Sample code for 30+ languages & platforms
Delphi DLL

Duplicate Java Secure Token Creation

See more RSA Examples

Demonstrates how to duplicate some Java code that creates an RSA signature to create a base64 token.

Chilkat Delphi DLL Downloads

Delphi DLL
uses
    Winapi.Windows, Winapi.Messages, System.SysUtils, System.Variants, System.Classes, Vcl.Graphics,
    Vcl.Controls, Vcl.Forms, Vcl.Dialogs, Vcl.StdCtrls, StringBuilder, Rsa, Cert, CkDateTime;

...

procedure TForm1.Button1Click(Sender: TObject);
var
success: Boolean;
dt: HCkDateTime;
timeCreated: PWideChar;
sbToken: HCkStringBuilder;
cert: HCkCert;
rsa: HCkRsa;
signature: PWideChar;
token: PWideChar;

begin
success := False;

// This requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

// This example duplicates the following Java code:

// public X509Certificate2 cert = new X509Certificate2(@"Some path to p12/p12file_name.p12","Password_for_p12"); 
// 
// public string GenerateSignToken(double timeValidityMin){ 
//   string equalsSign = ":="; 
//   string timeCreated = DateTime.Now.ToString("yyyy-MM-ddTHH:mm:ss.fffzzz"); 
//   string tokenTimeInfo = "validityTimeMinutes" + equalsSign + timeValidityMin + ";"+"timeCreated" + equalsSign + timeCreated; 
//   string signature = SignData(tokenTimeInfo); 
//   string secureToken = tokenTimeInfo + ";" + "signature" + equalsSign + signature; 
//   return Base64UrlEncode(secureToken); 
// } 
//  
// public string SignData(string stringToSign){ 
//   byte[] dataToSign = Encoding.UTF8.GetBytes(stringToSign); 
//   RSACryptoServiceProvider privKey = (RSACryptoServiceProvider)cert.PrivateKey; 
//   CspKeyContainerInfo containerInfo = new RSACryptoServiceProvider().CspKeyContainerInfo; 
//   CspParameters cspparams = new CspParameters(containerInfo.ProviderType, containerInfo.ProviderName, privKey.CspKeyContainerInfo.KeyContainerName); 
//   privKey = new RSACryptoServiceProvider(cspparams); 
//   string id = CryptoConfig.MapNameToOID("SHA256"); 
//   byte[] sign = privKey.SignData(dataToSign, id); 
//   bool res = privKey.VerifyData(dataToSign, id, sign); 
//   return Convert.ToBase64String(sign).Replace('+', '-').Replace('/', '_').Replace("=", ""); 
// } 
//  
// private static string Base64UrlEncode(string input){ 
//   var inputBytes = Encoding.UTF8.GetBytes(input); 
//   return Convert.ToBase64String(inputBytes).Replace('+', '-').Replace('/', '_').Replace("=", ""); 
// } 

dt := CkDateTime_Create();
CkDateTime_SetFromCurrentSystemTime(dt);
timeCreated := CkDateTime__getAsTimestamp(dt,True);

// Such as 2019-04-01T19:35:44-05:00
Memo1.Lines.Add(timeCreated);

sbToken := CkStringBuilder_Create();
CkStringBuilder_Append(sbToken,'validityTimeMinutes:=10.0;timeCreated:=');
CkStringBuilder_Append(sbToken,timeCreated);

cert := CkCert_Create();
success := CkCert_LoadPfxFile(cert,'Some path to p12/p12file_name.p12','Password_for_p12');
if (success <> True) then
  begin
    Memo1.Lines.Add(CkCert__lastErrorText(cert));
    Exit;
  end;

rsa := CkRsa_Create();
success := CkRsa_SetX509Cert(rsa,cert,True);
if (success <> True) then
  begin
    Memo1.Lines.Add(CkRsa__lastErrorText(rsa));
    Exit;
  end;

CkRsa_putEncodingMode(rsa,'base64url');

signature := CkRsa__signStringENC(rsa,CkStringBuilder__getAsString(sbToken),'sha256');
if (CkRsa_getLastMethodSuccess(rsa) = False) then
  begin
    Memo1.Lines.Add(CkRsa__lastErrorText(rsa));
    Exit;
  end;

CkStringBuilder_Append(sbToken,';signature:=');
CkStringBuilder_Append(sbToken,signature);

// Base64URL encode the result
CkStringBuilder_Encode(sbToken,'base64url','utf-8');
token := CkStringBuilder__getAsString(sbToken);

Memo1.Lines.Add(token);

CkDateTime_Dispose(dt);
CkStringBuilder_Dispose(sbToken);
CkCert_Dispose(cert);
CkRsa_Dispose(rsa);

end;