|
Chilkat • HOME • .NET Core C# • Android™ • AutoIt • C • C# • C++ • Chilkat2-Python • CkPython • Classic ASP • DataFlex • Delphi ActiveX • Delphi DLL • Go • Java • Lianja • Mono C# • Node.js • Objective-C • PHP ActiveX • PHP Extension • Perl • PowerBuilder • PowerShell • PureBasic • Ruby • SQL Server • Swift 2 • Swift 3,4,5... • Tcl • Unicode C • Unicode C++ • VB.NET • VBScript • Visual Basic 6.0 • Visual FoxPro • Xojo Plugin
(C) Create CAdES (p7m) Signature using ARSS (Aruba Remote Signing Service)See more Signing in the Cloud ExamplesDemonstrates creating a CAdES (p7m) signature using the Aruba Remote Signing Service. Note: This example requires Chilkat v9.5.0.96 or later.
#include <C_CkCert.h> #include <C_CkJsonObject.h> #include <C_CkCrypt2.h> void ChilkatSample(void) { HCkCert cert; BOOL success; HCkJsonObject jsonArss; HCkCrypt2 crypt; HCkJsonObject signedAttrs; const char *inputXmlPath; const char *outputP7mPath; // This example assumes the Chilkat API to have been previously unlocked. // See Global Unlock Sample for sample code. // Load the certificate used for signing. The certificate's private key is stored on // the Aruba.it server and the signing will happen remotely using the // ARSS (Aruba Remote Signing Service). // However, we still need the certificate locally (without private key). cert = CkCert_Create(); success = CkCert_LoadFromFile(cert,"qa_data/certs/myCert.cer"); if (success == FALSE) { printf("%s\n",CkCert_lastErrorText(cert)); CkCert_Dispose(cert); return; } // To sign using the Aruba Remote Signing Service, // add the following lines of code to specify your authentication credentials, // and the ID of the certificate w/ private key on the server to be used. jsonArss = CkJsonObject_Create(); // Set the "service" equal to "ARSS" to tell Chilkat to use ARSS for signing. CkJsonObject_UpdateString(jsonArss,"service","ARSS"); // Specify the certificate ID, such as "AS0" // This certificate should match the certificate loaded in the above code. CkJsonObject_UpdateString(jsonArss,"certID","YOUR_ARSS_CERT_ID"); CkJsonObject_UpdateString(jsonArss,"otpPwd","YOUR_OTP_PWD"); CkJsonObject_UpdateString(jsonArss,"typeOtpAuth","demoprod"); CkJsonObject_UpdateString(jsonArss,"user","YOUR_ARSS_USERNAME"); CkJsonObject_UpdateString(jsonArss,"userPWD","YOUR_ARSS_PASSWORD"); success = CkCert_SetCloudSigner(cert,jsonArss); crypt = CkCrypt2_Create(); success = CkCrypt2_SetSigningCert(crypt,cert); if (success == FALSE) { printf("%s\n",CkCrypt2_lastErrorText(crypt)); CkCert_Dispose(cert); CkJsonObject_Dispose(jsonArss); CkCrypt2_Dispose(crypt); return; } // The CadesEnabled property applies to all methods that create PKCS7 signatures. // To create a CAdES-BES signature, set this property equal to true. CkCrypt2_putCadesEnabled(crypt,TRUE); CkCrypt2_putHashAlgorithm(crypt,"sha256"); signedAttrs = CkJsonObject_Create(); CkJsonObject_UpdateInt(signedAttrs,"contentType",1); CkJsonObject_UpdateInt(signedAttrs,"signingTime",1); CkJsonObject_UpdateInt(signedAttrs,"messageDigest",1); CkJsonObject_UpdateInt(signedAttrs,"signingCertificateV2",1); CkCrypt2_putSigningAttributes(crypt,CkJsonObject_emit(signedAttrs)); // You can sign any type of file.. inputXmlPath = "qa_data/e-Invoice.xml"; outputP7mPath = "qa_output/signed.p7m"; // Create the CAdES-BES attached signature, which contains the original data. // Chilkat will build the .p7m locally, but will (internally) use ARSS // to do the RSA signing remotely. success = CkCrypt2_CreateP7M(crypt,inputXmlPath,outputP7mPath); if (success == FALSE) { printf("%s\n",CkCrypt2_lastErrorText(crypt)); CkCert_Dispose(cert); CkJsonObject_Dispose(jsonArss); CkCrypt2_Dispose(crypt); CkJsonObject_Dispose(signedAttrs); return; } printf("Success.\n"); CkCert_Dispose(cert); CkJsonObject_Dispose(jsonArss); CkCrypt2_Dispose(crypt); CkJsonObject_Dispose(signedAttrs); } |
|||||||
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.