(Java) Duplicate Java Secure Token Creation

Demonstrates how to duplicate some Java code that creates an RSA signature to create a base64 token.

Chilkat Java Downloads Java Libs for Windows, MacOS, Linux, Alpine Linux, Solaris Java Libs for Android

import com.chilkatsoft.*;

public class ChilkatExample {

  static {
    try {
        System.loadLibrary("chilkat");
    } catch (UnsatisfiedLinkError e) {
      System.err.println("Native code library failed to load.\n" + e);
      System.exit(1);
    }
  }

  public static void main(String argv[])
  {
    // This requires the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    // This example duplicates the following Java code:

    // public X509Certificate2 cert = new X509Certificate2(@"Some path to p12/p12file_name.p12","Password_for_p12"); 
    // 
    // public string GenerateSignToken(double timeValidityMin){ 
    //   string equalsSign = ":="; 
    //   string timeCreated = DateTime.Now.ToString("yyyy-MM-ddTHH:mm:ss.fffzzz"); 
    //   string tokenTimeInfo = "validityTimeMinutes" + equalsSign + timeValidityMin + ";"+"timeCreated" + equalsSign + timeCreated; 
    //   string signature = SignData(tokenTimeInfo); 
    //   string secureToken = tokenTimeInfo + ";" + "signature" + equalsSign + signature; 
    //   return Base64UrlEncode(secureToken); 
    // } 
    //  
    // public string SignData(string stringToSign){ 
    //   byte[] dataToSign = Encoding.UTF8.GetBytes(stringToSign); 
    //   RSACryptoServiceProvider privKey = (RSACryptoServiceProvider)cert.PrivateKey; 
    //   CspKeyContainerInfo containerInfo = new RSACryptoServiceProvider().CspKeyContainerInfo; 
    //   CspParameters cspparams = new CspParameters(containerInfo.ProviderType, containerInfo.ProviderName, privKey.CspKeyContainerInfo.KeyContainerName); 
    //   privKey = new RSACryptoServiceProvider(cspparams); 
    //   string id = CryptoConfig.MapNameToOID("SHA256"); 
    //   byte[] sign = privKey.SignData(dataToSign, id); 
    //   bool res = privKey.VerifyData(dataToSign, id, sign); 
    //   return Convert.ToBase64String(sign).Replace('+', '-').Replace('/', '_').Replace("=", ""); 
    // } 
    //  
    // private static string Base64UrlEncode(string input){ 
    //   var inputBytes = Encoding.UTF8.GetBytes(input); 
    //   return Convert.ToBase64String(inputBytes).Replace('+', '-').Replace('/', '_').Replace("=", ""); 
    // } 

    boolean success;

    CkDateTime dt = new CkDateTime();
    dt.SetFromCurrentSystemTime();
    String timeCreated = dt.getAsTimestamp(true);

    // Such as 2019-04-01T19:35:44-05:00
    System.out.println(timeCreated);

    CkStringBuilder sbToken = new CkStringBuilder();
    sbToken.Append("validityTimeMinutes:=10.0;timeCreated:=");
    sbToken.Append(timeCreated);

    CkCert cert = new CkCert();
    success = cert.LoadPfxFile("Some path to p12/p12file_name.p12","Password_for_p12");
    if (success != true) {
        System.out.println(cert.lastErrorText());
        return;
        }

    CkRsa rsa = new CkRsa();
    success = rsa.SetX509Cert(cert,true);
    if (success != true) {
        System.out.println(rsa.lastErrorText());
        return;
        }

    rsa.put_EncodingMode("base64url");

    String signature = rsa.signStringENC(sbToken.getAsString(),"sha256");
    if (rsa.get_LastMethodSuccess() == false) {
        System.out.println(rsa.lastErrorText());
        return;
        }

    sbToken.Append(";signature:=");
    sbToken.Append(signature);

    // Base64URL encode the result
    sbToken.Encode("base64url","utf-8");
    String token = sbToken.getAsString();

    System.out.println(token);
  }
}