DataFlex
DataFlex
PKCS11 Find All Certificates on Smart Card or USB Token
See more PKCS11 Examples
Sample code showing how to examine all the certificates on a smart card or USB token.Note: This example requires Chilkat v9.5.0.88 or later.
Chilkat DataFlex Downloads
Use ChilkatAx-win32.pkg
Procedure Test
Boolean iSuccess
Handle hoPkcs11
Integer iSlotID
Boolean iReadWrite
Integer iUserType
String sPin
Integer iNumCerts
String sPrivateKeyNote
Variant vCert
Handle hoCert
Integer i
String sTemp1
Boolean bTemp1
Move False To iSuccess
// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
// Note: Chilkat's PKCS11 implementation runs on Windows, Linux, Mac OS X, and other supported operating systems.
Get Create (RefClass(cComChilkatPkcs11)) To hoPkcs11
If (Not(IsComObjectCreated(hoPkcs11))) Begin
Send CreateComObject of hoPkcs11
End
// Set your shared lib path -- either a full path to the DLL, .so, or .dylib,
// or just the filename if the driver is in a location that can be automatically found. (Such as in C:\Windows\System32)
Set ComSharedLibPath Of hoPkcs11 To "aetpkss1.dll"
Get ComInitialize Of hoPkcs11 To iSuccess
If (iSuccess = False) Begin
Get ComLastErrorText Of hoPkcs11 To sTemp1
Showln sTemp1
Procedure_Return
End
// Pass -1 for the slotID to open a session on the first non-empty slot.
Move -1 To iSlotID
// Open a session.
Move True To iReadWrite
Get ComOpenSession Of hoPkcs11 iSlotID iReadWrite To iSuccess
If (iSuccess = False) Begin
Get ComLastErrorText Of hoPkcs11 To sTemp1
Showln sTemp1
Procedure_Return
End
// Make it an authenticated session by calling Login.
//
// If we don't authenticate, then we won't be able to see the private keys, and thus
// we won't know which certificates have an associated private key stored on the smart card.
// The smart card PIN is passed to the Login method.
// userType 1 indicates a "Normal User".
Move 1 To iUserType
Move "0000" To sPin
Get ComLogin Of hoPkcs11 iUserType sPin To iSuccess
If (iSuccess = False) Begin
Get ComLastErrorText Of hoPkcs11 To sTemp1
Showln sTemp1
Get ComCloseSession Of hoPkcs11 To iSuccess
Procedure_Return
End
// Call FindAllCerts to find all certificates on the smart card or USB token.
Get ComFindAllCerts Of hoPkcs11 To iSuccess
If (iSuccess = False) Begin
Get ComLastErrorText Of hoPkcs11 To sTemp1
Showln sTemp1
Get ComCloseSession Of hoPkcs11 To iSuccess
Procedure_Return
End
// The NumCerts property is set by FindAllCerts.
Get ComNumCerts Of hoPkcs11 To iNumCerts
Showln "Number of certs: " iNumCerts
Get Create (RefClass(cComChilkatCert)) To hoCert
If (Not(IsComObjectCreated(hoCert))) Begin
Send CreateComObject of hoCert
End
Move 0 To i
While (i < iNumCerts)
Get pvComObject of hoCert to vCert
Get ComGetCert Of hoPkcs11 i vCert To iSuccess
Move "" To sPrivateKeyNote
Get ComHasPrivateKey Of hoCert To bTemp1
If (bTemp1 = True) Begin
Move "(has private key)" To sPrivateKeyNote
End
Get ComSubjectDN Of hoCert To sTemp1
Showln i ": " sPrivateKeyNote " " sTemp1
Get ComIssuerDN Of hoCert To sTemp1
Showln i ": issuer: " sTemp1
Showln "----"
Move (i + 1) To i
Loop
// Revert to an unauthenticated session by calling Logout.
Get ComLogout Of hoPkcs11 To iSuccess
If (iSuccess = False) Begin
Get ComLastErrorText Of hoPkcs11 To sTemp1
Showln sTemp1
Get ComCloseSession Of hoPkcs11 To iSuccess
Procedure_Return
End
// When finished, close the session.
// It is important to close the session (memory leaks will occur if the session is not properly closed).
Get ComCloseSession Of hoPkcs11 To iSuccess
If (iSuccess = False) Begin
Get ComLastErrorText Of hoPkcs11 To sTemp1
Showln sTemp1
Procedure_Return
End
Showln "Success."
End_Procedure