Sample code for 30+ languages & platforms
Chilkat2-Python

Use a Custom Set of Trusted Root Certificates

See more Certificates Examples

Demonstrates how to build a set of trusted root certificates to be used globally by all Chilkat classes.

Chilkat Chilkat2-Python Downloads

Chilkat2-Python
import sys
import chilkat2

success = False

# This example requires the Chilkat API to have been previously unlocked.
# See Global Unlock Sample for sample code.

trustedRoots = chilkat2.TrustedRoots()

#  Indicate that we will NOT trust any pre-installed certificates on the system.
trustedRoots.TrustSystemCaRoots = False

# Thawte is a certificate authority that provides a .zip download of their
# root CA certificates:  https://www.thawte.com/roots/index.html
# The direct download link is: https://www.verisign.com/support/thawte-roots.zip
# Note: The above URLs are valid at the time of writing this example (29-May-2015).

# Assuming the .zip has already been downloaded, open it and load each .pem file into
# our trusted roots object.
zip = chilkat2.Zip()

# Open a .zip containing PEM files, among other things..
success = zip.OpenZip("qa_data/certs/thawte-roots.zip")
if (success == False):
    print(zip.LastErrorText)
    sys.exit()

entry = chilkat2.ZipEntry()

cert = chilkat2.Cert()

pattern = "*.pem"
bHasMoreEntries = zip.EntryMatching(pattern,entry)
while bHasMoreEntries == True :

    print("Entry: " + entry.FileName)

    # Get the PEM of the CA cert:
    pemStr = entry.UnzipToString(0,"utf-8")

    # Load it into a certificate object:
    success = cert.LoadPem(pemStr)
    if (success != True):
        print(cert.LastErrorText)

    # Add it to the trusted roots.
    trustedRoots.AddCert(cert)

    bHasMoreEntries = entry.GetNextMatch(pattern)

#  Activate the trusted roots globally for all Chilkat objects.
#  This call really shouldn't fail, so we're not checking the return value.
success = trustedRoots.Activate()