|
Chilkat • HOME • .NET Core C# • Android™ • AutoIt • C • C# • C++ • Chilkat2-Python • CkPython • Classic ASP • DataFlex • Delphi ActiveX • Delphi DLL • Go • Java • Lianja • Mono C# • Node.js • Objective-C • PHP ActiveX • PHP Extension • Perl • PowerBuilder • PowerShell • PureBasic • Ruby • SQL Server • Swift 2 • Swift 3,4,5... • Tcl • Unicode C • Unicode C++ • VB.NET • VBScript • Visual Basic 6.0 • Visual FoxPro • Xojo Plugin
(SQL Server) Create a JWS Using ECDSA P-521 SHA-512Creates and verifies a JSON Web Signature (JWS) that uses ECDSA P-521 SHA-512 Note: This example requires Chilkat v9.5.0.66 or greater.
-- Important: See this note about string length limitations for strings returned by sp_OAMethod calls. -- CREATE PROCEDURE ChilkatSample AS BEGIN DECLARE @hr int DECLARE @iTmp0 int -- Important: Do not use nvarchar(max). See the warning about using nvarchar(max). DECLARE @sTmp0 nvarchar(4000) -- This requires the Chilkat API to have been previously unlocked. -- See Global Unlock Sample for sample code. -- Note: This example requires Chilkat v9.5.0.66 or greater. -- Use the following ECC key loaded from JWK format. DECLARE @sbJwk int -- Use "Chilkat_9_5_0.StringBuilder" for versions of Chilkat < 10.0.0 EXEC @hr = sp_OACreate 'Chilkat.StringBuilder', @sbJwk OUT IF @hr <> 0 BEGIN PRINT 'Failed to create ActiveX component' RETURN END DECLARE @success int EXEC sp_OAMethod @sbJwk, 'Append', @success OUT, '{"kty":"EC",' EXEC sp_OAMethod @sbJwk, 'Append', @success OUT, '"crv":"P-521",' EXEC sp_OAMethod @sbJwk, 'Append', @success OUT, '"x":"AekpBQ8ST8a8VcfVOTNl353vSrDCLLJXmPk06wTjxrrjcBpXp5EOnYG_NjFZ6OvLFV1jSfS9tsz4qUxcWceqwQGk",' EXEC sp_OAMethod @sbJwk, 'Append', @success OUT, '"y":"ADSmRA43Z1DSNx_RvcLI87cdL07l6jQyyBXMoxVg_l2Th-x3S1WDhjDly79ajL4Kkd0AZMaZmh9ubmf63e3kyMj2",' EXEC sp_OAMethod @sbJwk, 'Append', @success OUT, '"d":"AY5pb7A0UFiB3RELSD64fTLOSV_jazdF7fLYyuTw8lOfRhWg6Y6rUrPAxerEzgdRhajnu0ferB0d53vM9mE15j2C"' EXEC sp_OAMethod @sbJwk, 'Append', @success OUT, '}' DECLARE @eccKey int -- Use "Chilkat_9_5_0.PrivateKey" for versions of Chilkat < 10.0.0 EXEC @hr = sp_OACreate 'Chilkat.PrivateKey', @eccKey OUT -- Note: This example loads the ECDSA key from JWK format. Any format can be loaded -- into the private key object. (See the online reference documentation..) DECLARE @success int EXEC sp_OAMethod @sbJwk, 'GetAsString', @sTmp0 OUT EXEC sp_OAMethod @eccKey, 'LoadJwk', @success OUT, @sTmp0 IF @success <> 1 BEGIN EXEC sp_OAGetProperty @eccKey, 'LastErrorText', @sTmp0 OUT PRINT @sTmp0 EXEC @hr = sp_OADestroy @sbJwk EXEC @hr = sp_OADestroy @eccKey RETURN END -- Create the JWS Protected Header DECLARE @jwsProtHdr int -- Use "Chilkat_9_5_0.JsonObject" for versions of Chilkat < 10.0.0 EXEC @hr = sp_OACreate 'Chilkat.JsonObject', @jwsProtHdr OUT EXEC sp_OAMethod @jwsProtHdr, 'AppendString', @success OUT, 'alg', 'ES512' DECLARE @jws int -- Use "Chilkat_9_5_0.Jws" for versions of Chilkat < 10.0.0 EXEC @hr = sp_OACreate 'Chilkat.Jws', @jws OUT -- Set the protected header: DECLARE @signatureIndex int SELECT @signatureIndex = 0 EXEC sp_OAMethod @jws, 'SetProtectedHeader', @success OUT, @signatureIndex, @jwsProtHdr -- Set the ECC key: EXEC sp_OAMethod @jws, 'SetPrivateKey', @success OUT, @signatureIndex, @eccKey -- Set the payload. DECLARE @bIncludeBom int SELECT @bIncludeBom = 0 DECLARE @payloadStr nvarchar(4000) SELECT @payloadStr = 'In our village, folks say God crumbles up the old moon into stars.' EXEC