Sample code for 30+ languages & platforms
DataFlex

Azure Key Vault Get the Latest Version of a Certificate

See more Azure Key Vault Examples

Demonstrates how to get the latest version of a certificate in Azure Key Vault.

Note: This example requires Chilkat v9.5.0.96 or later.

Chilkat DataFlex Downloads

DataFlex
Use ChilkatAx-win32.pkg

Procedure Test
    Boolean iSuccess
    Handle hoJson
    Handle hoHttp
    Variant vSbResponse
    Handle hoSbResponse
    Integer iStatusCode
    Handle hoJsonResp
    Handle hoCert
    Handle hoSbId
    String sCertVersion
    String sTemp1

    Move False To iSuccess

    // This requires the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    // See Azure Key Vault Get Certificates for a more detailed explanation
    // for how Chilkat is automatically getting the OAuth2 access token for your application.

    // Provide information needed for Chilkat to automatically get an OAuth2 access token as needed.
    Get Create (RefClass(cComChilkatJsonObject)) To hoJson
    If (Not(IsComObjectCreated(hoJson))) Begin
        Send CreateComObject of hoJson
    End
    Get ComUpdateString Of hoJson "client_id" "APP_ID" To iSuccess
    Get ComUpdateString Of hoJson "client_secret" "APP_PASSWORD" To iSuccess
    Get ComUpdateString Of hoJson "resource" "https://vault.azure.net" To iSuccess
    Get ComUpdateString Of hoJson "token_endpoint" "https://login.microsoftonline.com/TENANT_ID/oauth2/token" To iSuccess

    Get Create (RefClass(cComChilkatHttp)) To hoHttp
    If (Not(IsComObjectCreated(hoHttp))) Begin
        Send CreateComObject of hoHttp
    End

    // Instead of providing an actual access token, we give Chilkat the information that allows it to 
    // automatically fetch the access token using the OAuth2 client credentials flow.
    Get ComEmit Of hoJson To sTemp1
    Set ComAuthToken Of hoHttp To sTemp1

    // Replace VAULT_NAME with the name of your Azure Key Vault.
    Get ComSetUrlVar Of hoHttp "certName" "importCert01" To iSuccess

    Get Create (RefClass(cComChilkatStringBuilder)) To hoSbResponse
    If (Not(IsComObjectCreated(hoSbResponse))) Begin
        Send CreateComObject of hoSbResponse
    End
    Get pvComObject of hoSbResponse to vSbResponse
    Get ComQuickGetSb Of hoHttp "https://VAULT_NAME.vault.azure.net/certificates/{$certName}?api-version=7.4" vSbResponse To iSuccess
    If (iSuccess = False) Begin

        Get ComLastStatus Of hoHttp To iStatusCode
        If (iStatusCode = 0) Begin
            // We did not get a response from the server..
            Get ComLastErrorText Of hoHttp To sTemp1
            Showln sTemp1
        End
        Else Begin
            // We received a response, but it was an error.
            Showln "Error response status code: " iStatusCode
            Showln "Error response:"
            Get ComGetAsString Of hoSbResponse To sTemp1
            Showln sTemp1
        End

        Procedure_Return
    End

    Get Create (RefClass(cComChilkatJsonObject)) To hoJsonResp
    If (Not(IsComObjectCreated(hoJsonResp))) Begin
        Send CreateComObject of hoJsonResp
    End
    Get pvComObject of hoSbResponse to vSbResponse
    Get ComLoadSb Of hoJsonResp vSbResponse To iSuccess
    Set ComEmitCompact Of hoJsonResp To False

    Get ComEmit Of hoJsonResp To sTemp1
    Showln sTemp1

    // A sample JSON response is show at the bottom.

    // Let's do two things with the result.
    // 1) Load the DER of the cert into a Chilkat Cert object.
    // 2) Get the Key Vault version id of the certificate.

    Get Create (RefClass(cComChilkatCert)) To hoCert
    If (Not(IsComObjectCreated(hoCert))) Begin
        Send CreateComObject of hoCert
    End
    Get ComStringOf Of hoJsonResp "cer" To sTemp1
    Get ComLoadFromBase64 Of hoCert sTemp1 To iSuccess
    If (iSuccess = False) Begin
        Get ComLastErrorText Of hoCert To sTemp1
        Showln sTemp1
        Showln "Failed to load certificate from Base64 DER."
        Procedure_Return
    End

    // The Azure Key Vault's "version" of the certificate is the hex string at the end of the "id", "kid", and "sid" JSON members.
    // For example:  "7140c8755ed14839b5d86a9f7e7f0497"
    Get Create (RefClass(cComChilkatStringBuilder)) To hoSbId
    If (Not(IsComObjectCreated(hoSbId))) Begin
        Send CreateComObject of hoSbId
    End
    Get ComStringOf Of hoJsonResp "id" To sTemp1
    Get ComAppend Of hoSbId sTemp1 To iSuccess
    Get ComGetAfterFinal Of hoSbId "/" False To sCertVersion
    Showln "The key vault cert version is " sCertVersion

    // {
    //   "id": "https://kvchilkat.vault.azure.net/certificates/importCert01/7140c8755ed14839b5d86a9f7e7f0497",
    //   "kid": "https://kvchilkat.vault.azure.net/keys/importCert01/7140c8755ed14839b5d86a9f7e7f0497",
    //   "sid": "https://kvchilkat.vault.azure.net/secrets/importCert01/7140c8755ed14839b5d86a9f7e7f0497",
    //   "x5t": "I_e3776K5Q_6PN1HHvJoI2ZGQRQ",
    //   "cer": "MIIGXjCCB .... cjTsi7yIY=",
    //   "attributes": {
    //     "enabled": true,
    //     "nbf": 1633996800,
    //     "exp": 1728691199,
    //     "created": 1697411128,
    //     "updated": 1697411128,
    //     "recoveryLevel": "CustomizedRecoverable+Purgeable",
    //     "recoverableDays": 7
    //   },
    //   "policy": {
    //     "id": "https://kvchilkat.vault.azure.net/certificates/importCert01/policy",
    //     "key_props": {
    //       "exportable": true,
    //       "kty": "RSA",
    //       "key_size": 4096,
    //       "reuse_key": false
    //     },
    //     "secret_props": {
    //       "contentType": "application/x-pkcs12"
    //     },
    //     "x509_props": {
    //       "subject": "CN=\"Chilkat Software, Inc.\", O=\"Chilkat Software, Inc.\", S=Illinois, C=US",
    //       "ekus": [
    //         "1.3.6.1.5.5.7.3.3"
    //       ],
    //       "key_usage": [
    //         "digitalSignature"
    //       ],
    //       "validity_months": 37,
    //       "basic_constraints": {
    //         "ca": false
    //       }
    //     },
    //     "lifetime_actions": [
    //       {
    //         "trigger": {
    //           "lifetime_percentage": 80
    //         },
    //         "action": {
    //           "action_type": "EmailContacts"
    //         }
    //       }
    //     ],
    //     "issuer": {
    //       "name": "Unknown"
    //     },
    //     "attributes": {
    //       "enabled": true,
    //       "created": 1697411128,
    //       "updated": 1697411128
    //     }
    //   }
    // }


End_Procedure