DataFlex
DataFlex
Azure Key Vault Get the Latest Version of a Certificate
See more Azure Key Vault Examples
Demonstrates how to get the latest version of a certificate in Azure Key Vault.Note: This example requires Chilkat v9.5.0.96 or later.
Chilkat DataFlex Downloads
Use ChilkatAx-win32.pkg
Procedure Test
Boolean iSuccess
Handle hoJson
Handle hoHttp
Variant vSbResponse
Handle hoSbResponse
Integer iStatusCode
Handle hoJsonResp
Handle hoCert
Handle hoSbId
String sCertVersion
String sTemp1
Move False To iSuccess
// This requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
// See Azure Key Vault Get Certificates for a more detailed explanation
// for how Chilkat is automatically getting the OAuth2 access token for your application.
// Provide information needed for Chilkat to automatically get an OAuth2 access token as needed.
Get Create (RefClass(cComChilkatJsonObject)) To hoJson
If (Not(IsComObjectCreated(hoJson))) Begin
Send CreateComObject of hoJson
End
Get ComUpdateString Of hoJson "client_id" "APP_ID" To iSuccess
Get ComUpdateString Of hoJson "client_secret" "APP_PASSWORD" To iSuccess
Get ComUpdateString Of hoJson "resource" "https://vault.azure.net" To iSuccess
Get ComUpdateString Of hoJson "token_endpoint" "https://login.microsoftonline.com/TENANT_ID/oauth2/token" To iSuccess
Get Create (RefClass(cComChilkatHttp)) To hoHttp
If (Not(IsComObjectCreated(hoHttp))) Begin
Send CreateComObject of hoHttp
End
// Instead of providing an actual access token, we give Chilkat the information that allows it to
// automatically fetch the access token using the OAuth2 client credentials flow.
Get ComEmit Of hoJson To sTemp1
Set ComAuthToken Of hoHttp To sTemp1
// Replace VAULT_NAME with the name of your Azure Key Vault.
Get ComSetUrlVar Of hoHttp "certName" "importCert01" To iSuccess
Get Create (RefClass(cComChilkatStringBuilder)) To hoSbResponse
If (Not(IsComObjectCreated(hoSbResponse))) Begin
Send CreateComObject of hoSbResponse
End
Get pvComObject of hoSbResponse to vSbResponse
Get ComQuickGetSb Of hoHttp "https://VAULT_NAME.vault.azure.net/certificates/{$certName}?api-version=7.4" vSbResponse To iSuccess
If (iSuccess = False) Begin
Get ComLastStatus Of hoHttp To iStatusCode
If (iStatusCode = 0) Begin
// We did not get a response from the server..
Get ComLastErrorText Of hoHttp To sTemp1
Showln sTemp1
End
Else Begin
// We received a response, but it was an error.
Showln "Error response status code: " iStatusCode
Showln "Error response:"
Get ComGetAsString Of hoSbResponse To sTemp1
Showln sTemp1
End
Procedure_Return
End
Get Create (RefClass(cComChilkatJsonObject)) To hoJsonResp
If (Not(IsComObjectCreated(hoJsonResp))) Begin
Send CreateComObject of hoJsonResp
End
Get pvComObject of hoSbResponse to vSbResponse
Get ComLoadSb Of hoJsonResp vSbResponse To iSuccess
Set ComEmitCompact Of hoJsonResp To False
Get ComEmit Of hoJsonResp To sTemp1
Showln sTemp1
// A sample JSON response is show at the bottom.
// Let's do two things with the result.
// 1) Load the DER of the cert into a Chilkat Cert object.
// 2) Get the Key Vault version id of the certificate.
Get Create (RefClass(cComChilkatCert)) To hoCert
If (Not(IsComObjectCreated(hoCert))) Begin
Send CreateComObject of hoCert
End
Get ComStringOf Of hoJsonResp "cer" To sTemp1
Get ComLoadFromBase64 Of hoCert sTemp1 To iSuccess
If (iSuccess = False) Begin
Get ComLastErrorText Of hoCert To sTemp1
Showln sTemp1
Showln "Failed to load certificate from Base64 DER."
Procedure_Return
End
// The Azure Key Vault's "version" of the certificate is the hex string at the end of the "id", "kid", and "sid" JSON members.
// For example: "7140c8755ed14839b5d86a9f7e7f0497"
Get Create (RefClass(cComChilkatStringBuilder)) To hoSbId
If (Not(IsComObjectCreated(hoSbId))) Begin
Send CreateComObject of hoSbId
End
Get ComStringOf Of hoJsonResp "id" To sTemp1
Get ComAppend Of hoSbId sTemp1 To iSuccess
Get ComGetAfterFinal Of hoSbId "/" False To sCertVersion
Showln "The key vault cert version is " sCertVersion
// {
// "id": "https://kvchilkat.vault.azure.net/certificates/importCert01/7140c8755ed14839b5d86a9f7e7f0497",
// "kid": "https://kvchilkat.vault.azure.net/keys/importCert01/7140c8755ed14839b5d86a9f7e7f0497",
// "sid": "https://kvchilkat.vault.azure.net/secrets/importCert01/7140c8755ed14839b5d86a9f7e7f0497",
// "x5t": "I_e3776K5Q_6PN1HHvJoI2ZGQRQ",
// "cer": "MIIGXjCCB .... cjTsi7yIY=",
// "attributes": {
// "enabled": true,
// "nbf": 1633996800,
// "exp": 1728691199,
// "created": 1697411128,
// "updated": 1697411128,
// "recoveryLevel": "CustomizedRecoverable+Purgeable",
// "recoverableDays": 7
// },
// "policy": {
// "id": "https://kvchilkat.vault.azure.net/certificates/importCert01/policy",
// "key_props": {
// "exportable": true,
// "kty": "RSA",
// "key_size": 4096,
// "reuse_key": false
// },
// "secret_props": {
// "contentType": "application/x-pkcs12"
// },
// "x509_props": {
// "subject": "CN=\"Chilkat Software, Inc.\", O=\"Chilkat Software, Inc.\", S=Illinois, C=US",
// "ekus": [
// "1.3.6.1.5.5.7.3.3"
// ],
// "key_usage": [
// "digitalSignature"
// ],
// "validity_months": 37,
// "basic_constraints": {
// "ca": false
// }
// },
// "lifetime_actions": [
// {
// "trigger": {
// "lifetime_percentage": 80
// },
// "action": {
// "action_type": "EmailContacts"
// }
// }
// ],
// "issuer": {
// "name": "Unknown"
// },
// "attributes": {
// "enabled": true,
// "created": 1697411128,
// "updated": 1697411128
// }
// }
// }
End_Procedure