I try to create a JWT system.
But I'm facing a problem when I Base64Url encode my header and payload json objects. My output base64UrlString is different from the https://jwt.io/ output string.
Why do I get two different output strings?
And if I paste my output string in https://jwt.io/ encoded area I get the error "Invalid Signature".
If I'm wrong, please help me to fix my code.
jwt.io output string:
eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJUaXRsZSI6Ik5pY2UiLCJuYW1lIjoiSmltbXkiLCJhZ2UiOjU1fQ.DSdqRFRPM4Hep704s3cvWkpH5FFpnIc82uVUswHbaz4
my output string:
WwogIHsKICAgICJ0eXAiIDogIkpXVCIsCiAgICAiYWxnIiA6ICJIUzI1NiIKICB9Cl0.WwogIHsKICAgICJhZ2UiIDogNTUsCiAgICAibmFtZSIgOiAiSmltbXkiLAogICAgIlRpdGxlIiA6ICJOaWNlIgogIH0KXQ.AhlqiFIcS-ytUKnhazsn7-eYNwgmXfwON7EN2gozRAw
class ViewController: UIViewController {
let headerJson: [[String: Any]] = [
[
"alg": "HS256",
"typ": "JWT"
]
]
let payloadJson: [[String: Any]] = [
[
"Title": "Nice",
"name": "Jimmy",
"age": 55
]
]
var base64UrlHeaderString: String = ""
var base64UrlPayloadString: String = ""
override func viewDidLoad() {
super.viewDidLoad()
let headerData = jsonToData(json: headerJson)
let headerString = headerData?.base64EncodedString()
if let headerString = headerString{
let str = base64ToBase64url(base64: headerString)
base64UrlHeaderString = str
print("base64UrlHeaderString : \(base64UrlHeaderString)")
}
let payloadData = jsonToData(json: payloadJson)
let payloadString = payloadData?.base64EncodedString()
if let payloadString = payloadString{
let str = base64ToBase64url(base64: payloadString)
base64UrlPayloadString = str
print("base64UrlPayloadString : \(base64UrlPayloadString)")
}
let totalString: String = base64UrlHeaderString + "." + base64UrlPayloadString
let signature = totalString.hmac(algorithm: .SHA256, key: "hello")
print("signature : \(signature)")
let finalString: String = base64UrlHeaderString + "." + base64UrlPayloadString + "." + signature
print("finalString : \(finalString)")
}
}
enum HMACAlgorithm {
case MD5, SHA1, SHA224, SHA256, SHA384, SHA512
func toCCHmacAlgorithm() -> CCHmacAlgorithm {
var result: Int = 0
switch self {
case .MD5:
result = kCCHmacAlgMD5
case .SHA1:
result = kCCHmacAlgSHA1
case .SHA224:
result = kCCHmacAlgSHA224
case .SHA256:
result = kCCHmacAlgSHA256
case .SHA384:
result = kCCHmacAlgSHA384
case .SHA512:
result = kCCHmacAlgSHA512
}
return CCHmacAlgorithm(result)
}
func digestLength() -> Int {
var result: CInt = 0
switch self {
case .MD5:
result = CC_MD5_DIGEST_LENGTH
case .SHA1:
result = CC_SHA1_DIGEST_LENGTH
case .SHA224:
result = CC_SHA224_DIGEST_LENGTH
case .SHA256:
result = CC_SHA256_DIGEST_LENGTH
case .SHA384:
result = CC_SHA384_DIGEST_LENGTH
case .SHA512:
result = CC_SHA512_DIGEST_LENGTH
}
return Int(result)
}
}
func base64ToBase64url(base64: String) -> String {
let base64url = base64
.replacingOccurrences(of: "+", with: "-")
.replacingOccurrences(of: "/", with: "_")
.replacingOccurrences(of: "=", with: "")
return base64url
}
func jsonToData(json: Any) -> Data? {
do {
return try JSONSerialization.data(withJSONObject: json, options: JSONSerialization.WritingOptions.prettyPrinted)
} catch let myJSONError {
print(myJSONError)
}
return nil
}
extension String {
func hmac(algorithm: HMACAlgorithm, key: String) -> String {
let cKey = key.cString(using: String.Encoding.utf8)
let cData = self.cString(using: String.Encoding.utf8)
var result = [CUnsignedChar](repeating: 0, count: Int(algorithm.digestLength()))
CCHmac(algorithm.toCCHmacAlgorithm(), cKey!, strlen(cKey!), cData!, strlen(cData!), &result)
let hmacData:NSData = NSData(bytes: result, length: (Int(algorithm.digestLength())))
let hmacBase64 = hmacData.base64EncodedString(options: .lineLength64Characters)
let hmacString = base64ToBase64url(base64: String(hmacBase64))
return hmacString
}
}
