Sample code for 30+ languages & platforms
Chilkat2-Python

RSA SHA256 Signature using Private Key from Java Keystore

See more RSA Examples

Signs plaintext using RSA SHA256 using a key from a Java keystore.

Duplicatest this code:

KeyStore keystore; // key repository for keys containing signature certificate
String alias; // alias for the certificate in the key repository
String password; // password for the certificate's private key
String plaintext; // text being signed


Signature signature = Signature.getInstance("SHA256withRSA");
signature.initSign((PrivateKey) keystore.getKey(alias, password.toCharArray()));
signature.update(plaintext.getBytes("UTF-8"));
byte[] rsa_text= signature.sign();

Chilkat Chilkat2-Python Downloads

Chilkat2-Python
import sys
import chilkat2

success = False

# This requires the Chilkat API to have been previously unlocked.
# See Global Unlock Sample for sample code.

jks = chilkat2.JavaKeyStore()

jksPassword = "secret"

# Load the Java keystore from a file.  The JKS file password is used
# to verify the keyed digest that is found at the very end of the keystore.
# It verifies that the keystore has not been modified.
success = jks.LoadFile(jksPassword,"qa_data/jks/sample_secret.jks")
if (success == False):
    print(jks.LastErrorText)
    sys.exit()

# Get the private key from the JKS.
# The private key password may be different than the file password.
privKeyPassword = "secret"
caseSensitive = False
privKey = chilkat2.PrivateKey()
success = jks.PrivateKeyOf(privKeyPassword,"some.alias",caseSensitive,privKey)
if (success == False):
    print(jks.LastErrorText)
    sys.exit()

# Establish the RSA object and tell it to use the private key..
rsa = chilkat2.Rsa()

success = rsa.UsePrivateKey(privKey)
if (success == False):
    print(rsa.LastErrorText)
    sys.exit()

# Indicate we'll be signing the utf-8 byte representation of the string..
rsa.Charset = "utf-8"

# Sign some plaintext using RSA-SHA256

plaintext = "this is the text to be signed"
# binarySignature is a memoryview
binarySignature = rsa.SignString(plaintext,"SHA256")
if (rsa.LastMethodSuccess == False):
    print(rsa.LastErrorText)
    sys.exit()

# Alternatively, if the signature is desired in some encoded string form,
# such as base64, base64-url, hex, etc.
rsa.EncodingMode = "base64-url"
signatureStr = rsa.SignStringENC(plaintext,"SHA256")
print("base64-url RSA signature: " + signatureStr)