|
Chilkat • HOME • .NET Core C# • Android™ • AutoIt • C • C# • C++ • Chilkat2-Python • CkPython • Classic ASP • DataFlex • Delphi ActiveX • Delphi DLL • Go • Java • Lianja • Mono C# • Node.js • Objective-C • PHP ActiveX • PHP Extension • Perl • PowerBuilder • PowerShell • PureBasic • Ruby • SQL Server • Swift 2 • Swift 3,4,5... • Tcl • Unicode C • Unicode C++ • VB.NET • VBScript • Visual Basic 6.0 • Visual FoxPro • Xojo Plugin
(Delphi ActiveX) Create XAdES using Smart Card or USB TokenDemonstrates how to create an XAdES signed XML document using a certificate located on a smartcard or USB token. Note: This example requires Chilkat v9.5.0.75 or greater. Also, at the time of this writing this example is restricted to the Windows operating system.
uses Winapi.Windows, Winapi.Messages, System.SysUtils, System.Variants, System.Classes, Vcl.Graphics, Vcl.Controls, Vcl.Forms, Vcl.Dialogs, Vcl.StdCtrls, Chilkat_TLB; ... procedure TForm1.Button1Click(Sender: TObject); var xmlToSign: TChilkatXml; success: Integer; gen: TChilkatXmlDSigGen; object1: TChilkatXml; cert: TChilkatCert; sbXml: TChilkatStringBuilder; verifier: TChilkatXmlDSig; verified: Integer; begin // ---------------------------------------------------------------------- // IMPORTANT: This generated example requires Chilkat v9.5.0.75 or later. // Contact support@chilkatsoft.com for a pre-release. // ---------------------------------------------------------------------- // Load the XML to be signed. xmlToSign := TChilkatXml.Create(Self); success := xmlToSign.LoadXmlFile('qa_data/fattura_electronica/docToSign.xml'); if (success <> 1) then begin Memo1.Lines.Add(xmlToSign.LastErrorText); Exit; end; gen := TChilkatXmlDSigGen.Create(Self); gen.SigLocation := 'p:FatturaElettronica'; gen.SigId := 'xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504'; gen.SigNamespacePrefix := 'ds'; gen.SigNamespaceUri := 'http://www.w3.org/2000/09/xmldsig#'; gen.SigValueId := 'xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-sigvalue'; gen.SignedInfoCanonAlg := 'C14N'; gen.SignedInfoDigestMethod := 'sha256'; // Create an Object to be added to the Signature. // Note: Chilkat will automatically populate the strings indicated by "TO BE GENERATED BY CHILKAT" with actual/correct values // when the XML is signed. object1 := TChilkatXml.Create(Self); object1.Tag := 'xades:QualifyingProperties'; object1.AddAttribute('xmlns:xades','http://uri.etsi.org/01903/v1.3.2#'); object1.AddAttribute('xmlns:xades141','http://uri.etsi.org/01903/v1.4.1#'); object1.AddAttribute('Target','#xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504'); object1.UpdateAttrAt('xades:SignedProperties',1,'Id','xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-signedprops'); object1.UpdateChildContent('xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningTime','TO BE GENERATED BY CHILKAT'); object1.UpdateAttrAt('xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningCertificate|xades:Cert|xades:CertDigest|ds:DigestMethod',1,'Algorithm','http://www.w3.org/2001/04/xmlenc#sha256'); object1.UpdateChildContent('xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningCertificate|xades:Cert|xades:CertDigest|ds:DigestValue','TO BE GENERATED BY CHILKAT'); object1.UpdateChildContent('xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningCertificate|xades:Cert|xades:IssuerSerial|ds:X509IssuerName','TO BE GENERATED BY CHILKAT'); object1.UpdateChildContent('xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningCertificate|xades:Cert|xades:IssuerSerial|ds:X509SerialNumber','TO BE GENERATED BY CHILKAT'); gen.AddObject('',object1.GetXml(),'',''); // -------- Reference 1 -------- gen.KeyInfoId := 'xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-keyinfo'; gen.AddSameDocRef('xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-keyinfo','sha256','','',''); // -------- Reference 2 -------- gen.AddSameDocRef('','sha256','','',''); gen.SetRefIdAttr('','xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-ref0'); // -------- Reference 3 -------- gen.AddObjectRef('xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-signedprops','sha256','','','http://uri.etsi.org/01903#SignedProperties'); // ---------------------------------------------------------------- // Load a certificate that has been pre-installed on the Windows system // This includes certificates on smartcards and USB tokens cert := TChilkatCert.Create(Self); // You may provide the PIN here.. cert.SmartCardPin := '000000'; // Load the certificate on the smartcard currently in the reader (or on the USB token). // Pass an empty string to allow Chilkat to automatically choose the CSP (Cryptographi Service Provider). // See Load Certificate on Smartcard for information about explicitly selecting a particular CSP. success := cert.LoadFromSmartcard(''); if (success <> 1) then begin Memo1.Lines.Add(cert.LastErrorText); Exit; end; gen.SetX509Cert(cert.ControlInterface,1); gen.KeyInfoType := 'X509Data'; gen.X509Type := 'Certificate'; // Load XML to be signed... sbXml := TChilkatStringBuilder.Create(Self); xmlToSign.GetXmlSb(sbXml.ControlInterface); gen.Behaviors := 'IndentedSignature,ForceAddEnvelopedSignatureTransform'; // Sign the XML... success := gen.CreateXmlDSigSb(sbXml.ControlInterface); if (success <> 1) then begin Memo1.Lines.Add(gen.LastErrorText); Exit; end; // Save the signed XMl to a file. success := sbXml.WriteFile('qa_output/signedXml.xml','utf-8',0); Memo1.Lines.Add(sbXml.GetAsString()); // ---------------------------------------- // Verify the signature we just produced... verifier := TChilkatXmlDSig.Create(Self); success := verifier.LoadSignatureSb(sbXml.ControlInterface); if (success <> 1) then begin Memo1.Lines.Add(verifier.LastErrorText); Exit; end; verified := verifier.VerifySignature(1); if (verified <> 1) then begin Memo1.Lines.Add(verifier.LastErrorText); Exit; end; Memo1.Lines.Add('This signature was successfully verified.'); end; |
||||
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.