Chilkat HOME Android™ Classic ASP C C++ C# Mono C# .NET Core C# C# UWP/WinRT DataFlex Delphi ActiveX Delphi DLL Visual FoxPro Java Lianja MFC Objective-C Perl PHP ActiveX PHP Extension PowerBuilder PowerShell PureBasic CkPython Chilkat2-Python Ruby SQL Server Swift 2 Swift 3,4,5... Tcl Unicode C Unicode C++ Visual Basic 6.0 VB.NET VB.NET UWP/WinRT VBScript Xojo Plugin Node.js Excel Go
(MFC) CAdES BES Attached (Opaque) SignatureDemonstrates how to create a CAdES BES attached signature file (.p7m). This is a PKCS7 signature format (known as an opaque, or "attached" signature) where the file data is embedded within the signature file. The signature verification both verifies the signature and extracts the original data. (A "detached" signature is where the original data is NOT included within the PKCS7 signature format.)
#include <CkCrypt2.h> #include <CkCert.h> void ChilkatSample(void) { CkString strOut; // This example assumes the Chilkat API to have been previously unlocked. // See Global Unlock Sample for sample code. CkCrypt2 crypt; // Use a digital certificate and private key from a PFX file (.pfx or .p12). const char *pfxPath = "qa_data/pfx/myCertAndPrivateKey.p12"; const char *pfxPassword = "password"; CkCert cert; bool success = cert.LoadPfxFile(pfxPath,pfxPassword); if (success != true) { strOut.append(cert.lastErrorText()); strOut.append("\r\n"); SetDlgItemText(IDC_EDIT1,strOut.getUnicode()); return; } // Tell the crypt component to use this cert. success = crypt.SetSigningCert(cert); if (success != true) { strOut.append(crypt.lastErrorText()); strOut.append("\r\n"); SetDlgItemText(IDC_EDIT1,strOut.getUnicode()); return; } // The CadesEnabled property applies to all methods that create PKCS7 signatures. // To create a CAdES-BES signature, set this property equal to true. crypt.put_CadesEnabled(true); // To sign with SHA1, set the HashAlgorithm property to "sha1" crypt.put_HashAlgorithm("sha1"); // To sign with SHA256, set the HashAlgorithm property to "SHA256". crypt.put_HashAlgorithm("sha256"); // Other hash algorithm choices are "md5", "md2", "sha384", and "sha512" // We can sign any type of file, creating a .p7m as output. // The .p7m contains the signature and also embeds the data of the file that is signed. const char *inFile = "qa_data/json/sample.json"; const char *sigFile = "qa_output/signature.p7m"; // Create the CAdES-BES attached signature, which contains the original data. success = crypt.CreateP7M(inFile,sigFile); if (success == false) { strOut.append(crypt.lastErrorText()); strOut.append("\r\n"); SetDlgItemText(IDC_EDIT1,strOut.getUnicode()); return; } // Verify the .p7m file and extract the original file from the .p7m. const char *extractedToFilePath = "qa_output/sample.json"; success = crypt.VerifyP7M(sigFile,extractedToFilePath); if (success == false) { strOut.append(crypt.lastErrorText()); strOut.append("\r\n"); SetDlgItemText(IDC_EDIT1,strOut.getUnicode()); return; } strOut.append("Success!"); strOut.append("\r\n"); SetDlgItemText(IDC_EDIT1,strOut.getUnicode()); } |
© 2000-2022 Chilkat Software, Inc. All Rights Reserved.