JWT Authentication

Generate JWT token

1. Use PortOne secret key to generate JWT token

2. Algorithm used for generating token - "HS256"

3. Payload/claims to encode for generating token

   {

   "iss": "CHAIPAY",

   "sub": "SglffyyZgojEdXWL",

   "iat": 1516239022,

   "exp": 1516239122

   }

   Parameter	Description	Values
   iss	Issuer	Default Value: "CHAIPAY"
   sub	Subject	CHAIPay Key
   iat	Issued Timestamp in sec	Timestamp in sec
   exp	Expiry Timestamp in sec	Timestamp in sec+100

4. Add following Headers in request as shown in below request -

   X-Chaipay-Client-Key: Iamport_Client_Key

   Authorization: Bearer token

5. Sample curl request

   curl --location --request GET 'https://api.portone.cloud/api/payout/va/902000225690/balance' \

   --header 'X-Chaipay-Client-Key: SglffyyZgojEdXWL' \

   --header 'Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJDSEFJUEFZIiwic3ViIjoiY2hhaXBheV9jbGllbnRfaWQiLCJpYXQiOjE1MTYyMzkwMjIsImV4cCI6MTgzMDQwMDMxNn0.CJHQTY-6v5ILILamo13BhVdgK68AIH1oPwXYH4Iyffs' \

   --data-raw ''

Sample code to generate JWT token

Golang

package main

import (

"fmt"

"time"

"github.com/dgrijalva/jwt-go"

)

func GenerateToken(jwtKey []byte) string {

cur := time.Now()

expirationTime := cur.Add(100 * time.Second)

// Create the JWT claims, which includes the username and expiry time

claims := jwt.StandardClaims{

// In JWT, the expiry time is expressed as unix milliseconds

Issuer: "CHAIPAY",

Subject: "Chai Client ID",

IssuedAt: cur.Unix(),

ExpiresAt: expirationTime.Unix(),

}

// Declare the token with the algorithm used for signing, and the claims

token := jwt.NewWithClaims(jwt.SigningMethodHS256, claims)

// Create the JWT string

tokenString, _ := token.SignedString(jwtKey)

return tokenString

}

func main() {

jwtKey := []byte("my_secret_key")

fmt.Println(GenerateToken(jwtKey))

}

JavaScript

<script src="https://cdnjs.cloudflare.com/ajax/libs/crypto-js/3.1.9-1/crypto-js.min.js"></script>

<script src="https://cdnjs.cloudflare.com/ajax/libs/crypto-js/3.1.9-1/hmac-sha256.min.js"></script>

<script src="https://cdnjs.cloudflare.com/ajax/libs/crypto-js/3.1.9-1/enc-base64.min.js"></script>

<script type="text/javascript">

function getJWTToken(){

var header = {

"alg": "HS256",

"typ": "JWT"

};

var stringifiedHeader = CryptoJS.enc.Utf8.parse(JSON.stringify(header));

var encodedHeader = base64url(stringifiedHeader);

var timeNow = parseInt(new Date().getTime()/1000);

var data = {

"sub": "Chai Client Key",

"iss": "CHAIPAY",

"iat": timeNow,

"exp": timeNow+100,

};

var stringifiedData = CryptoJS.enc.Utf8.parse(JSON.stringify(data));

var encodedData = base64url(stringifiedData);

var token = encodedHeader + "." + encodedData;

var secret = "PortOne Secret Key";

var signature = CryptoJS.HmacSHA256(token, secret);

signature = base64url(signature);

var signedToken = token + "." + signature;

return signedToken;

}

let jwt_token = getJWTToken();

</script>