|
Chilkat • HOME • .NET Core C# • Android™ • AutoIt • C • C# • C++ • Chilkat2-Python • CkPython • Classic ASP • DataFlex • Delphi ActiveX • Delphi DLL • Go • Java • Lianja • Mono C# • Node.js • Objective-C • PHP ActiveX • PHP Extension • Perl • PowerBuilder • PowerShell • PureBasic • Ruby • SQL Server • Swift 2 • Swift 3,4,5... • Tcl • Unicode C • Unicode C++ • VB.NET • VBScript • Visual Basic 6.0 • Visual FoxPro • Xojo Plugin
(PureBasic) Validate a JWS Using ECDSA P-521 SHA-512Validates a JSON Web Signature (JWS) that uses ECDSA P-521 SHA-512 Note: This example requires Chilkat v9.5.0.66 or greater.
IncludeFile "CkJws.pb" IncludeFile "CkStringBuilder.pb" IncludeFile "CkJsonObject.pb" IncludeFile "CkPublicKey.pb" Procedure ChilkatExample() ; This requires the Chilkat API to have been previously unlocked. ; See Global Unlock Sample for sample code. ; Note: This example requires Chilkat v9.5.0.66 or greater. ; This example takes a JSON signature in compact serialization format, ; and uses an ECDSA public key to validate and recover the protected header and payload. ; We only need a public key for signature validation. This is the ECDSA public key ; that is used: ; {"kty":"EC", ; "crv":"P-521", ; "x":"AekpBQ8ST8a8VcfVOTNl353vSrDCLLJXmPk06wTjxrrjcBpXp5EOnYG_NjFZ6OvLFV1jSfS9tsz4qUxcWceqwQGk", ; "y":"ADSmRA43Z1DSNx_RvcLI87cdL07l6jQyyBXMoxVg_l2Th-x3S1WDhjDly79ajL4Kkd0AZMaZmh9ubmf63e3kyMj2" ; } sbPubKey.i = CkStringBuilder::ckCreate() If sbPubKey.i = 0 Debug "Failed to create object." ProcedureReturn EndIf CkStringBuilder::ckAppend(sbPubKey,"{" + Chr(34) + "kty" + Chr(34) + ":" + Chr(34) + "EC" + Chr(34) + ",") CkStringBuilder::ckAppend(sbPubKey,Chr(34) + "crv" + Chr(34) + ":" + Chr(34) + "P-521" + Chr(34) + ",") CkStringBuilder::ckAppend(sbPubKey,Chr(34) + "x" + Chr(34) + ":" + Chr(34) + "AekpBQ8ST8a8VcfVOTNl353vSrDCLLJXmPk06wTjxrrjcBpXp5EOnYG_NjFZ6OvLFV1jSfS9tsz4qUxcWceqwQGk" + Chr(34) + ",") CkStringBuilder::ckAppend(sbPubKey,Chr(34) + "y" + Chr(34) + ":" + Chr(34) + "ADSmRA43Z1DSNx_RvcLI87cdL07l6jQyyBXMoxVg_l2Th-x3S1WDhjDly79ajL4Kkd0AZMaZmh9ubmf63e3kyMj2" + Chr(34)) CkStringBuilder::ckAppend(sbPubKey,"}") pubKey.i = CkPublicKey::ckCreate() If pubKey.i = 0 Debug "Failed to create object." ProcedureReturn EndIf success.i = CkPublicKey::ckLoadFromString(pubKey,CkStringBuilder::ckGetAsString(sbPubKey)) If success <> 1 Debug CkPublicKey::ckLastErrorText(pubKey) CkStringBuilder::ckDispose(sbPubKey) CkPublicKey::ckDispose(pubKey) ProcedureReturn EndIf jws.i = CkJws::ckCreate() If jws.i = 0 Debug "Failed to create object." ProcedureReturn EndIf ; Set the ECC public key: signatureIndex.i = 0 CkJws::ckSetPublicKey(jws,signatureIndex,pubKey) ; Load the JWS. sbJws.i = CkStringBuilder::ckCreate() If sbJws.i = 0 Debug "Failed to create object." ProcedureReturn EndIf CkStringBuilder::ckAppend(sbJws,"eyJhbGciOiJFUzUxMiJ9") CkStringBuilder::ckAppend(sbJws,".") CkStringBuilder::ckAppend(sbJws,"UGF5bG9hZA") CkStringBuilder::ckAppend(sbJws,".") CkStringBuilder::ckAppend(sbJws,"AdwMgeerwtHoh-l192l60hp9wAHZFVJbLfD_UxMi70cwnZOYaRI1bKPWROc-mZZq") CkStringBuilder::ckAppend(sbJws,"wqT2SI-KGDKB34XO0aw_7XdtAG8GaSwFKdCAPZgoXD2YBJZCPEX3xKpRwcdOO8Kp") CkStringBuilder::ckAppend(sbJws,"EHwJjyqOgzDO7iKvU8vcnwNrmxYbSW9ERBXukOXolLzeO_Jn") success = CkJws::ckLoadJwsSb(jws,sbJws) If success <> 1 Debug CkJws::ckLastErrorText(jws) CkStringBuilder::ckDispose(sbPubKey) CkPublicKey::ckDispose(pubKey) CkJws::ckDispose(jws) CkStringBuilder::ckDispose(sbJws) ProcedureReturn EndIf ; Validate the 1st (and only) signature at index 0.. v.i = CkJws::ckValidate(jws,signatureIndex) If v < 0 ; Perhaps Chilkat was not unlocked or the trial expired.. Debug "Method call failed for some other reason." Debug CkJws::ckLastErrorText(jws) CkStringBuilder::ckDispose(sbPubKey) CkPublicKey::ckDispose(pubKey) CkJws::ckDispose(jws) CkStringBuilder::ckDispose(sbJws) ProcedureReturn EndIf If v = 0 Debug "Invalid signature. The ECC key was incorrect, the JWS was invalid, or both." CkStringBuilder::ckDispose(sbPubKey) CkPublicKey::ckDispose(pubKey) CkJws::ckDispose(jws) CkStringBuilder::ckDispose(sbJws) ProcedureReturn EndIf ; If we get here, the signature was validated.. Debug "Signature validated." Debug "--" ; Recover the original content: Debug "Recovered content:" Debug CkJws::ckGetPayload(jws,"utf-8") Debug "--" ; Examine the protected header: joseHeader.i = CkJws::ckGetProtectedHeader(jws,signatureIndex) If CkJws::ckLastMethodSuccess(jws) <> 1 Debug "No protected header found at the given index." CkStringBuilder::ckDispose(sbPubKey) CkPublicKey::ckDispose(pubKey) CkJws::ckDispose(jws) CkStringBuilder::ckDispose(sbJws) ProcedureReturn EndIf CkJsonObject::setCkEmitCompact(joseHeader, 0) Debug "Protected (JOSE) header:" Debug CkJsonObject::ckEmit(joseHeader) CkJsonObject::ckDispose(joseHeader) ; Output: ; (the string "Payload" was the content that was signed.) ; Signature validated. ; -- ; Recovered content: ; Payload ; -- ; Protected (JOSE) header: ; { ; "alg": "ES512" ; } CkStringBuilder::ckDispose(sbPubKey) CkPublicKey::ckDispose(pubKey) CkJws::ckDispose(jws) CkStringBuilder::ckDispose(sbJws) ProcedureReturn EndProcedure |
||||
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.