|
Chilkat • HOME • .NET Core C# • Android™ • AutoIt • C • C# • C++ • Chilkat2-Python • CkPython • Classic ASP • DataFlex • Delphi ActiveX • Delphi DLL • Go • Java • Lianja • Mono C# • Node.js • Objective-C • PHP ActiveX • PHP Extension • Perl • PowerBuilder • PowerShell • PureBasic • Ruby • SQL Server • Swift 2 • Swift 3,4,5... • Tcl • Unicode C • Unicode C++ • VB.NET • VBScript • Visual Basic 6.0 • Visual FoxPro • Xojo Plugin
(C++) Get ETK Public Key (api-acpt.ehealth.fgov.be)See more Belgian eHealth Platform ExamplesThe following URL returns JSON, which contains a PKCS7 signed data: https://api-acpt.ehealth.fgov.be/etee/v1/etks?identifier=12345678901&type=SSIN This example extracts the signed data, validates it, and then extracts the public key from the certificate (obtained from signed content in the PKCS7) Note: The URL above uses "12345678901" which is not valid. You should replace it with a valid number.
#include <CkHttp.h> #include <CkJsonArray.h> #include <CkJsonObject.h> #include <CkBinData.h> #include <CkCrypt2.h> #include <CkCert.h> #include <CkPublicKey.h> void ChilkatSample(void) { // This example requires the Chilkat API to have been previously unlocked. // See Global Unlock Sample for sample code. CkHttp http; const char *jsonStr = http.quickGetStr("https://api-acpt.ehealth.fgov.be/etee/v1/etks?identifier=12345678901&type=SSIN"); if (http.get_LastMethodSuccess() == false) { std::cout << http.lastErrorText() << "\r\n"; return; } std::cout << jsonStr << "\r\n"; // The JSON contains something like this: // [ // { // "key": { // "applicationIdentifier": "", // "ssin": "12345678901" // }, // "value": "MIAGCSq....AAAAAAAA==" // } // ] // Note: The above is a JSON array (not a JSON object) // It should be loaded into a Chilkat JSON array. CkJsonArray jarr; bool success = jarr.Load(jsonStr); if (success == false) { std::cout << "Failed to load JSON." << "\r\n"; return; } CkJsonObject *json = jarr.ObjectAt(0); CkBinData bdPkcs7; bdPkcs7.AppendEncoded(json->stringOf("value"),"base64"); delete json; // Let's verify the PKCS7, and then examine the signing cert, // and get the signing cert's public key. CkCrypt2 crypt; // Validate the signedData PKCS7, and replace the contents of bdPkcs7 with the extracted signed content. success = crypt.OpaqueVerifyBd(bdPkcs7); if (success == false) { std::cout << crypt.lastErrorText() << "\r\n"; return; } // The signed content is the DER of a certificate. // In other words, bdPkcs7 now contains a certificate. CkCert cert; success = cert.LoadFromBd(bdPkcs7); if (success == false) { std::cout << cert.lastErrorText() << "\r\n"; return; } // Show some certificate information: std::cout << "Subject: " << cert.subjectDN() << "\r\n"; std::cout << "Serial: " << cert.serialNumber() << "\r\n"; std::cout << "Issuer: " << cert.issuerDN() << "\r\n"; // Let's get the cert's public key... CkPublicKey *pubKey = cert.ExportPublicKey(); if (cert.get_LastMethodSuccess() == false) { std::cout << cert.lastErrorText() << "\r\n"; return; } // OK, you now have the public key and can do whatever is needed.. std::cout << pubKey->keyType() << "\r\n"; std::cout << pubKey->get_KeySize() << "\r\n"; delete pubKey; } |
|||||||
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.