|
Chilkat • HOME • .NET Core C# • Android™ • AutoIt • C • C# • C++ • Chilkat2-Python • CkPython • Classic ASP • DataFlex • Delphi ActiveX • Delphi DLL • Go • Java • Lianja • Mono C# • Node.js • Objective-C • PHP ActiveX • PHP Extension • Perl • PowerBuilder • PowerShell • PureBasic • Ruby • SQL Server • Swift 2 • Swift 3,4,5... • Tcl • Unicode C • Unicode C++ • VB.NET • VBScript • Visual Basic 6.0 • Visual FoxPro • Xojo Plugin
(SQL Server) Validate JWS Using RSASSA-PKCS1-v1_5 SHA-256Validates a JSON Web Signature (JWS) that uses RSASSA-PKCS1-v1_5 SHA-256. Note: This example requires Chilkat v9.5.0.66 or greater.
-- Important: See this note about string length limitations for strings returned by sp_OAMethod calls. -- CREATE PROCEDURE ChilkatSample AS BEGIN DECLARE @hr int DECLARE @iTmp0 int -- Important: Do not use nvarchar(max). See the warning about using nvarchar(max). DECLARE @sTmp0 nvarchar(4000) -- This requires the Chilkat API to have been previously unlocked. -- See Global Unlock Sample for sample code. -- Note: This example requires Chilkat v9.5.0.66 or greater. -- This example takes a JSON signature in compact serialization format, -- and uses an RSA public key to validate and recover the protected header and payload. -- We only need a public key for signature validation. This is the RSA public key -- that is used: -- {"kty":"RSA", -- "n":"ofgWCuLjybRlzo0tZWJjNiuSfb4p4fAkd_wWJcyQoTbji9k0l8W26mPddx -- HmfHQp-Vaw-4qPCJrcS2mJPMEzP1Pt0Bm4d4QlL-yRT-SFd2lZS-pCgNMs -- D1W_YpRPEwOWvG6b32690r2jZ47soMZo9wGzjb_7OMg0LOL-bSf63kpaSH -- SXndS5z5rexMdbBYUsLA9e-KXBdQOS-UTo7WTBEMa2R2CapHg665xsmtdV -- MTBQY4uDZlxvb3qCo5ZwKh9kG4LT6_I5IhlJH7aGhyxXFvUK-DWNmoudF8 -- NAco9_h9iaGNj8q2ethFkMLs91kzk2PAcDTW9gb54h4FRWyuXpoQ", -- "e":"AQAB" -- } DECLARE @sbPubKey int -- Use "Chilkat_9_5_0.StringBuilder" for versions of Chilkat < 10.0.0 EXEC @hr = sp_OACreate 'Chilkat.StringBuilder', @sbPubKey OUT IF @hr <> 0 BEGIN PRINT 'Failed to create ActiveX component' RETURN END DECLARE @success int EXEC sp_OAMethod @sbPubKey, 'Append', @success OUT, '{"kty":"RSA",' EXEC sp_OAMethod @sbPubKey, 'Append', @success OUT, '"n":"ofgWCuLjybRlzo0tZWJjNiuSfb4p4fAkd_wWJcyQoTbji9k0l8W26mPddx' EXEC sp_OAMethod @sbPubKey, 'Append', @success OUT, 'HmfHQp-Vaw-4qPCJrcS2mJPMEzP1Pt0Bm4d4QlL-yRT-SFd2lZS-pCgNMs' EXEC sp_OAMethod @sbPubKey, 'Append', @success OUT, 'D1W_YpRPEwOWvG6b32690r2jZ47soMZo9wGzjb_7OMg0LOL-bSf63kpaSH' EXEC sp_OAMethod @sbPubKey, 'Append', @success OUT, 'SXndS5z5rexMdbBYUsLA9e-KXBdQOS-UTo7WTBEMa2R2CapHg665xsmtdV' EXEC sp_OAMethod @sbPubKey, 'Append', @success OUT, 'MTBQY4uDZlxvb3qCo5ZwKh9kG4LT6_I5IhlJH7aGhyxXFvUK-DWNmoudF8' EXEC sp_OAMethod @sbPubKey, 'Append', @success OUT, 'NAco9_h9iaGNj8q2ethFkMLs91kzk2PAcDTW9gb54h4FRWyuXpoQ",' EXEC sp_OAMethod @sbPubKey, 'Append', @success OUT, '"e":"AQAB"' EXEC sp_OAMethod @sbPubKey, 'Append', @success OUT, '}' DECLARE @pubKey int -- Use "Chilkat_9_5_0.PublicKey" for versions of Chilkat < 10.0.0 EXEC @hr = sp_OACreate 'Chilkat.PublicKey', @pubKey OUT DECLARE @success int EXEC sp_OAMethod @sbPubKey, 'GetAsString', @sTmp0 OUT EXEC sp_OAMethod @pubKey, 'LoadFromString', @success OUT, @sTmp0 IF @success <> 1 BEGIN EXEC sp_OAGetProperty @pubKey, 'LastErrorText', @sTmp0 OUT PRINT @sTmp0 EXEC @hr = sp_OADestroy @sbPubKey EXEC @hr = sp_OADestroy @pubKey RETURN END DECLARE @jws int -- Use "Chilkat_9_5_0.Jws" for versions of Chilkat < 10.0.0 EXEC @hr = sp_OACreate 'Chilkat.Jws', @jws OUT -- Set the RSA public key: DECLARE @signatureIndex