Swift
Swift
JWE using ECDH-ES+A256KW
See more JSON Web Encryption (JWE) Examples
Create a JWE with the following public/private key pair:
{
"kty": "EC",
"d": "jZCffzVqJjryBH4EoaN0oD-TyLXrW2XHoDdIuPZnk8c",
"use": "enc",
"crv": "P-256",
"kid": "evEK2thJMsWxBYRivXI8ykUf6n6zizLiLCGH3s58wKs",
"x": "LOakgGvxWBsWbCPLY6Vq6OuBktIqG8POXFXe7ngQ2oM",
"y": "voJvS6I-Mc4qqmEA_G2hLQqBck3a3vqaJbmzY7YPUD4",
"alg": "ECDH-ES+A256KW"
}
Also shows how to decrypt.
Chilkat Swift Downloads
func chilkatTest() {
var success: Bool = false
// This requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
// Create the following JSON:
// {
// "kty": "EC",
// "d": "jZCffzVqJjryBH4EoaN0oD-TyLXrW2XHoDdIuPZnk8c",
// "use": "enc",
// "crv": "P-256",
// "kid": "evEK2thJMsWxBYRivXI8ykUf6n6zizLiLCGH3s58wKs",
// "x": "LOakgGvxWBsWbCPLY6Vq6OuBktIqG8POXFXe7ngQ2oM",
// "y": "voJvS6I-Mc4qqmEA_G2hLQqBck3a3vqaJbmzY7YPUD4",
// "alg": "ECDH-ES+A256KW"
// }
let json = CkoJsonObject()!
json.updateString(jsonPath: "kty", value: "EC")
json.updateString(jsonPath: "d", value: "jZCffzVqJjryBH4EoaN0oD-TyLXrW2XHoDdIuPZnk8c")
json.updateString(jsonPath: "use", value: "enc")
json.updateString(jsonPath: "crv", value: "P-256")
json.updateString(jsonPath: "kid", value: "evEK2thJMsWxBYRivXI8ykUf6n6zizLiLCGH3s58wKs")
json.updateString(jsonPath: "x", value: "LOakgGvxWBsWbCPLY6Vq6OuBktIqG8POXFXe7ngQ2oM")
json.updateString(jsonPath: "y", value: "voJvS6I-Mc4qqmEA_G2hLQqBck3a3vqaJbmzY7YPUD4")
json.updateString(jsonPath: "alg", value: "ECDH-ES+A256KW")
let pubkey = CkoPublicKey()!
success = pubkey.load(fromString: json.emit())
if success == false {
print("\(pubkey.lastErrorText!)")
return
}
// Build our protected header:
// {
// "alg": "ECDH-ES+A256KW",
// "enc": "A256GCM",
// "exp": 1621957030,
// "cty": "NJWT",
// "epk": {
// "kty": "EC",
// "x": "QLpJ_LpFx-6yJhsb4OvHwU1khLnviiOwYOvmf5clK7w"
// "y": "AJh7pJ3zZKDJkm8rbeG69GBooTosXJgSsvNFH0i3Vxnu"
// "crv": "BP-256"
// }
// }
// Use jwt only for getting the current date/time + 3600 seconds.
let jwt = CkoJwt()!
let jweProtHdr = CkoJsonObject()!
jweProtHdr.updateString(jsonPath: "alg", value: "ECDH-ES+A256KW")
jweProtHdr.updateString(jsonPath: "enc", value: "A256GCM")
jweProtHdr.updateInt(jsonPath: "exp", value: jwt.genNumericDate(numSecOffset: 3600).intValue)
jweProtHdr.updateString(jsonPath: "cty", value: "NJWT")
jweProtHdr.updateString(jsonPath: "epk.kty", value: "EC")
jweProtHdr.updateString(jsonPath: "epk.x", value: "LOakgGvxWBsWbCPLY6Vq6OuBktIqG8POXFXe7ngQ2oM")
jweProtHdr.updateString(jsonPath: "epk.y", value: "voJvS6I-Mc4qqmEA_G2hLQqBck3a3vqaJbmzY7YPUD4")
jweProtHdr.updateString(jsonPath: "epk.crv", value: "P-256")
let jwe = CkoJwe()!
jwe.setProtectedHeader(json: jweProtHdr)
jwe.setPublicKey(index: 0, pubKey: pubkey)
var plainText: String? = "This is the text to be encrypted."
var strJwe: String? = jwe.encrypt(content: plainText, charset: "utf-8")
if jwe.lastMethodSuccess != true {
print("\(jwe.lastErrorText!)")
return
}
print("\(strJwe!)")
// Let's decrypt...
let privkey = CkoPrivateKey()!
success = privkey.loadJwk(jsonStr: json.emit())
if success == false {
print("\(privkey.lastErrorText!)")
return
}
let jwe2 = CkoJwe()!
success = jwe2.load(jwe: strJwe)
if success == false {
print("\(jwe2.lastErrorText!)")
return
}
jwe2.setPrivateKey(index: 0, privKey: privkey)
// Decrypt.
var decryptedText: String? = jwe2.decrypt(index: 0, charset: "utf-8")
if jwe2.lastMethodSuccess != true {
print("\(jwe2.lastErrorText!)")
return
}
print("\(decryptedText!)")
}