C
C
Load Certs from Java KeyStore into Trusted CA Roots
See more Java KeyStore (JKS) Examples
Demonstrates how to load a Java KeyStore containing CA root certificates that are to be trusted by the application. This can be done once at the beginning of an application, and then the trusted roots can be activated so that only these root CA certs are trusted by the application for any TLS connections.Chilkat C Downloads
#include <C_CkJavaKeyStore.h>
#include <C_CkTrustedRoots.h>
#include <C_CkCert.h>
void ChilkatSample(void)
{
BOOL success;
HCkJavaKeyStore jks;
const char *password;
HCkTrustedRoots troots;
int i;
int numCerts;
HCkCert cacert;
success = FALSE;
// This requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
jks = CkJavaKeyStore_Create();
CkJavaKeyStore_putVerboseLogging(jks,TRUE);
password = "myPassword";
success = CkJavaKeyStore_LoadFile(jks,password,"qa_data/jks/entrust_caCerts.jks");
if (success != TRUE) {
printf("%s\n",CkJavaKeyStore_lastErrorText(jks));
CkJavaKeyStore_Dispose(jks);
return;
}
troots = CkTrustedRoots_Create();
CkTrustedRoots_putVerboseLogging(troots,TRUE);
success = CkTrustedRoots_AddJavaKeyStore(troots,jks);
if (success != TRUE) {
printf("%s\n",CkTrustedRoots_lastErrorText(troots));
CkJavaKeyStore_Dispose(jks);
CkTrustedRoots_Dispose(troots);
return;
}
i = 0;
numCerts = CkTrustedRoots_getNumCerts(troots);
while ((i < numCerts)) {
cacert = CkTrustedRoots_GetCert(troots,i);
printf("%d: %s\n",i,CkCert_subjectDN(cacert));
CkCert_Dispose(cacert);
i = i + 1;
}
// Activate this specific set of trusted roots.
success = CkTrustedRoots_Activate(troots);
if (success != TRUE) {
printf("%s\n",CkTrustedRoots_lastErrorText(troots));
CkJavaKeyStore_Dispose(jks);
CkTrustedRoots_Dispose(troots);
return;
}
// Output:
// 0: C=US, O=Entrust.net, OU=www.entrust.net/CPS incorp. by ref. (limits liab.), OU=(c) 1999 Entrust.net Limited, CN=Entrust.net Secure Server Certification Authority
// 1: O=Entrust.net, OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.), OU=(c) 1999 Entrust.net Limited, CN=Entrust.net Certification Authority (2048)
// 2: C=US, O="Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, OU="(c) 2006 Entrust, Inc.", CN=Entrust Root Certification Authority
CkJavaKeyStore_Dispose(jks);
CkTrustedRoots_Dispose(troots);
}