|
Chilkat • HOME • .NET Core C# • Android™ • AutoIt • C • C# • C++ • Chilkat2-Python • CkPython • Classic ASP • DataFlex • Delphi ActiveX • Delphi DLL • Go • Java • Lianja • Mono C# • Node.js • Objective-C • PHP ActiveX • PHP Extension • Perl • PowerBuilder • PowerShell • PureBasic • Ruby • SQL Server • Swift 2 • Swift 3,4,5... • Tcl • Unicode C • Unicode C++ • VB.NET • VBScript • Visual Basic 6.0 • Visual FoxPro • Xojo Plugin
(Classic ASP) Import a PFX/P12 into the Windows Certificate StoresDemonstrates how to import the certificates contained in a .pfx/.p12 to the Windows certificate stores.
<html> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8"> </head> <body> <% ' For versions of Chilkat < 10.0.0, use CreateObject("Chilkat_9_5_0.Cert") set primaryCert = Server.CreateObject("Chilkat.Cert") ' Load a PFX file into a certificate object. ' The cert object will contain the certificate from the PFX that has a private key. ' The certs in the chain of authentication (if contained in the PFX) are also loaded, ' and can be accessed by getting the certificate chain (see below). ' If the PFX did not include the issuer certs in the chain of authentication, then Chilkat will ' automatically try to construct the issuer chain from the CA and intermedicate CA certs ' already installed on the Windows system. pfxPassword = "myPfxPassword" success = primaryCert.LoadPfxFile("qa_data/pfx/somePfx.p12",pfxPassword) If (success = 0) Then Response.Write "<pre>" & Server.HTMLEncode( primaryCert.LastErrorText) & "</pre>" Response.End End If ' certChain is a Chilkat.CertChain Set certChain = primaryCert.GetCertChain() If (primaryCert.LastMethodSuccess = 0) Then Response.Write "<pre>" & Server.HTMLEncode( primaryCert.LastErrorText) & "</pre>" Response.End End If ' If the certificate chain reaches the root CA cert, then the last cert in the chain ' is the root CA cert. chainReachesRoot = certChain.ReachesRoot If (chainReachesRoot = 1) Then Response.Write "<pre>" & Server.HTMLEncode( "The certificate chain reaches the root CA cert.") & "</pre>" End If i = 0 numCerts = certChain.NumCerts Do While i < numCerts ' cert is a Chilkat.Cert Set cert = certChain.GetCert(i) Response.Write "<pre>" & Server.HTMLEncode( "SubjectDN " & i & ": " & cert.SubjectDN) & "</pre>" Response.Write "<pre>" & Server.HTMLEncode( "IssuerDN " & i & ": " & cert.IssuerDN) & "</pre>" Response.Write "<pre>" & Server.HTMLEncode( "--") & "</pre>" i = i + 1 Loop ' The primary cert having the private key will be imported into the Current User "My" certificate store. ' Any intermediate root certificates will be imported into certificate store for intermediate certificate authorities. ' The root CA cert will be imported into the Root CA cert store. ' Let's open each of these 3 certificate stores.. ' For versions of Chilkat < 10.0.0, use CreateObject("Chilkat_9_5_0.CertStore") set certStoreCU = Server.CreateObject("Chilkat.CertStore") ' For versions of Chilkat < 10.0.0, use CreateObject("Chilkat_9_5_0.CertStore") set certStoreCA = Server.CreateObject("Chilkat.CertStore") ' For versions of Chilkat < 10.0.0, use CreateObject("Chilkat_9_5_0.CertStore") set certStoreRootCA = Server.CreateObject("Chilkat.CertStore") readOnlyFlag = 0 ' "CurrentUser" and "My" are the exact keywords to select your user account's certificate store. success = certStoreCU.OpenWindowsStore("CurrentUser","My",readOnlyFlag) If (success = 0) Then Response.Write "<pre>" & Server.HTMLEncode( "Failed to open the CurrentUser/My certificate store for read/write.") & "</pre>" Response.End End If ' Certificate store for intermediate certification authorities (CAs). success = certStoreCA.OpenWindowsStore("CurrentUser","CertificationAuthority",readOnlyFlag) If (success = 0) Then Response.Write "<pre>" & Server.HTMLEncode( "Failed to open the CurrentUser/CertificationAuthority certificate store for read/write.") & "</pre>" Response.End End If ' Certificate store for trusted root certification authorities (CAs). success = certStoreRootCA.OpenWindowsStore("CurrentUser","Root",readOnlyFlag) If (success = 0) Then Response.Write "<pre>" & Server.HTMLEncode( "Failed to open the CurrentUser/Root certificate store for read/write.") & "</pre>" Response.End End If ' Iterate over the certs in the chain and import each into the desired certificate store. allSuccess = 1 i = 0 Do While i < numCerts ' cert is a Chilkat.Cert Set cert = certChain.GetCert(i) If (i = 0) Then ' Import the primary certificate into the CurrentUser/My certificate store. success = certStoreCU.AddCertificate(cert) If (success = 0) Then Response.Write "<pre>" & Server.HTMLEncode( certStoreCU.LastErrorText) & "</pre>" allSuccess = 0 End If Else If ((i = (numCerts - 1)) And (chainReachesRoot = 1)) Then ' Add the root CA certificate to the CurrentUser/Root certificate store. ' (Your application can obviously choose whether this should be done or not. Perhaps you prompt the user.) ' Note: If the root CA cert is already present in the Windows certificate store, Windows will display ' a dialog to ask if it should be deleted. Chilkat does not explicitly display dialogs. success = certStoreRootCA.AddCertificate(cert) If (success = 0) Then Response.Write "<pre>" & Server.HTMLEncode( certStoreRootCA.LastErrorText) & "</pre>" allSuccess = 0 End If Else ' This is an intermediate CA certificate. success = certStoreCA.AddCertificate(cert) If (success = 0) Then Response.Write "<pre>" & Server.HTMLEncode( certStoreCA.LastErrorText) & "</pre>" allSuccess = 0 End If End If End If If (success = 0) Then Response.Write "<pre>" & Server.HTMLEncode( "Failed to import certificate.") & "</pre>" End If i = i + 1 Loop Response.Write "<pre>" & Server.HTMLEncode( "allSuccess = " & allSuccess) & "</pre>" %> </body> </html> |
||||
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.