int SELECT @signatureIndex = 0 EXEC sp_OAMethod @jws, 'SetPublicKey', @success OUT, @signatureIndex, @pubKey -- Load the JWS. DECLARE @sbJws int -- Use "Chilkat_9_5_0.StringBuilder" for versions of Chilkat < 10.0.0 EXEC @hr = sp_OACreate 'Chilkat.StringBuilder', @sbJws OUT EXEC sp_OAMethod @sbJws, 'Append', @success OUT, 'eyJhbGciOiJSUzI1NiJ9' EXEC sp_OAMethod @sbJws, 'Append', @success OUT, '.' EXEC sp_OAMethod @sbJws, 'Append', @success OUT, 'eyJpc3MiOiJqb2UiLA0KICJleHAiOjEzMDA4MTkzODAsDQogImh0dHA6Ly9leGFt' EXEC sp_OAMethod @sbJws, 'Append', @success OUT, 'cGxlLmNvbS9pc19yb290Ijp0cnVlfQ' EXEC sp_OAMethod @sbJws, 'Append', @success OUT, '.' EXEC sp_OAMethod @sbJws, 'Append', @success OUT, 'cC4hiUPoj9Eetdgtv3hF80EGrhuB__dzERat0XF9g2VtQgr9PJbu3XOiZj5RZmh7' EXEC sp_OAMethod @sbJws, 'Append', @success OUT, 'AAuHIm4Bh-0Qc_lF5YKt_O8W2Fp5jujGbds9uJdbF9CUAr7t1dnZcAcQjbKBYNX4' EXEC sp_OAMethod @sbJws, 'Append', @success OUT, 'BAynRFdiuB--f_nZLgrnbyTyWzO75vRK5h6xBArLIARNPvkSjtQBMHlb1L07Qe7K' EXEC sp_OAMethod @sbJws, 'Append', @success OUT, '0GarZRmB_eSN9383LcOLn6_dO--xi12jzDwusC-eOkHWEsqtFZESc6BfI7noOPqv' EXEC sp_OAMethod @sbJws, 'Append', @success OUT, 'hJ1phCnvWh6IeYI2w9QOYEUipUTI8np6LbgGY9Fs98rqVt5AXLIhWkWywlVmtVrB' EXEC sp_OAMethod @sbJws, 'Append', @success OUT, 'p0igcN_IoypGlUPQGe77Rw' EXEC sp_OAMethod @jws, 'LoadJwsSb', @success OUT, @sbJws IF @success <> 1 BEGIN EXEC sp_OAGetProperty @jws, 'LastErrorText', @sTmp0 OUT PRINT @sTmp0 EXEC @hr = sp_OADestroy @sbPubKey EXEC @hr = sp_OADestroy @pubKey EXEC @hr = sp_OADestroy @jws EXEC @hr = sp_OADestroy @sbJws RETURN END -- Validate the 1st (and only) signature at index 0.. DECLARE @v int EXEC sp_OAMethod @jws, 'Validate', @v OUT, @signatureIndex IF @v < 0 BEGIN -- Perhaps Chilkat was not unlocked or the trial expired.. PRINT 'Method call failed for some other reason.' EXEC sp_OAGetProperty @jws, 'LastErrorText', @sTmp0 OUT PRINT @sTmp0 EXEC @hr = sp_OADestroy @sbPubKey EXEC @hr = sp_OADestroy @pubKey EXEC @hr = sp_OADestroy @jws EXEC @hr = sp_OADestroy @sbJws RETURN END IF @v = 0 BEGIN PRINT 'Invalid signature. The RSA key was incorrect, the JWS was invalid, or both.' EXEC @hr = sp_OADestroy @sbPubKey EXEC @hr = sp_OADestroy @pubKey EXEC @hr = sp_OADestroy @jws EXEC @hr = sp_OADestroy @sbJws RETURN END -- If we get here, the signature was validated.. PRINT 'Signature validated.' PRINT '--' -- Recover the original content: PRINT 'Recovered content:' EXEC sp_OAMethod @jws, 'GetPayload', @sTmp0 OUT, 'utf-8' PRINT @sTmp0 PRINT '--' -- Examine the protected header: DECLARE @joseHeader int EXEC sp_OAMethod @jws, 'GetProtectedHeader', @joseHeader OUT, @signatureIndex EXEC sp_OAGetProperty @jws, 'LastMethodSuccess', @iTmp0 OUT IF @iTmp0 <> 1 BEGIN PRINT 'No protected header found at the given index.' EXEC @hr = sp_OADestroy @sbPubKey EXEC @hr = sp_OADestroy @pubKey EXEC @hr = sp_OADestroy @jws EXEC @hr = sp_OADestroy @sbJws RETURN END EXEC sp_OASetProperty @joseHeader, 'EmitCompact', 0 PRINT 'Protected (JOSE) header:' EXEC sp_OAMethod @joseHeader, 'Emit', @sTmp0 OUT PRINT @sTmp0 EXEC @hr = sp_OADestroy @joseHeader -- Output: -- Signature validated. -- -- -- Recovered content: -- {"iss":"joe", -- "exp":1300819380, -- "http://example.com/is_root":true} -- -- -- Protected (JOSE) header: -- { -- "alg": "RS256" -- } EXEC @hr = sp_OADestroy @sbPubKey EXEC @hr = sp_OADestroy @pubKey EXEC @hr = sp_OADestroy @jws EXEC @hr = sp_OADestroy @sbJws END GO |
||||
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.