(AutoIt) Create JCEKS Containing Secret Keys

Demonstrates how to create a JCEKS keystore file containing symmetric secret keys (for AES, Blowfish, HMAC SHA25, ChaCha20, etc.)

This example requires Chilkat v9.5.0.66 or greater.

Chilkat ActiveX Downloads ActiveX for 32-bit and 64-bit Windows

; IMPORTANT: This example requires Chilkat v9.5.0.66 or greater.

; This example requires the Chilkat API to have been previously unlocked.
; See Global Unlock Sample for sample code.

$oJceks = ObjCreate("Chilkat.JavaKeyStore")

; We'll need a pseudo-random number generator (PRNG) to generate symmetric keys.
$oPrng = ObjCreate("Chilkat.Prng")

; Generate some keys..

; 128-bit AES key (16 bytes)
Local $sAesKey = $oPrng.GenRandom(16,"base64")

; 256-bit Blowfish key (32 bytes)
Local $sBlowfishKey = $oPrng.GenRandom(32,"base64")

; HMAC SHA256 key
; (An HMAC key can be anything, and any length. We'll use the following string:
Local $sHmacKey = "This is my HMAC key"

; ChaCha20 256-bit
Local $sChachaKey = $oPrng.GenRandom(32,"base64")

; Add each secret key to the JCEKS
Local $sEncoding = "base64"
Local $sPassword = "secret"
$oJceks.AddSecretKey($sAesKey,$sEncoding,"AES","my aes key",$sPassword)
$oJceks.AddSecretKey($sBlowfishKey,$sEncoding,"BLOWFISH","my blowfish key",$sPassword)
; For HMAC, we're using the us-ascii bytes for the key..
$oJceks.AddSecretKey($sHmacKey,"ascii","HMAC_SHA256","my hmac key",$sPassword)
$oJceks.AddSecretKey($sChachaKey,$sEncoding,"CHACHA","my chacha20 key",$sPassword)

Local $sFilePassword = "password"
; Write the JCEKs to a file.
Local $bSuccess = $oJceks.ToFile($sFilePassword,"qa_output/secretKeys.jceks")
If ($bSuccess <> True) Then
    ConsoleWrite($oJceks.LastErrorText & @CRLF)
    Exit
EndIf

; We can also emit as a JWK Set..
$oSbJson = ObjCreate("Chilkat.StringBuilder")
$bSuccess = $oJceks.ToJwkSet("secret",$oSbJson)
If ($bSuccess <> True) Then
    ConsoleWrite($oJceks.LastErrorText & @CRLF)
    Exit
EndIf

; Emit the JSON in pretty-printed (indented) form:
$oJson = ObjCreate("Chilkat.JsonObject")
$oJson.LoadSb($oSbJson)
$oJson.EmitCompact = False
ConsoleWrite($oJson.Emit() & @CRLF)

; Output is:

; { 
;   "keys": [
;     { 
;       "kty": "oct",
;       "alg": "AES",
;       "k": "vHekQQB0Gc1NvppapUTW2g",
;       "kid": "my aes key"
;     },
;     { 
;       "kty": "oct",
;       "alg": "BLOWFISH",
;       "k": "qHsdXaJsXicVCZbK8l8hJQpYOa0GkiO9gsRK9WLtht8",
;       "kid": "my blowfish key"
;     },
;     { 
;       "kty": "oct",
;       "alg": "HMAC_SHA256",
;       "k": "VGhpcyBpcyBteSBITUFDIGtleQ",
;       "kid": "my hmac key"
;     },
;     { 
;       "kty": "oct",
;       "alg": "CHACHA",
;       "k": "yNv832U43C9BcWvaQAH2_rG-GwfmpgT5JBRllWGQY1o",
;       "kid": "my chacha20 key"
;     }
;   ]
; }
;