renamed JWT claims according to Cryptomator's vault config specification

Author: overheadhunter

src/main/java/org/cryptomator/cloudaccess/CloudAccess.java

@@ -73,8 +73,8 @@ private static void verifyVaultFormat8GCMConfig(CloudProvider cloudProvider, Clo
 		var vaultConfigPath = pathToVault.resolve("vaultconfig.jwt");
 		var algorithm = Algorithm.HMAC256(rawKey);
 		var verifier = JWT.require(algorithm)
-				.withClaim("version", 8)
-				.withClaim("ciphermode", "SIV_GCM")
+				.withClaim("format", 8)
+				.withClaim("cipherCombo", "SIV_GCM")
 				.build();
 
 		var read = cloudProvider.read(vaultConfigPath, ProgressListener.NO_PROGRESS_AWARE);
@@ -85,7 +85,7 @@ private static void verifyVaultFormat8GCMConfig(CloudProvider cloudProvider, Clo
 		} catch (SignatureVerificationException e) {
 			throw new VaultKeyVerificationFailedException(e);
 		} catch (JWTVerificationException e) {
-			if (e.getMessage().equals("The Claim 'version' value doesn't match the required one.")) {
+			if (e.getMessage().equals("The Claim 'format' value doesn't match the required one.")) {
 				throw new VaultVersionVerificationFailedException(e);
 			} else {
 				throw new VaultVerificationFailedException(e);

src/test/java/org/cryptomator/cloudaccess/vaultformat8/VaultFormat8IntegrationTest.java

@@ -76,8 +76,8 @@ public void testInstantiateFormat8GCMCloudAccessWithWrongVaultVersion() {
 		Algorithm algorithm = Algorithm.HMAC256(masterkey);
 		var token = JWT.create()
 				.withJWTId(UUID.randomUUID().toString())
-				.withClaim("version", 9)
-				.withClaim("ciphermode", "SIV_GCM")
+				.withClaim("format", 9)
+				.withClaim("cipherCombo", "SIV_GCM")
 				.sign(algorithm);
 		var in = new ByteArrayInputStream(token.getBytes(StandardCharsets.US_ASCII));
 		localProvider.write(CloudPath.of("/vaultconfig.jwt"), false, in, in.available(), Optional.empty(), ProgressListener.NO_PROGRESS_AWARE).toCompletableFuture().join();
@@ -92,8 +92,8 @@ public void testInstantiateFormat8GCMCloudAccessWithWrongCiphermode() {
 		Algorithm algorithm = Algorithm.HMAC256(masterkey);
 		var token = JWT.create()
 				.withJWTId(UUID.randomUUID().toString())
-				.withClaim("version", 8)
-				.withClaim("ciphermode", "FOO")
+				.withClaim("format", 8)
+				.withClaim("cipherCombo", "FOO")
 				.sign(algorithm);
 		var in = new ByteArrayInputStream(token.getBytes(StandardCharsets.US_ASCII));
 		localProvider.write(CloudPath.of("/vaultconfig.jwt"), false, in, in.available(), Optional.empty(), ProgressListener.NO_PROGRESS_AWARE).toCompletableFuture().join();
@@ -109,8 +109,8 @@ public void testInstantiateFormat8GCMCloudAccessWithWrongKey() {
 		Algorithm algorithm = Algorithm.HMAC256(masterkey);
 		var token = JWT.create()
 				.withJWTId(UUID.randomUUID().toString())
-				.withClaim("version", 8)
-				.withClaim("ciphermode", "FOO")
+				.withClaim("format", 8)
+				.withClaim("cipherCombo", "FOO")
 				.sign(algorithm);
 		var in = new ByteArrayInputStream(token.getBytes(StandardCharsets.US_ASCII));
 		localProvider.write(CloudPath.of("/vaultconfig.jwt"), false, in, in.available(), Optional.empty(), ProgressListener.NO_PROGRESS_AWARE).toCompletableFuture().join();

src/test/resources/vaultconfig.jwt

@@ -1 +1 @@
-eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJjaXBoZXJtb2RlIjoiU0lWX0dDTSIsInZlcnNpb24iOjgsImp0aSI6IjQwNDJiMTk5LTg5ZmItNDA1NC05NDJlLTc0MjEyODBjOTY1OSJ9.b_5phqmQogpsnVeU4tAcug2zuvh37XcYxieBK-L6ZTE
+eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJjaXBoZXJDb21ibyI6IlNJVl9HQ00iLCJmb3JtYXQiOjgsImp0aSI6IjExMTExMTExLTIyMjItMzMzMy00NDQ0LTU1NTU1NTU1NTU1NSJ9.3vSf-eTUoJU8AppBc_sn1TEiGhnUn3Ds_4qT9L0sQ6o