Sample code for 30+ languages & platforms
Node.js

Get ETK Public Key (api-acpt.ehealth.fgov.be)

See more Belgian eHealth Platform Examples

The following URL returns JSON, which contains a PKCS7 signed data:
https://api-acpt.ehealth.fgov.be/etee/v1/etks?identifier=12345678901&type=SSIN

This example extracts the signed data, validates it, and then extracts the public key from the certificate (obtained from signed content in the PKCS7)

Note: The URL above uses "12345678901" which is not valid. You should replace it with a valid number.

Chilkat Node.js Downloads

Node.js
NODEJS_PRELUDE

function chilkatExample() {

    var success = false;

    // This example requires the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    var http = new chilkat.Http();

    var jsonStr = http.QuickGetStr("https://api-acpt.ehealth.fgov.be/etee/v1/etks?identifier=12345678901&type=SSIN");
    if (http.LastMethodSuccess == false) {
        console.log(http.LastErrorText);
        return;
    }

    console.log(jsonStr);

    // The JSON contains something like this:

    // [
    //     {
    //         "key": {
    //             "applicationIdentifier": "",
    //             "ssin": "12345678901"
    //         },
    //         "value": "MIAGCSq....AAAAAAAA=="
    //     }
    // ]

    // Note: The above is a JSON array (not a JSON object)
    // It should be loaded into a Chilkat JSON array.
    var jarr = new chilkat.JsonArray();
    success = jarr.Load(jsonStr);
    if (success == false) {
        console.log("Failed to load JSON.");
        return;
    }

    // json: JsonObject
    var json = jarr.ObjectAt(0);
    var bdPkcs7 = new chilkat.BinData();
    bdPkcs7.AppendEncoded(json.StringOf("value"),"base64");

    // Let's verify the PKCS7, and then examine the signing cert,
    // and get the signing cert's public key.
    var crypt = new chilkat.Crypt2();

    // Validate the signedData PKCS7, and replace the contents of bdPkcs7 with the extracted signed content.
    success = crypt.OpaqueVerifyBd(bdPkcs7);
    if (success == false) {
        console.log(crypt.LastErrorText);
        return;
    }

    // The signed content is the DER of a certificate.
    // In other words, bdPkcs7 now contains a certificate.
    var cert = new chilkat.Cert();
    success = cert.LoadFromBd(bdPkcs7);
    if (success == false) {
        console.log(cert.LastErrorText);
        return;
    }

    // Show some certificate information:
    console.log("Subject: " + cert.SubjectDN);
    console.log("Serial: " + cert.SerialNumber);
    console.log("Issuer: " + cert.IssuerDN);

    // Let's get the cert's public key...
    var pubKey = new chilkat.PublicKey();
    cert.GetPublicKey(pubKey);

    // OK, you now have the public key and can do whatever is needed..
    console.log(pubKey.KeyType);
    console.log(pubKey.KeySize);

}

chilkatExample();