Modern cryptographically secure software licensing using PASETO v4 tokens
Quantum-resistant, tamper-proof, and high-performance licensing solution
Quick Start β’ Security β’ API
Licensify is a professional software licensing library built on PASETO v4 tokens, providing a cryptographically superior alternative to traditional JWT-based licensing systems.
| Feature | JWT | Licensify (PASETO v4) |
|---|---|---|
| Algorithm Confusion | Vulnerable | Fixed algorithms |
| Quantum Resistance | No | Ed25519 ready |
| Performance | Slow | 10x faster |
| Token Tampering | Easy | Cryptographically impossible |
| Key Size | 2048+ bits | 32 bytes |
import 'package:licensify/licensify.dart';
// Method 1: Automatic key generation (recommended)
final result = await Licensify.createLicenseWithKeys(
appId: 'com.company.product',
expirationDate: DateTime.now().add(Duration(days: 365)),
type: LicenseType.pro,
features: {
'analytics': true,
'api_access': true,
'max_users': 100,
},
metadata: {
'customer': 'Acme Corporation',
'license_id': 'LIC-2025-001',
},
);
print('License: ${result.license.token}');
print('Public key: ${result.publicKeyBytes.length} bytes');// Validate license with key bytes (production recommended)
final validation = await Licensify.validateLicenseWithKeyBytes(
license: result.license,
publicKeyBytes: result.publicKeyBytes,
);
if (validation.isValid) {
print('β
License is valid!');
// Access verified license data
final appId = await result.license.appId;
final features = await result.license.features;
final metadata = await result.license.metadata;
// Check permissions
if (features['analytics'] == true) {
// Enable analytics features
}
} else {
print('β License invalid: ${validation.message}');
// Deny access
}// Try to create "better" license with wrong keys
final wrongKeys = await Licensify.generateSigningKeys();
final fakeLicense = await Licensify.createLicense(
privateKey: wrongKeys.privateKey,
appId: 'com.company.product', // Same app ID
expirationDate: DateTime.now().add(Duration(days: 999)), // Extended!
type: LicenseType.enterprise, // Upgraded!
features: {'max_users': 9999}, // More features!
);
// Try to validate with original key
final fakeValidation = await Licensify.validateLicenseWithKeyBytes(
license: fakeLicense,
publicKeyBytes: result.publicKeyBytes, // Original key
);
print('Fake license rejected: ${!fakeValidation.isValid}'); // true
print('Error: ${fakeValidation.message}'); // Signature verification error
// Cleanup
wrongKeys.privateKey.dispose();
wrongKeys.publicKey.dispose();- Secure-only API: Impossible to create licenses without cryptographic validation
- Tamper-proof: Any modification invalidates the signature instantly
- Quantum-resistant: Ed25519 provides 128-bit security level
- Fast: ~151 licenses/second throughput
- Compact: 32-byte keys vs 2048+ bit RSA
- Efficient: Automatic key cleanup and disposal
- Type-safe: Full Dart type safety with async/await
- Unified API: Single
Licensifyclass for all operations - Automatic cleanup: Built-in memory management
Algorithm: Ed25519 (Curve25519)
Token Format: PASETO v4.public
Security: 128-bit quantum-resistant
Key Size: 32 bytes
// Use short-lived tokens
final license = await Licensify.createLicense(
privateKey: keys.privateKey,
appId: 'com.company.app',
expirationDate: DateTime.now().add(Duration(minutes: 15)), // Short-lived
type: LicenseType.standard,
metadata: {
'jti': generateUniqueId(), // Prevents replay attacks
},
);
// Always dispose keys
try {
// Use license...
} finally {
keys.privateKey.dispose();
keys.publicKey.dispose();
}class LicenseManager {
static Future<bool> validateEnterpriseLicense(
String licenseToken,
List<int> publicKeyBytes,
) async {
try {
final license = License.fromToken(licenseToken);
final result = await Licensify.validateLicenseWithKeyBytes(
license: license,
publicKeyBytes: publicKeyBytes,
);
if (!result.isValid) return false;
// All data is cryptographically verified
final type = await license.type;
final features = await license.features;
// Business validation
return type.name == 'enterprise' &&
features['user_management'] == true;
} catch (e) {
return false;
}
}
}// Encrypt sensitive data
final encryptionResult = await Licensify.encryptDataWithKey(
data: {
'user_id': 'user_123',
'permissions': ['read', 'write', 'admin'],
},
);
// Decrypt data
final decryptionKey = Licensify.encryptionKeyFromBytes(encryptionResult.keyBytes);
try {
final decryptedData = await Licensify.decryptData(
encryptedToken: encryptionResult.encryptedToken,
encryptionKey: decryptionKey,
);
} finally {
decryptionKey.dispose();
}// Key Management
static Future<LicensifyKeyPair> generateSigningKeys()
static LicensifySymmetricKey generateEncryptionKey()
// License Creation
static Future<License> createLicense({...})
static Future<({License license, List<int> publicKeyBytes})> createLicenseWithKeys({...})
// License Validation
static Future<LicenseValidationResult> validateLicense({...})
static Future<LicenseValidationResult> validateLicenseWithKeyBytes({...})
// Data Encryption
static Future<Map<String, dynamic>> encryptData({...})
static Future<Map<String, dynamic>> decryptData({...})This project is licensed under the LGPL-3.0-or-later license.
Developed by Karim "nogipx" Mamatkazin
β Star β’ π Issues