Chilkat HOME .NET Core C# Android™ AutoIt C C# C++ Chilkat2-Python CkPython Classic ASP DataFlex Delphi ActiveX Delphi DLL Go Java Lianja Mono C# Node.js Objective-C PHP ActiveX PHP Extension Perl PowerBuilder PowerShell PureBasic Ruby SQL Server Swift 2 Swift 3,4,5... Tcl Unicode C Unicode C++ VB.NET VBScript Visual Basic 6.0 Visual FoxPro Xojo Plugin
(Delphi DLL) Validate JWS Using HMAC SHA-256Validates a JSON Web Signature (JWS) using HMAC SHA-256. Note: This example requires Chilkat v9.5.0.66 or greater.
uses Winapi.Windows, Winapi.Messages, System.SysUtils, System.Variants, System.Classes, Vcl.Graphics, Vcl.Controls, Vcl.Forms, Vcl.Dialogs, Vcl.StdCtrls, Jws, JsonObject; ... procedure TForm1.Button1Click(Sender: TObject); var jws: HCkJws; hmacKey: PWideChar; signatureIndex: Integer; jwsCompact: PWideChar; success: Boolean; v: Integer; joseHeader: HCkJsonObject; begin // This requires the Chilkat API to have been previously unlocked. // See Global Unlock Sample for sample code. // Note: This example requires Chilkat v9.5.0.66 or greater. // This example takes a JSON signature in compact serialization format, // and uses a MAC key to validate and recover the protected header and payload. jws := CkJws_Create(); // Set the HMAC key: hmacKey := 'AyM1SysPpbyDfgZld3umj1qzKObwVMkoqQ-EstJQLr_T-1qS0gZH75aKtMN3Yj0iPS4hcgUuTwjAzZr1Z9CAow'; signatureIndex := 0; CkJws_SetMacKey(jws,signatureIndex,hmacKey,'base64url'); // Load the JWS. jwsCompact := 'eyJ0eXAiOiJKV1QiLA0KICJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJqb2UiLA0KICJleHAiOjEzMDA4MTkzODAsDQogImh0dHA6Ly9leGFtcGxlLmNvbS9pc19yb290Ijp0cnVlfQ.dBjftJeZ4CVP-mB92K27uhbUJU1p1r_wW1gFWFOEjXk'; success := CkJws_LoadJws(jws,jwsCompact); // Validate the 1st (and only) signature at index 0.. v := CkJws_Validate(jws,signatureIndex); if (v < 0) then begin // Perhaps Chilkat was not unlocked or the trial expired.. Memo1.Lines.Add('Method call failed for some other reason.'); Memo1.Lines.Add(CkJws__lastErrorText(jws)); Exit; end; if (v = 0) then begin Memo1.Lines.Add('Invalid signature. The MAC key was incorrect, the JWS was invalid, or both.'); Exit; end; // If we get here, the signature was validated.. Memo1.Lines.Add('Signature validated.'); // Recover the original content: Memo1.Lines.Add('Recovered content:'); Memo1.Lines.Add(CkJws__getPayload(jws,'utf-8')); // Examine the protected header: joseHeader := CkJws_GetProtectedHeader(jws,signatureIndex); if (CkJws_getLastMethodSuccess(jws) <> True) then begin Memo1.Lines.Add('No protected header found at the given index.'); Exit; end; CkJsonObject_putEmitCompact(joseHeader,False); Memo1.Lines.Add('Protected (JOSE) header:'); Memo1.Lines.Add(CkJsonObject__emit(joseHeader)); CkJsonObject_Dispose(joseHeader); // Output: // Signature validated. // Recovered content: // {"iss":"joe", // "exp":1300819380, // "http://example.com/is_root":true} // Protected (JOSE) header: // { // "typ": "JWT", // "alg": "HS256" // } CkJws_Dispose(jws); end; |
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.