<head>

<meta charset="utf-8">

<title>Web Crypto API example</title>

<link rel="stylesheet" href="style.css">

</head>

<body>

<main>

<h1>Web Crypto: exportKey</h1>

<section class="description">

<p>This page shows the use of the <code>exportKey()</code> function of the <a href="https://developer.mozilla.org/en-US/docs/Web/API/Web_Crypto_API">Web Crypto API</a>.</p>

<p>On page load, it generates four keys:</p>

<ul>

<li>An AES-GCM secret key</li>

<li>An RSA-PSS signing key pair</li>

<li>An RSA-OAEP encryption key pair</li>

<li>An ECDSA signing key pair</li>

</ul>

<p>It provides four buttons across the top:</p>

<ul>

<li>Export the AES-GCM key in raw format</li>

<li>Export the RSA-PSS private key in PKCS #8 format</li>

<li>Export the RSA-OAEP public key in SubjectPublicKeyInfo format</li>

<li>Export the ECDSA private key in JWK format</li>

</ul>

<p>The exported key is written to the area below the buttons. PKCS #8 and SubjectPublicKeyInfo formats are further encoded as PEM objects.</p>

</section>

<section class="examples">

<section class="buttons">

<input class="raw export-key-button" type="button" value="Export AES-GCM key as raw">

<input class="pkcs8 export-key-button" type="button" value="Export RSA-PSS key as PKCS #8">

<input class="spki export-key-button" type="button" value="Export RSA-OAEP key as SPKI">

<input class="jwk export-key-button" type="button" value="Export ECDSA key as JWK">

</section>

<section class="output">

<pre class="exported-key"></pre>

</section>

</section>

</main>

</body>

<script src="raw.js"></script>

<script src="pkcs8.js"></script>

<script src="spki.js"></script>

<script src="jwk.js"></script>

(() => {

/*

async function exportCryptoKey(key) {

const exported = await window.crypto.subtle.exportKey(

"jwk",

key

);

const exportKeyOutput = document.querySelector(".exported-key");

exportKeyOutput.classList.add("fade-in");

exportKeyOutput.addEventListener("animationend", () => {

exportKeyOutput.classList.remove("fade-in");

});

exportKeyOutput.textContent = JSON.stringify(exported, null, " ");

}

/*

window.crypto.subtle.generateKey(

{

name: "ECDSA",

namedCurve: "P-384"

},

true,

["sign", "verify"]

).then((keyPair) => {

const exportButton = document.querySelector(".jwk");

exportButton.addEventListener("click", () => {

exportCryptoKey(keyPair.privateKey);

});

});

(() => {

/*

function ab2str(buf) {

return String.fromCharCode.apply(null, new Uint8Array(buf));

}

/*

async function exportCryptoKey(key) {

const exported = await window.crypto.subtle.exportKey(

"pkcs8",

key

);

const exportedAsString = ab2str(exported);

const exportedAsBase64 = window.btoa(exportedAsString);

const pemExported = `-----BEGIN PRIVATE KEY-----\n${exportedAsBase64}\n-----END PRIVATE KEY-----`;

const exportKeyOutput = document.querySelector(".exported-key");

exportKeyOutput.classList.add("fade-in");

exportKeyOutput.addEventListener("animationend", () => {

exportKeyOutput.classList.remove("fade-in");

});

exportKeyOutput.textContent = pemExported;

}

/*

window.crypto.subtle.generateKey(

{

name: "RSA-PSS",

// Consider using a 4096-bit key for systems that require long-term security

modulusLength: 2048,

publicExponent: new Uint8Array([1, 0, 1]),

hash: "SHA-256",

},

true,

["sign", "verify"]

).then((keyPair) => {

const exportButton = document.querySelector(".pkcs8");

exportButton.addEventListener("click", () => {

exportCryptoKey(keyPair.privateKey);

});

});

(() => {

/*

async function exportCryptoKey(key) {

const exported = await window.crypto.subtle.exportKey(

"raw",

key

);

const exportedKeyBuffer = new Uint8Array(exported);

const exportKeyOutput = document.querySelector(".exported-key");

exportKeyOutput.classList.add("fade-in");

exportKeyOutput.addEventListener("animationend", () => {

exportKeyOutput.classList.remove("fade-in");

});

exportKeyOutput.textContent = `[${exportedKeyBuffer}]`;

}

/*

window.crypto.subtle.generateKey(

{

name: "AES-GCM",

length: 256,

},

true,

["encrypt", "decrypt"]

).then((key) => {

const exportButton = document.querySelector(".raw");

exportButton.addEventListener("click", () => {

exportCryptoKey(key);

});

});

(() => {

/*

function ab2str(buf) {

return String.fromCharCode.apply(null, new Uint8Array(buf));

}

/*

async function exportCryptoKey(key) {

const exported = await window.crypto.subtle.exportKey(

"spki",

key

);

const exportedAsString = ab2str(exported);

const exportedAsBase64 = window.btoa(exportedAsString);

const pemExported = `-----BEGIN PUBLIC KEY-----\n${exportedAsBase64}\n-----END PUBLIC KEY-----`;

const exportKeyOutput = document.querySelector(".exported-key");

exportKeyOutput.classList.add("fade-in");

exportKeyOutput.addEventListener("animationend", () => {

exportKeyOutput.classList.remove("fade-in");

});

exportKeyOutput.textContent = pemExported;

}

/*

window.crypto.subtle.generateKey(

{

name: "RSA-OAEP",

// Consider using a 4096-bit key for systems that require long-term security

modulusLength: 2048,

publicExponent: new Uint8Array([1, 0, 1]),

hash: "SHA-256",

},

true,

["encrypt", "decrypt"]

).then((keyPair) => {

const exportButton = document.querySelector(".spki");

exportButton.addEventListener("click", () => {

exportCryptoKey(keyPair.publicKey);

});

});

* {

box-sizing: border-box;

}

html,body {

font-family: sans-serif;

line-height: 1.2rem;

}

h1 {

color: green;

margin-left: .5rem;

}

.description, .examples {

margin: 0 .5rem;

}

.description > p {

margin-top: 0;

}

.output {

box-shadow: inset 0 0 3px 1px black;

height: 100%;

}

.exported-key {

padding: 1em;

white-space: pre-wrap;

word-break: break-all;

}

main {

display: grid;

grid-template-columns: 45rem 1fr;

grid-template-rows: 4rem 1fr;

}

h1 {

grid-column: 1/2;

grid-row: 1;

}

.examples {

grid-column: 1;

grid-row: 2;

}

.description {

grid-column: 2;

grid-row: 2;

}

.fade-in {

animation: fadein .5s;

}

@keyframes fadein {

from {

opacity: 0;

}

to {

opacity: 1;

}

}