Sample code for 30+ languages & platforms
Pascal (Lazarus/Delphi)

Create JWT using a Certificate's Private Key

See more JSON Web Token (JWT) Examples

Demonstrates how to create a JWT using a certificate's private key.

Chilkat Pascal (Lazarus/Delphi) Downloads

Pascal (Lazarus/Delphi)
program ChilkatDemo;

// Demonstrates using the Chilkat Pascal wrapper via the C bridge DLL.
// Builds as a console application under Lazarus (FPC) or Delphi.

{$IFDEF FPC}
  {$MODE DELPHI}
{$ENDIF}
{$APPTYPE CONSOLE}

uses
  {$IFDEF UNIX}
  cthreads,
  {$ENDIF}
  SysUtils,
  CkDllLoader,
  Chilkat.Jwt,
  Chilkat.JsonObject,
  Chilkat.Cert;

// ---------------------------------------------------------------------------

procedure RunDemo;
var
  success: Boolean;
  cert: TCert;
  jwt: TJwt;
  jose: TJsonObject;
  claims: TJsonObject;
  curDateTime: Integer;
  token: string;

begin
  success := False;

  //  This example requires the Chilkat API to have been previously unlocked.
  //  See Global Unlock Sample for sample code.

  //  Demonstrates how to create a JWT using an certificate's private key.

  cert := TCert.Create;

  //  Load an ECC private key from a PEM file.
  success := cert.LoadPfxFile('c:/temp/myPfx.pfx','pfxPassword');
  if (success <> True) then
    begin
      WriteLn(cert.LastErrorText);
      Exit;
    end;

  jwt := TJwt.Create;

  //  Build the JOSE header
  jose := TJsonObject.Create;
  //  Note: The IsEcdsa function was added in Chilkat v10.1.0
  if (cert.IsEcdsa() = True) then
    begin
      //  Use ES256.  Pass the string "ES384" or "ES512" to use ECC with SHA-384 or SHA-512.
      jose.AppendString('alg','ES256');
    end
  else
    begin
      //  Probably RSA...
      //  Use RS256.  Pass the string "RS384" or "RS512" to use RSA with SHA-384 or SHA-512.
      jose.AppendString('alg','RS256');
    end;

  jose.AppendString('typ','JWT');

  //  Now build the JWT claims (also known as the payload)
  claims := TJsonObject.Create;
  claims.AppendString('iss','http://example.org');
  claims.AppendString('sub','John');
  claims.AppendString('aud','http://example.com');

  //  Set the timestamp of when the JWT was created to now.
  curDateTime := jwt.GenNumericDate(0);
  claims.AddIntAt(-1,'iat',curDateTime);

  //  Set the "not process before" timestamp to now.
  claims.AddIntAt(-1,'nbf',curDateTime);

  //  Set the timestamp defining an expiration time (end time) for the token
  //  to be now + 1 hour (3600 seconds)
  claims.AddIntAt(-1,'exp',curDateTime + 3600);

  //  Produce the smallest possible JWT:
  jwt.AutoCompact := True;

  //  Create the JWT token.
  token := jwt.CreateJwtCert(jose.Emit(),claims.Emit(),cert);

  WriteLn(token);

  //  Example output:
  //  eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJodHRwOi8vZXhhbXBsZS5vcmciLCJzdWIiOiJKb2huIiwiYXVkIjoiaHR0cDovL2V4YW1wbGUuY29tIiwiaWF0IjoxNDg1NzA4NzkyLCJuYmYiOjE0ODU3MDg3OTIsImV4cCI6MTQ4NTcxMjM5Mn0.wqsuyJpxJ073ox-lOiLFqG1lQocXe4hGf2XGZJRrO3qn0UusxI_bu3Gzky8gBsH4sA4u9TWZn5M-1wYMMIJk6Q


  cert.Free;
  jwt.Free;
  jose.Free;
  claims.Free;

end;

// ---------------------------------------------------------------------------

begin

  try
    RunDemo;
  except
    on E: Exception do
      WriteLn('Unhandled exception: ', E.ClassName, ': ', E.Message);
  end;

  WriteLn;
  {$IFDEF MSWINDOWS}
  WriteLn('Press Enter to exit...');
  ReadLn;
  {$ENDIF}
end.