sp_OAMethod @jws, 'SetPayload', @success OUT, @payloadStr, 'utf-8', @bIncludeBom -- Create the JWS -- By default, the compact serialization is used. DECLARE @jwsCompact nvarchar(4000) EXEC sp_OAMethod @jws, 'CreateJws', @jwsCompact OUT EXEC sp_OAGetProperty @jws, 'LastMethodSuccess', @iTmp0 OUT IF @iTmp0 <> 1 BEGIN EXEC sp_OAGetProperty @jws, 'LastErrorText', @sTmp0 OUT PRINT @sTmp0 EXEC @hr = sp_OADestroy @sbJwk EXEC @hr = sp_OADestroy @eccKey EXEC @hr = sp_OADestroy @jwsProtHdr EXEC @hr = sp_OADestroy @jws RETURN END PRINT 'JWS: ' + @jwsCompact -- Note: ECC signatures use random values, so the output will be different each time a signature is produced. -- sample output: -- JWS: eyJhbGciOiJFUzUxMiJ9.SW4gb3VyIHZpbGxhZ2UsIGZvbGtzIHNheSBHb2QgY3J1bWJsZXMgdXAgdGhlIG9sZCBtb29uIGludG8gc3RhcnMu.AFOnOtZ8UTp-ed1PfLfXxwGU7zT_jnmGGxew-d1CP6SfKa5RUhav5mF4szhSof22JaoQ742VIa0eZ0s1rhBnj8y6APr6g6vKzIpYZlJsnjzjUwAjDQOLmcsjxrrRfATh-NEv7G0Z9FrjdJasS44tCG2EnG6aT2TW-sPG0dy5o9jUWCzi -- Now load the JWS, validate, and recover the original text. DECLARE @jws2 int -- Use "Chilkat_9_5_0.Jws" for versions of Chilkat < 10.0.0 EXEC @hr = sp_OACreate 'Chilkat.Jws', @jws2 OUT -- Load the JWS. EXEC sp_OAMethod @jws2, 'LoadJws', @success OUT, @jwsCompact DECLARE @eccPubKey int EXEC sp_OAMethod @eccKey, 'GetPublicKey', @eccPubKey OUT -- Set the ECC public key used for validation. SELECT @signatureIndex = 0 EXEC sp_OAMethod @jws2, 'SetPublicKey', @success OUT, @signatureIndex, @eccPubKey EXEC @hr = sp_OADestroy @eccPubKey -- Validate the 1st (and only) signature at index 0.. DECLARE @v int EXEC sp_OAMethod @jws2, 'Validate', @v OUT, @signatureIndex IF @v < 0 BEGIN -- Perhaps Chilkat was not unlocked or the trial expired.. PRINT 'Method call failed for some other reason.' EXEC sp_OAGetProperty @jws2, 'LastErrorText', @sTmp0 OUT PRINT @sTmp0 EXEC @hr = sp_OADestroy @sbJwk EXEC @hr = sp_OADestroy @eccKey EXEC @hr = sp_OADestroy @jwsProtHdr EXEC @hr = sp_OADestroy @jws EXEC @hr = sp_OADestroy @jws2 RETURN END IF @v = 0 BEGIN PRINT 'Invalid signature. The ECC key was incorrect, the JWS was invalid, or both.' EXEC @hr = sp_OADestroy @sbJwk EXEC @hr = sp_OADestroy @eccKey EXEC @hr = sp_OADestroy @jwsProtHdr EXEC @hr = sp_OADestroy @jws EXEC @hr = sp_OADestroy @jws2 RETURN END -- If we get here, the signature was validated.. PRINT 'Signature validated.' -- Recover the original content: EXEC sp_OAMethod @jws2, 'GetPayload', @sTmp0 OUT, 'utf-8' PRINT @sTmp0 -- Examine the protected header: DECLARE @joseHeader int EXEC sp_OAMethod @jws2, 'GetProtectedHeader', @joseHeader OUT, @signatureIndex EXEC sp_OAGetProperty @jws2, 'LastMethodSuccess', @iTmp0 OUT IF @iTmp0 <> 1 BEGIN PRINT 'No protected header found at the given index.' EXEC @hr = sp_OADestroy @sbJwk EXEC @hr = sp_OADestroy @eccKey EXEC @hr = sp_OADestroy @jwsProtHdr EXEC @hr = sp_OADestroy @jws EXEC @hr = sp_OADestroy @jws2 RETURN END EXEC sp_OASetProperty @joseHeader, 'EmitCompact', 0 PRINT 'Protected (JOSE) header:' EXEC sp_OAMethod @joseHeader, 'Emit', @sTmp0 OUT PRINT @sTmp0 EXEC @hr = sp_OADestroy @joseHeader -- Output: -- Signature validated. -- In our village, folks say God crumbles up the old moon into stars. -- Protected (JOSE) header: -- { -- "alg": "ES512" -- } EXEC @hr = sp_OADestroy @sbJwk EXEC @hr = sp_OADestroy @eccKey EXEC @hr = sp_OADestroy @jwsProtHdr EXEC @hr = sp_OADestroy @jws EXEC @hr = sp_OADestroy @jws2 END GO |
||||
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.