Sample code for 30+ languages & platforms
Classic ASP

Load Java KeyStore and Access Contents

See more Java KeyStore (JKS) Examples

Loads a Java keystore file and iterates over the contents. A Java keystore (.jks) file can contain one or more trusted root certificate entries and/or one or more private key entries. Each private key entry includes an associated certificate chain.

Chilkat Classic ASP Downloads

Classic ASP
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
</head>
<body>
<%
success = 0

' This requires the Chilkat API to have been previously unlocked.
' See Global Unlock Sample for sample code.

set jks = Server.CreateObject("Chilkat.JavaKeyStore")

' Load the Java keystore from a file.  The JKS file password is used
' to verify the keyed digest that is found at the very end of the keystore.
' It verifies there has been no tampering with the file.
success = jks.LoadFile("jksFilePassword","/someDir/keyStore.jks")
If (success = 0) Then
    Response.Write "<pre>" & Server.HTMLEncode( jks.LastErrorText) & "</pre>"
    Response.End
End If

' Find out how many of each type of entry:
numTrustedCerts = jks.NumTrustedCerts
numPrivateKeys = jks.NumPrivateKeys

set cert = Server.CreateObject("Chilkat.Cert")

' For each trusted certificate, access it by getting
' it as a cert object.  Also get the alias associated with the certificate.
Response.Write "<pre>" & Server.HTMLEncode( "Trusted Certs:") & "</pre>"
i = 0
Do While i < numTrustedCerts
    success = jks.TrustedCertAt(i,cert)
    Response.Write "<pre>" & Server.HTMLEncode( jks.GetTrustedCertAlias(i) & ": " & cert.SubjectDN) & "</pre>"
    i = i + 1
Loop

set privKey = Server.CreateObject("Chilkat.PrivateKey")
set certChain = Server.CreateObject("Chilkat.CertChain")

' For each private key entry, get the private key and
' the associated certificate chain.
' Each private key is password protected.  Usually it is the same
' password as used for the keyed digest of the entire JKS.  
' However, this does not have to be.  The password is passed
' here to handle the possibility of each private key requiring
' a different password.
Response.Write "<pre>" & Server.HTMLEncode( "Private Keys:") & "</pre>"
i = 0
Do While i < numPrivateKeys
    success = jks.PrivateKeyAt("jksFilePassword",i,privKey)
    Response.Write "<pre>" & Server.HTMLEncode( jks.GetPrivateKeyAlias(i)) & "</pre>"
    success = jks.CertChainAt(i,certChain)

    ' The 1st certificate in the chain is the one associated with the private key.
    success = certChain.CertAt(0,cert)
    Response.Write "<pre>" & Server.HTMLEncode( cert.SubjectDN) & "</pre>"

    i = i + 1
Loop

%>
</body>
</html>