Sample code for 30+ languages & platforms
Android™

Duplicate Java HMAC-SHA1 using Chilkat

See more Encryption Examples

This example uses Chilkat to produce the same results as this Java code:
import org.apache.commons.codec.binary.Base64;
import org.apache.commons.codec.binary.Hex;

import javax.crypto.Mac;
import javax.crypto.spec.SecretKeySpec;
import java.security.InvalidKeyException;
import java.security.Key;
import java.security.NoSuchAlgorithmException;

public void hmacSignatureExample() throws NoSuchAlgorithmException,
InvalidKeyException {

final String method = "POST";
final Long epoch = 1456765639015L; // Hardcoding for this example
final String uri = "/api/v5/policy/1234567890";
final String newline = "\n";

final String privateKey = "qwfvUeVRWAwyjlAzGivefFPTg+m6QtBPmDVv7Ra
/u7K3UuVVRhrZ/qc8EPh8IGJatuxsWD4EX+D9qE/eVvLTpw==";
final String publicKey = "16baedbe244b6c063968850716afb319a";

// Prepare the signature
final String plainText = method + newline + epoch + newline + uri + newline;

// Hash the plaintext with the private key
final byte[] keyBytes = privateKey.getBytes();
final Key key = new SecretKeySpec(keyBytes, 0, keyBytes.length, "HmacSHA1");
final Mac mac = Mac.getInstance("HmacSHA1");
mac.init(key);
String signatureHash = new String(Hex.encodeHex(mac.doFinal(plainText.
getBytes())));

// Prefix with public key
signatureHash = publicKey + ":" + signatureHash;

// Base64 encode to produce AUTHORIZATION
final String authorization = new String(Base64.encodeBase64(signatureHash.
getBytes()));
}

Chilkat Android™ Downloads

Android™
// Important: Don't forget to include the call to System.loadLibrary
// as shown at the bottom of this code sample.
package com.test;

import android.app.Activity;
import com.chilkatsoft.*;

import android.widget.TextView;
import android.os.Bundle;

public class SimpleActivity extends Activity {

  private static final String TAG = "Chilkat";

  // Called when the activity is first created.
  @Override
  public void onCreate(Bundle savedInstanceState) {
    super.onCreate(savedInstanceState);

    boolean success = false;

    // This example assumes the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    // This is clearly in base64 encoding.
    String privateKey = "qwfvUeVRWAwyjlAzGivefFPTg+m6QtBPmDVv7Ra/u7K3UuVVRhrZ/qc8EPh8IGJatuxsWD4EX+D9qE/eVvLTpw==";

    // This is clearly in the hex encoding.
    String publicKey = "16baedbe244b6c063968850716afb319a";

    String plainText = "POST\n1456765639015\n/api/v5/policy/1234567890\n";

    CkCrypt2 crypt = new CkCrypt2();

    // We want HMAC-SHA1.
    crypt.put_MacAlgorithm("HMAC");
    crypt.put_HashAlgorithm("SHA1");

    // The Java code (above) is literally using the us-ascii chars of the base64 string as the HMAC key.
    // (It is NOT using the base64 decoded bytes.)
    crypt.SetMacKeyEncoded(privateKey,"us-ascii");

    // We want our HMAC-SHA1 output to be a hex string.
    crypt.put_EncodingMode("hex_lower");

    String hmacHex = crypt.macStringENC(plainText);

    Log.i(TAG, hmacHex);

    // The expected result is: dd3e8440f6b550f152156ea5e12d3e20b262adae

    CkStringBuilder sbSignatureHash = new CkStringBuilder();
    sbSignatureHash.Append(publicKey);
    sbSignatureHash.Append(":");
    sbSignatureHash.Append(hmacHex);

    String authorization = sbSignatureHash.getEncoded("base64","utf-8");
    Log.i(TAG, "Authorization: " + authorization);

    // The expected result is:  MTZiYWVkYmUyNDRiNmMwNjM5Njg4NTA3MTZhZmIzMTlhOmRkM2U4NDQwZjZiNTUwZjE1MjE1NmVhNWUxMmQzZTIwYjI2MmFkYWU=

  }

  static {
      System.loadLibrary("chilkat");

      // Note: If the incorrect library name is passed to System.loadLibrary,
      // then you will see the following error message at application startup:
      //"The application <your-application-name> has stopped unexpectedly. Please try again."
  }
}