Sample code for 30+ languages & platforms
CkPython

Duplicate Java Secure Token Creation

See more RSA Examples

Demonstrates how to duplicate some Java code that creates an RSA signature to create a base64 token.

Chilkat CkPython Downloads

CkPython
import sys
import chilkat

success = False

# This requires the Chilkat API to have been previously unlocked.
# See Global Unlock Sample for sample code.

# This example duplicates the following Java code:

# public X509Certificate2 cert = new X509Certificate2(@"Some path to p12/p12file_name.p12","Password_for_p12"); 
# 
# public string GenerateSignToken(double timeValidityMin){ 
#   string equalsSign = ":="; 
#   string timeCreated = DateTime.Now.ToString("yyyy-MM-ddTHH:mm:ss.fffzzz"); 
#   string tokenTimeInfo = "validityTimeMinutes" + equalsSign + timeValidityMin + ";"+"timeCreated" + equalsSign + timeCreated; 
#   string signature = SignData(tokenTimeInfo); 
#   string secureToken = tokenTimeInfo + ";" + "signature" + equalsSign + signature; 
#   return Base64UrlEncode(secureToken); 
# } 
#  
# public string SignData(string stringToSign){ 
#   byte[] dataToSign = Encoding.UTF8.GetBytes(stringToSign); 
#   RSACryptoServiceProvider privKey = (RSACryptoServiceProvider)cert.PrivateKey; 
#   CspKeyContainerInfo containerInfo = new RSACryptoServiceProvider().CspKeyContainerInfo; 
#   CspParameters cspparams = new CspParameters(containerInfo.ProviderType, containerInfo.ProviderName, privKey.CspKeyContainerInfo.KeyContainerName); 
#   privKey = new RSACryptoServiceProvider(cspparams); 
#   string id = CryptoConfig.MapNameToOID("SHA256"); 
#   byte[] sign = privKey.SignData(dataToSign, id); 
#   bool res = privKey.VerifyData(dataToSign, id, sign); 
#   return Convert.ToBase64String(sign).Replace('+', '-').Replace('/', '_').Replace("=", ""); 
# } 
#  
# private static string Base64UrlEncode(string input){ 
#   var inputBytes = Encoding.UTF8.GetBytes(input); 
#   return Convert.ToBase64String(inputBytes).Replace('+', '-').Replace('/', '_').Replace("=", ""); 
# } 

dt = chilkat.CkDateTime()
dt.SetFromCurrentSystemTime()
timeCreated = dt.getAsTimestamp(True)

# Such as 2019-04-01T19:35:44-05:00
print(timeCreated)

sbToken = chilkat.CkStringBuilder()
sbToken.Append("validityTimeMinutes:=10.0;timeCreated:=")
sbToken.Append(timeCreated)

cert = chilkat.CkCert()
success = cert.LoadPfxFile("Some path to p12/p12file_name.p12","Password_for_p12")
if (success != True):
    print(cert.lastErrorText())
    sys.exit()

rsa = chilkat.CkRsa()
success = rsa.SetX509Cert(cert,True)
if (success != True):
    print(rsa.lastErrorText())
    sys.exit()

rsa.put_EncodingMode("base64url")

signature = rsa.signStringENC(sbToken.getAsString(),"sha256")
if (rsa.get_LastMethodSuccess() == False):
    print(rsa.lastErrorText())
    sys.exit()

sbToken.Append(";signature:=")
sbToken.Append(signature)

# Base64URL encode the result
sbToken.Encode("base64url","utf-8")
token = sbToken.getAsString()

print(token)