|
Chilkat • HOME • Android™ • Classic ASP • C • C++ • C# • Mono C# • .NET Core C# • C# UWP/WinRT • DataFlex • Delphi ActiveX • Delphi DLL • Visual FoxPro • Java • Lianja • MFC • Objective-C • Perl • PHP ActiveX • PHP Extension • PowerBuilder • PowerShell • PureBasic • CkPython • Chilkat2-Python • Ruby • SQL Server • Swift 2 • Swift 3,4,5... • Tcl • Unicode C • Unicode C++ • Visual Basic 6.0 • VB.NET • VB.NET UWP/WinRT • VBScript • Xojo Plugin • Node.js • Excel • Go
(MFC) Create XAdES using Smart Card or USB TokenDemonstrates how to create an XAdES signed XML document using a certificate located on a smartcard or USB token. Note: This example requires Chilkat v9.5.0.75 or greater. Also, at the time of this writing this example is restricted to the Windows operating system.
#include <CkXml.h> #include <CkXmlDSigGen.h> #include <CkCert.h> #include <CkStringBuilder.h> #include <CkXmlDSig.h> void ChilkatSample(void) { CkString strOut; // ---------------------------------------------------------------------- // IMPORTANT: This generated example requires Chilkat v9.5.0.75 or later. // Contact support@chilkatsoft.com for a pre-release. // ---------------------------------------------------------------------- // Load the XML to be signed. CkXml xmlToSign; bool success = xmlToSign.LoadXmlFile("qa_data/fattura_electronica/docToSign.xml"); if (success != true) { strOut.append(xmlToSign.lastErrorText()); strOut.append("\r\n"); SetDlgItemText(IDC_EDIT1,strOut.getUnicode()); return; } CkXmlDSigGen gen; gen.put_SigLocation("p:FatturaElettronica"); gen.put_SigId("xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504"); gen.put_SigNamespacePrefix("ds"); gen.put_SigNamespaceUri("http://www.w3.org/2000/09/xmldsig#"); gen.put_SigValueId("xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-sigvalue"); gen.put_SignedInfoCanonAlg("C14N"); gen.put_SignedInfoDigestMethod("sha256"); // Create an Object to be added to the Signature. // Note: Chilkat will automatically populate the strings indicated by "TO BE GENERATED BY CHILKAT" with actual/correct values // when the XML is signed. CkXml object1; object1.put_Tag("xades:QualifyingProperties"); object1.AddAttribute("xmlns:xades","http://uri.etsi.org/01903/v1.3.2#"); object1.AddAttribute("xmlns:xades141","http://uri.etsi.org/01903/v1.4.1#"); object1.AddAttribute("Target","#xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504"); object1.UpdateAttrAt("xades:SignedProperties",true,"Id","xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-signedprops"); object1.UpdateChildContent("xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningTime","TO BE GENERATED BY CHILKAT"); object1.UpdateAttrAt("xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningCertificate|xades:Cert|xades:CertDigest|ds:DigestMethod",true,"Algorithm","http://www.w3.org/2001/04/xmlenc#sha256"); object1.UpdateChildContent("xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningCertificate|xades:Cert|xades:CertDigest|ds:DigestValue","TO BE GENERATED BY CHILKAT"); object1.UpdateChildContent("xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningCertificate|xades:Cert|xades:IssuerSerial|ds:X509IssuerName","TO BE GENERATED BY CHILKAT"); object1.UpdateChildContent("xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningCertificate|xades:Cert|xades:IssuerSerial|ds:X509SerialNumber","TO BE GENERATED BY CHILKAT"); gen.AddObject("",object1.getXml(),"",""); // -------- Reference 1 -------- gen.put_KeyInfoId("xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-keyinfo"); gen.AddSameDocRef("xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-keyinfo","sha256","","",""); // -------- Reference 2 -------- gen.AddSameDocRef("","sha256","","",""); gen.SetRefIdAttr("","xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-ref0"); // -------- Reference 3 -------- gen.AddObjectRef("xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-signedprops","sha256","","","http://uri.etsi.org/01903#SignedProperties"); // ---------------------------------------------------------------- // Load a certificate that has been pre-installed on the Windows system // This includes certificates on smartcards and USB tokens CkCert cert; // Load the certificate on the smartcard currently in the reader (or on the USB token). // Pass an empty string to allow Chilkat to automatically choose the CSP (Cryptographi Service Provider). // See Load Certificate on Smartcard for information about explicitly selecting a particular CSP. success = cert.LoadFromSmartcard(""); if (success != true) { strOut.append(cert.lastErrorText()); strOut.append("\r\n"); SetDlgItemText(IDC_EDIT1,strOut.getUnicode()); return; } // You may provide the PIN here. Otherwise Windows will display a PIN dialog. cert.put_SmartCardPin("000000"); gen.SetX509Cert(cert,true); gen.put_KeyInfoType("X509Data"); gen.put_X509Type("Certificate"); // Load XML to be signed... CkStringBuilder sbXml; xmlToSign.GetXmlSb(sbXml); gen.put_Behaviors("IndentedSignature,ForceAddEnvelopedSignatureTransform"); // Sign the XML... success = gen.CreateXmlDSigSb(sbXml); if (success != true) { strOut.append(gen.lastErrorText()); strOut.append("\r\n"); SetDlgItemText(IDC_EDIT1,strOut.getUnicode()); return; } // Save the signed XMl to a file. success = sbXml.WriteFile("qa_output/signedXml.xml","utf-8",false); strOut.append(sbXml.getAsString()); strOut.append("\r\n"); // ---------------------------------------- // Verify the signature we just produced... CkXmlDSig verifier; success = verifier.LoadSignatureSb(sbXml); if (success != true) { strOut.append(verifier.lastErrorText()); strOut.append("\r\n"); SetDlgItemText(IDC_EDIT1,strOut.getUnicode()); return; } bool verified = verifier.VerifySignature(true); if (verified != true) { strOut.append(verifier.lastErrorText()); strOut.append("\r\n"); SetDlgItemText(IDC_EDIT1,strOut.getUnicode()); return; } strOut.append("This signature was successfully verified."); strOut.append("\r\n"); SetDlgItemText(IDC_EDIT1,strOut.getUnicode()); } |
||||
© 2000-2022 Chilkat Software, Inc. All Rights Reserved.