Sample code for 30+ languages & platforms
Delphi ActiveX

Duplicate Java Secure Token Creation

See more RSA Examples

Demonstrates how to duplicate some Java code that creates an RSA signature to create a base64 token.

Chilkat Delphi ActiveX Downloads

Delphi ActiveX
uses
    Winapi.Windows, Winapi.Messages, System.SysUtils, System.Variants, System.Classes, Vcl.Graphics,
    Vcl.Controls, Vcl.Forms, Vcl.Dialogs, Vcl.StdCtrls, Chilkat_TLB;

...

procedure TForm1.Button1Click(Sender: TObject);
var
success: Integer;
dt: TCkDateTime;
timeCreated: WideString;
sbToken: TChilkatStringBuilder;
cert: TChilkatCert;
rsa: TChilkatRsa;
signature: WideString;
token: WideString;

begin
success := 0;

// This requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

// This example duplicates the following Java code:

// public X509Certificate2 cert = new X509Certificate2(@"Some path to p12/p12file_name.p12","Password_for_p12"); 
// 
// public string GenerateSignToken(double timeValidityMin){ 
//   string equalsSign = ":="; 
//   string timeCreated = DateTime.Now.ToString("yyyy-MM-ddTHH:mm:ss.fffzzz"); 
//   string tokenTimeInfo = "validityTimeMinutes" + equalsSign + timeValidityMin + ";"+"timeCreated" + equalsSign + timeCreated; 
//   string signature = SignData(tokenTimeInfo); 
//   string secureToken = tokenTimeInfo + ";" + "signature" + equalsSign + signature; 
//   return Base64UrlEncode(secureToken); 
// } 
//  
// public string SignData(string stringToSign){ 
//   byte[] dataToSign = Encoding.UTF8.GetBytes(stringToSign); 
//   RSACryptoServiceProvider privKey = (RSACryptoServiceProvider)cert.PrivateKey; 
//   CspKeyContainerInfo containerInfo = new RSACryptoServiceProvider().CspKeyContainerInfo; 
//   CspParameters cspparams = new CspParameters(containerInfo.ProviderType, containerInfo.ProviderName, privKey.CspKeyContainerInfo.KeyContainerName); 
//   privKey = new RSACryptoServiceProvider(cspparams); 
//   string id = CryptoConfig.MapNameToOID("SHA256"); 
//   byte[] sign = privKey.SignData(dataToSign, id); 
//   bool res = privKey.VerifyData(dataToSign, id, sign); 
//   return Convert.ToBase64String(sign).Replace('+', '-').Replace('/', '_').Replace("=", ""); 
// } 
//  
// private static string Base64UrlEncode(string input){ 
//   var inputBytes = Encoding.UTF8.GetBytes(input); 
//   return Convert.ToBase64String(inputBytes).Replace('+', '-').Replace('/', '_').Replace("=", ""); 
// } 

dt := TCkDateTime.Create(Self);
dt.SetFromCurrentSystemTime();
timeCreated := dt.GetAsTimestamp(1);

// Such as 2019-04-01T19:35:44-05:00
Memo1.Lines.Add(timeCreated);

sbToken := TChilkatStringBuilder.Create(Self);
sbToken.Append('validityTimeMinutes:=10.0;timeCreated:=');
sbToken.Append(timeCreated);

cert := TChilkatCert.Create(Self);
success := cert.LoadPfxFile('Some path to p12/p12file_name.p12','Password_for_p12');
if (success <> 1) then
  begin
    Memo1.Lines.Add(cert.LastErrorText);
    Exit;
  end;

rsa := TChilkatRsa.Create(Self);
success := rsa.SetX509Cert(cert.ControlInterface,1);
if (success <> 1) then
  begin
    Memo1.Lines.Add(rsa.LastErrorText);
    Exit;
  end;

rsa.EncodingMode := 'base64url';

signature := rsa.SignStringENC(sbToken.GetAsString(),'sha256');
if (rsa.LastMethodSuccess = 0) then
  begin
    Memo1.Lines.Add(rsa.LastErrorText);
    Exit;
  end;

sbToken.Append(';signature:=');
sbToken.Append(signature);

// Base64URL encode the result
sbToken.Encode('base64url','utf-8');
token := sbToken.GetAsString();

Memo1.Lines.Add(token);
end;