C
C
Use HTTPS Client Certificate from .cer and .key Files
See more HTTP Examples
Demonstrates how to load a cert + private key from .cer and .key (base64) files and use it for mutual TLS authentication (client-side certificate).Chilkat C Downloads
#include <C_CkHttp.h>
#include <C_CkCert.h>
#include <C_CkPrivateKey.h>
#include <C_CkBinData.h>
void ChilkatSample(void)
{
BOOL success;
HCkHttp http;
HCkCert cert;
HCkPrivateKey privKey;
HCkBinData bd;
success = FALSE;
// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
http = CkHttp_Create();
cert = CkCert_Create();
privKey = CkPrivateKey_Create();
// Load any type of certificate (.cer, .p7b, .pem, etc.) by calling LoadFromFile.
success = CkCert_LoadFromFile(cert,"qa_data/certs/sample_cert_a.cer");
if (success != TRUE) {
printf("%s\n",CkCert_lastErrorText(cert));
CkHttp_Dispose(http);
CkCert_Dispose(cert);
CkPrivateKey_Dispose(privKey);
return;
}
// Load the private key.
bd = CkBinData_Create();
success = CkBinData_LoadFile(bd,"qa_data/certs/sample_key_a.key");
success = CkPrivateKey_LoadAnyFormat(privKey,bd,"privateKeyPasswordIfNecessary");
if (success != TRUE) {
printf("%s\n",CkPrivateKey_lastErrorText(privKey));
CkHttp_Dispose(http);
CkCert_Dispose(cert);
CkPrivateKey_Dispose(privKey);
CkBinData_Dispose(bd);
return;
}
// Associate the private key with the cert.
success = CkCert_SetPrivateKey(cert,privKey);
if (success != TRUE) {
printf("%s\n",CkCert_lastErrorText(cert));
CkHttp_Dispose(http);
CkCert_Dispose(cert);
CkPrivateKey_Dispose(privKey);
CkBinData_Dispose(bd);
return;
}
// Set the certificate to be used for mutual TLS authentication
// (i.e. sets the client-side certificate for two-way TLS authentication)
success = CkHttp_SetSslClientCert(http,cert);
if (success != TRUE) {
printf("%s\n",CkHttp_lastErrorText(http));
CkHttp_Dispose(http);
CkCert_Dispose(cert);
CkPrivateKey_Dispose(privKey);
CkBinData_Dispose(bd);
return;
}
// At this point, the HTTP object instance is setup with the client-side cert, and any SSL/TLS
// connection will automatically use it if the server demands a client-side cert.
CkHttp_Dispose(http);
CkCert_Dispose(cert);
CkPrivateKey_Dispose(privKey);
CkBinData_Dispose(bd);
}