rsassa-pss_example.js

var forge = require('node-forge');
console.log('start');
var rsa = forge.pki.rsa;

console.log('gen..');
// generate an RSA key pair synchronously
var keypair = rsa.generateKeyPair({bits: 2048, e: 0x10001});
var privateKey = keypair.privateKey;
var publicKey = keypair.publicKey;
console.log('hash');
var md = forge.md.sha256.create();
md.update('sign this', 'utf8');

console.log('pss');
var pss = forge.pss.create({
  md: forge.md.sha1.create(),
  mgf: forge.mgf.mgf1.create(forge.md.sha1.create()),
  saltLength: 20
  // optionally pass 'prng' with a custom PRNG implementation
  // optionalls pass 'salt' with a forge.util.ByteBuffer w/custom salt
});

console.log('sign');
var signature = privateKey.sign(md, pss);

console.log('verify pss');
// verify RSASSA-PSS signature
var pss = forge.pss.create({
  md: forge.md.sha1.create(),
  mgf: forge.mgf.mgf1.create(forge.md.sha1.create()),
  saltLength: 20
  // optionally pass 'prng' with a custom PRNG implementation
});

console.log('verify hash');
var md = forge.md.sha256.create();
md.update('sign this', 'utf8');
var verified = publicKey.verify(md.digest().getBytes(), signature, pss);
 
console.log(signature);
console.log(verified);
console.log(pss);