Sample code for 30+ languages & platforms
Visual FoxPro

Create JCEKS Containing Secret Keys

See more Java KeyStore (JKS) Examples

Demonstrates how to create a JCEKS keystore file containing symmetric secret keys (for AES, Blowfish, HMAC SHA25, ChaCha20, etc.)

This example requires Chilkat v9.5.0.66 or greater.

Chilkat Visual FoxPro Downloads

Visual FoxPro
LOCAL lnSuccess
LOCAL loJceks
LOCAL loPrng
LOCAL lcAesKey
LOCAL lcBlowfishKey
LOCAL lcHmacKey
LOCAL lcChachaKey
LOCAL lcEncoding
LOCAL lcPassword
LOCAL lcFilePassword
LOCAL loSbJson
LOCAL loJson

lnSuccess = 0

* IMPORTANT: This example requires Chilkat v9.5.0.66 or greater.

* This example requires the Chilkat API to have been previously unlocked.
* See Global Unlock Sample for sample code.

loJceks = CreateObject('Chilkat.JavaKeyStore')

* We'll need a pseudo-random number generator (PRNG) to generate symmetric keys.
loPrng = CreateObject('Chilkat.Prng')

* Generate some keys..

* 128-bit AES key (16 bytes)
lcAesKey = loPrng.GenRandom(16,"base64")

* 256-bit Blowfish key (32 bytes)
lcBlowfishKey = loPrng.GenRandom(32,"base64")

* HMAC SHA256 key
* (An HMAC key can be anything, and any length. We'll use the following string:
lcHmacKey = "This is my HMAC key"

* ChaCha20 256-bit
lcChachaKey = loPrng.GenRandom(32,"base64")

* Add each secret key to the JCEKS
lcEncoding = "base64"
lcPassword = "secret"
loJceks.AddSecretKey(lcAesKey,lcEncoding,"AES","my aes key",lcPassword)
loJceks.AddSecretKey(lcBlowfishKey,lcEncoding,"BLOWFISH","my blowfish key",lcPassword)
* For HMAC, we're using the us-ascii bytes for the key..
loJceks.AddSecretKey(lcHmacKey,"ascii","HMAC_SHA256","my hmac key",lcPassword)
loJceks.AddSecretKey(lcChachaKey,lcEncoding,"CHACHA","my chacha20 key",lcPassword)

lcFilePassword = "password"
* Write the JCEKs to a file.
lnSuccess = loJceks.ToFile(lcFilePassword,"qa_output/secretKeys.jceks")
IF (lnSuccess <> 1) THEN
    ? loJceks.LastErrorText
    RELEASE loJceks
    RELEASE loPrng
    CANCEL
ENDIF

* We can also emit as a JWK Set..
loSbJson = CreateObject('Chilkat.StringBuilder')
lnSuccess = loJceks.ToJwkSet("secret",loSbJson)
IF (lnSuccess <> 1) THEN
    ? loJceks.LastErrorText
    RELEASE loJceks
    RELEASE loPrng
    RELEASE loSbJson
    CANCEL
ENDIF

* Emit the JSON in pretty-printed (indented) form:
loJson = CreateObject('Chilkat.JsonObject')
loJson.LoadSb(loSbJson)
loJson.EmitCompact = 0
? loJson.Emit()

* Output is:

* { 
*   "keys": [
*     { 
*       "kty": "oct",
*       "alg": "AES",
*       "k": "vHekQQB0Gc1NvppapUTW2g",
*       "kid": "my aes key"
*     },
*     { 
*       "kty": "oct",
*       "alg": "BLOWFISH",
*       "k": "qHsdXaJsXicVCZbK8l8hJQpYOa0GkiO9gsRK9WLtht8",
*       "kid": "my blowfish key"
*     },
*     { 
*       "kty": "oct",
*       "alg": "HMAC_SHA256",
*       "k": "VGhpcyBpcyBteSBITUFDIGtleQ",
*       "kid": "my hmac key"
*     },
*     { 
*       "kty": "oct",
*       "alg": "CHACHA",
*       "k": "yNv832U43C9BcWvaQAH2_rG-GwfmpgT5JBRllWGQY1o",
*       "kid": "my chacha20 key"
*     }
*   ]
* }
* 

RELEASE loJceks
RELEASE loPrng
RELEASE loSbJson
RELEASE loJson