20,7 +20,7 @@
 <script language="JavaScript" type="text/javascript" src="http://kjur.github.io/jsrsasign/rsasign-1.2.js"></script>
 
 <script language="JavaScript" type="text/javascript" src="ext/json-sans-eval.js"></script>
-<script language="JavaScript" type="text/javascript" src="jws-2.0.js"></script>
+<script language="JavaScript" type="text/javascript" src="jws-3.1.js"></script>
 
 <style type="text/css">
 TD  {vertical-align: top; border: solid 1px #000000; }
diff --git a/tool_jwt.html b/tool_jwt.html
index 6e9a894..8f0283c 100755
--- a/tool_jwt.html
+++ b/tool_jwt.html
@@ -9,7 +9,7 @@
 
 <script language="JavaScript" type="text/javascript" src="http://kjur.github.io/jsrsasign/jsrsasign-4.1.4-all-min.js"></script>
 <script language="JavaScript" type="text/javascript" src="ext/json-sans-eval-min.js"></script>
-<script language="JavaScript" type="text/javascript" src="jws-3.0.min.js"></script>
+<script language="JavaScript" type="text/javascript" src="jws-3.1.js"></script>
 
 <script language="JavaScript" type="text/javascript">
 function _doVerify() {
@@ -100,17 +100,18 @@
     case 0: _setKey('', ''); break;
     case 1: _setKey('616161', ''); break;
     case 2: _setKey('616161', ''); break;
-    case 3: _setKey(z4PrvP5EPem, z4PrvP5EPass); break;
+    case 3: _setKey('616161', ''); break;
     case 4: _setKey(z4PrvP5EPem, z4PrvP5EPass); break;
     case 5: _setKey(z4PrvP5EPem, z4PrvP5EPass); break;
-    case 6: _setKey(k1PrvP8PPem, ''); break;
-    case 7: _setKey(k6PrvP8PPem, ''); break;
-    case 8: _setKey(z4PrvP5EPem, z4PrvP5EPass); break;
+    case 6: _setKey(z4PrvP5EPem, z4PrvP5EPass); break;
+    case 7: _setKey(k1PrvP8PPem, ''); break;
+    case 8: _setKey(k6PrvP8PPem, ''); break;
     case 9: _setKey(z4PrvP5EPem, z4PrvP5EPass); break;
     case 10: _setKey(z4PrvP5EPem, z4PrvP5EPass); break;
-    case 11: _setKey(z4PrvP5PPem, ''); break;
-    case 12: _setKey(z4PrvP8PPem, ''); break;
-    case 13: _setKey(z4PrvP8EPem, z4PrvP8EPass); break;
+    case 11: _setKey(z4PrvP5EPem, z4PrvP5EPass); break;
+    case 12: _setKey(z4PrvP5PPem, ''); break;
+    case 13: _setKey(z4PrvP8PPem, ''); break;
+    case 14: _setKey(z4PrvP8EPem, z4PrvP8EPass); break;
   }
 }
 
@@ -392,11 +393,12 @@ <h4>(Step2) Choose issuer key and JWS signing algorithm.</h4>
 <select name="alg1" onChange="_setAlg()">
 <option value="none" selected/> none (no signature)
 <option value="HS256"/> HS256 (HmacSHA256) with default shared key
+<option value="HS384"/> HS384 (HmacSHA384) with default shared key
 <option value="HS512"/> HS512 (HmacSHA512) with default shared key
 <option value="RS256"/> RS256 (SHA256withRSA RSA2048bit:z4) with default private key
 <option value="RS384"/> RS384 (SHA384withRSA RSA2048bit:z4) with default private key
 <option value="RS512"/> RS512 (SHA512withRSA RSA2048bit:z4) with default private key
-<option value="ES256"/> ES256 (SHA256withECDSA NIST P-256) with default private key
+<option value="ES256"/> ES256 (SHA256withECDSA NIST P-256:k6) with default private key
 <option value="ES384"/> ES384 (SHA384withECDSA NIST P-384) with default private key
 <option value="PS256"/> PS256 (SHA256withRSAandMGF1 RSA2048bit:z4) with default private key
 <option value="PS384"/> PS384 (SHA384withRSAandMGF1 RSA2048bit:z4) with default private key
diff --git a/tool_verifyanalyze.html b/tool_verifyanalyze.html
index ad1d2a0..742818e 100755
--- a/tool_verifyanalyze.html
+++ b/tool_verifyanalyze.html
@@ -25,7 +25,7 @@
     <script language="JavaScript" type="text/javascript" src="http://kjur.github.io/jsrsasign/base64x-1.1.js"></script>
 
     <script language="JavaScript" type="text/javascript" src="ext/json-sans-eval.js"></script>
-    <script language="JavaScript" type="text/javascript" src="jws-2.0.js"></script>
+    <script language="JavaScript" type="text/javascript" src="jws-3.1.js"></script>
     <script language="JavaScript" type="text/javascript">
 function doVerify() {
   var sJWS = document.form1.jws1.value;