Starting November 20, the site will be set to read-only.
On December 4, 2023,
Apex Code Development (90768)
General Development (55146)
Visualforce Development (37251)
Lightning (18265)
APIs and Integration (17146)
Trailhead (11680)
Formulas & Validation Rules Discussion (11337)
Other Salesforce Applications (8116)
Jobs Board (6655)
Force.com Sites & Site.com (4842)
Mobile (2694)
You need to sign in to do that
Don't have an account?
Shivani Jain 35 
Use below classes
public class JWT { public String alg {get;set;} public String iss {get;set;} public String sub {get;set;} public String aud {get;set;} public String exp {get;set;} public String iat {get;set;} public Map<String,String> claims {get;set;} public Integer validFor {get;set;} public String cert {get;set;} public String pkcs8 {get;set;} public String privateKey {get;set;} public static final String HS256 = 'HS256'; public static final String RS256 = 'RS256'; public static final String NONE = 'none'; public JWT(String alg) { this.alg = alg; this.validFor = 300; } public String issue() { String jwt = ''; JSONGenerator header = JSON.createGenerator(false); header.writeStartObject(); header.writeStringField('alg', this.alg); header.writeEndObject(); String encodedHeader = base64URLencode(Blob.valueOf(header.getAsString())); JSONGenerator body = JSON.createGenerator(false); body.writeStartObject(); body.writeStringField('iss', this.iss); body.writeStringField('sub', this.sub); body.writeStringField('aud', this.aud); Long rightNow = (dateTime.now().getTime()/1000)+1; body.writeNumberField('iat', rightNow); body.writeNumberField('exp', (rightNow + validFor)); if (claims != null) { for (String claim : claims.keySet()) { body.writeStringField(claim, claims.get(claim)); } } body.writeEndObject(); jwt = encodedHeader + '.' + base64URLencode(Blob.valueOf(body.getAsString())); if ( this.alg == HS256 ) { Blob key = EncodingUtil.base64Decode(privateKey); Blob signature = Crypto.generateMac('hmacSHA256',Blob.valueof(jwt),key); jwt += '.' + base64URLencode(signature); } else if ( this.alg == RS256 ) { Blob signature = null; if (cert != null ) { signature = Crypto.signWithCertificate('rsa-sha256', Blob.valueOf(jwt), cert); } else { Blob privateKey = EncodingUtil.base64Decode(pkcs8); signature = Crypto.sign('rsa-sha256', Blob.valueOf(jwt), privateKey); } jwt += '.' + base64URLencode(signature); } else if ( this.alg == NONE ) { jwt += '.'; } return jwt; } public String base64URLencode(Blob input){ String output = encodingUtil.base64Encode(input); output = output.replace('+', '-'); output = output.replace('/', '_'); while ( output.endsWith('=')){ output = output.subString(0,output.length()-1); } return output; } }public class JWTBearerFlow { public static String getAccessToken(String tokenEndpoint, JWT jwt) { String access_token = null; String body = 'grant_type=urn%3Aietf%3Aparams%3Aoauth%3Agrant-type%3Ajwt-bearer&assertion=' + jwt.issue(); HttpRequest req = new HttpRequest(); req.setMethod('POST'); req.setEndpoint(tokenEndpoint); req.setHeader('Content-type', 'application/x-www-form-urlencoded'); req.setBody(body); Http http = new Http(); HTTPResponse res = http.send(req); if ( res.getStatusCode() == 200 ) { System.JSONParser parser = System.JSON.createParser(res.getBody()); while (parser.nextToken() != null) { if ((parser.getCurrentToken() == JSONToken.FIELD_NAME) && (parser.getText() == 'access_token')) { parser.nextToken(); access_token = parser.getText(); break; } } } return access_token; } }If this answers your question mark Best Answer it as solution and then hit Like!