Chilkat HOME .NET Core C# Android™ AutoIt C C# C++ Chilkat2-Python CkPython Classic ASP DataFlex Delphi ActiveX Delphi DLL Go Java Lianja Mono C# Node.js Objective-C PHP ActiveX PHP Extension Perl PowerBuilder PowerShell PureBasic Ruby SQL Server Swift 2 Swift 3,4,5... Tcl Unicode C Unicode C++ VB.NET VBScript Visual Basic 6.0 Visual FoxPro Xojo Plugin
(Java) HTTP Basic Auth with Secure StringsDemonstrates how to do HTTP basic authentication using secure strings. This example requires Chilkat v9.5.0.71 or greater.
import com.chilkatsoft.*; public class ChilkatExample { static { try { System.loadLibrary("chilkat"); } catch (UnsatisfiedLinkError e) { System.err.println("Native code library failed to load.\n" + e); System.exit(1); } } public static void main(String argv[]) { // This example requires the Chilkat API to have been previously unlocked. // See Global Unlock Sample for sample code. boolean success; // Imagine we've previously saved our encrypted login and password within a JSON config file // that contains this: // { // "http_login": "mCrOmA7mBA7Au9RuJGb9hw==", // "http_password": "jJtiI9TgErTTpqBz9JtHBw==" // } CkJsonObject json = new CkJsonObject(); json.LoadFile("qa_data/passwords/http.json"); CkCrypt2 crypt = new CkCrypt2(); // These are the encryption settings we previously used to encrypt the credentials within the JSON config file. crypt.put_CryptAlgorithm("aes"); crypt.put_CipherMode("cbc"); crypt.put_KeyLength(128); crypt.SetEncodedKey("000102030405060708090A0B0C0D0E0F","hex"); crypt.SetEncodedIV("000102030405060708090A0B0C0D0E0F","hex"); crypt.put_EncodingMode("base64"); CkSecureString ssLogin = new CkSecureString(); CkSecureString ssPassword = new CkSecureString(); // Decrypt to the secure string. (the strings will still held in memory encrypted, but are now encrypted using // a randomly generated session key.) crypt.DecryptSecureENC(json.stringOf("http_login"),ssLogin); crypt.DecryptSecureENC(json.stringOf("http_password"),ssPassword); CkHttp http = new CkHttp(); // Cause the "Authorization: Basic ..." header to be added to HTTP requests // by setting the Login and Password properties. However, instead of setting the password property // directly, set it via the SetPassword method using the secure string. http.put_Login(ssLogin.access()); http.SetPassword(ssPassword); // Also indicate that Basic authentication is to be used.. http.put_BasicAuth(true); // Do an HTTP GET w/ Basic authentication. // REMEMBER: Always use TLS with Basic authentication. Otherwise your credentials are exposed for the world to see.. String responseStr = http.quickGetStr("https://www.chilkatsoft.com/helloWorld.html"); // Show the request header we sent in the QuickGetStr: System.out.println(http.lastHeader()); // The LastHeader looks something like this: // GET /helloWorld.html HTTP/1.1 // Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 // Connection: keep-alive // User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64; rv:49.0) Gecko/20100101 Firefox/49.0 // Accept-Language: en-us,en;q=0.5 // Authorization: Basic bXlIdHRwTG9naW46bXlIdHRwUGFzc3dvcmQ= // Accept-Encoding: gzip // Host: www.chilkatsoft.com } } |
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.