Chilkat HOME .NET Core C# Android™ AutoIt C C# C++ Chilkat2-Python CkPython Classic ASP DataFlex Delphi ActiveX Delphi DLL Go Java Lianja Mono C# Node.js Objective-C PHP ActiveX PHP Extension Perl PowerBuilder PowerShell PureBasic Ruby SQL Server Swift 2 Swift 3,4,5... Tcl Unicode C Unicode C++ VB.NET VBScript Visual Basic 6.0 Visual FoxPro Xojo Plugin
(C++) Include the SigningCertificateV2 Authenticated Attribute in CAdES (CMS) SignatureDemonstrates how to include the SigningCertificateV2 authenticated attribute in a CMS (.p7m/.p7s) signature.
#include <CkCrypt2.h> #include <CkCert.h> #include <CkJsonObject.h> void ChilkatSample(void) { // This example assumes the Chilkat API to have been previously unlocked. // See Global Unlock Sample for sample code. CkCrypt2 crypt; CkCert cert; bool success = cert.LoadPfxFile("qa_data/pfx/cert_test123.pfx","test123"); if (success != true) { std::cout << cert.lastErrorText() << "\r\n"; return; } // Tell the crypt component to use this cert. success = crypt.SetSigningCert(cert); if (success != true) { std::cout << crypt.lastErrorText() << "\r\n"; return; } // The CadesEnabled property applies to all methods that create PKCS7 signatures. // To create a CAdES-BES signature, set this property equal to true. crypt.put_CadesEnabled(true); crypt.put_HashAlgorithm("sha256"); // We can sign any type of file, creating a .p7s as output. // The .p7s contains the signature and also embeds the data of the file that is signed. const char *inFile = "qa_data/pdf/sample.pdf"; const char *p7sFile = "qa_output/sample.pdf.p7s"; CkJsonObject jsonSigningAttrs; jsonSigningAttrs.UpdateInt("contentType",1); jsonSigningAttrs.UpdateInt("signingTime",1); jsonSigningAttrs.UpdateInt("messageDigest",1); // This is where we specify for the signingCertificateV2 attribute to be included: jsonSigningAttrs.UpdateInt("signingCertificateV2",1); crypt.put_SigningAttributes(jsonSigningAttrs.emit()); // By default, all the certs in the chain of authentication are included in the signature. // If desired, we can choose to only include the signing certificate: crypt.put_IncludeCertChain(false); // Create the CAdES-BES attached signature, which contains the original data. // Note: Chilkat's function naming is not accurate. CreateP7M creates a PKCS7 signature where the signed file // is contained within the signature. CreateP7S creates a detached PKCS7 signature where the signed file // is NOT contained within the signature. We want the data to be contained in the signature, therefore // we call CreateP7M even though we are naming our output file .p7s. success = crypt.CreateP7M(inFile,p7sFile); if (success == false) { std::cout << crypt.lastErrorText() << "\r\n"; return; } // Verify the .p7s file and extract the original file from the .p7s. const char *extractedToFilePath = "qa_output/sample.pdf"; success = crypt.VerifyP7M(p7sFile,extractedToFilePath); if (success == false) { std::cout << crypt.lastErrorText() << "\r\n"; return; } std::cout << "Success!" << "\r\n"; } |
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.