Sample code for 30+ languages & platforms
C

Get Certificates within XML Signature

See more XML Digital Signatures Examples

Demonstrates how to get the certificates contained within an XML signature.

Chilkat C Downloads

C
#include <C_CkStringBuilder.h>
#include <C_CkXmlDSig.h>
#include <C_CkStringArray.h>
#include <C_CkCert.h>

void ChilkatSample(void)
    {
    BOOL success;
    HCkStringBuilder sbXml;
    HCkXmlDSig dsig;
    int i;
    HCkStringArray saCerts;
    HCkCert cert;
    BOOL bVerifyReferenceDigests;
    BOOL bVerified;
    int j;

    success = FALSE;

    // This example requires the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    sbXml = CkStringBuilder_Create();

    // Load XML containing one or more signatures.
    success = CkStringBuilder_LoadFile(sbXml,"qa_data/xml_dsig_valid_samples/multipleSigners/sp.pdf.XAdES.xml","utf-8");
    if (success == FALSE) {
        printf("Failed to load the XML file..\n");
        CkStringBuilder_Dispose(sbXml);
        return;
    }

    dsig = CkXmlDSig_Create();

    // First load the XML containing the signatures to be verified.
    // Note that this particular Signature already contains the RSA public key that will be used
    // for verification.
    success = CkXmlDSig_LoadSignatureSb(dsig,sbXml);
    if (success != TRUE) {
        printf("%s\n",CkXmlDSig_lastErrorText(dsig));
        CkStringBuilder_Dispose(sbXml);
        CkXmlDSig_Dispose(dsig);
        return;
    }

    // For each signature, verify and also get the certificate(s) contained within each Signature.
    i = 0;
    saCerts = CkStringArray_Create();
    cert = CkCert_Create();

    printf("numSignatures = %d\n",CkXmlDSig_getNumSignatures(dsig));

    while (i < CkXmlDSig_getNumSignatures(dsig)) {
        // Select the Nth signature by setting the Selector property.
        CkXmlDSig_putSelector(dsig,i);

        bVerifyReferenceDigests = TRUE;
        bVerified = CkXmlDSig_VerifySignature(dsig,bVerifyReferenceDigests);
        printf("Signature %d verified = %d\n",i + 1,bVerified);

        // Get the certificates embedded in this signature.
        CkStringArray_Clear(saCerts);
        success = CkXmlDSig_GetCerts(dsig,saCerts);
        if (success == TRUE) {
            j = 0;
            while (j < CkStringArray_getCount(saCerts)) {
                success = CkCert_LoadFromBase64(cert,CkStringArray_getString(saCerts,j));
                if (success == TRUE) {
                    printf("    %s\n",CkCert_subjectDN(cert));
                }

                j = j + 1;
            }

        }

        i = i + 1;
    }



    CkStringBuilder_Dispose(sbXml);
    CkXmlDSig_Dispose(dsig);
    CkStringArray_Dispose(saCerts);
    CkCert_Dispose(cert);

    }