|
Chilkat • HOME • .NET Core C# • Android™ • AutoIt • C • C# • C++ • Chilkat2-Python • CkPython • Classic ASP • DataFlex • Delphi ActiveX • Delphi DLL • Go • Java • Lianja • Mono C# • Node.js • Objective-C • PHP ActiveX • PHP Extension • Perl • PowerBuilder • PowerShell • PureBasic • Ruby • SQL Server • Swift 2 • Swift 3,4,5... • Tcl • Unicode C • Unicode C++ • VB.NET • VBScript • Visual Basic 6.0 • Visual FoxPro • Xojo Plugin
(Delphi DLL) AWS KMS Import PFX KeySee more AWS KMS ExamplesImports a certificate's private key from a .pfx file to new key created in AWS KMS. Note: This example requires Chilkat v9.5.0.96 or later.
uses Winapi.Windows, Winapi.Messages, System.SysUtils, System.Variants, System.Classes, Vcl.Graphics, Vcl.Controls, Vcl.Forms, Vcl.Dialogs, Vcl.StdCtrls, PrivateKey, Cert, JsonObject; ... procedure TForm1.Button1Click(Sender: TObject); var cert: HCkCert; success: Boolean; privKey: HCkPrivateKey; json: HCkJsonObject; jsonOut: HCkJsonObject; begin // This example requires the Chilkat API to have been previously unlocked. // See Global Unlock Sample for sample code. // Note: This example is using a relative file path. You can also specify a full file path, such as "C:/someDir/myCertAndKey.pfx" // or a file path the makes sense on non-Windows operating systems.. cert := CkCert_Create(); success := CkCert_LoadPfxFile(cert,'qa_data/pfx/myCertAndKey.pfx','pfx_password'); if (success = False) then begin Memo1.Lines.Add(CkCert__lastErrorText(cert)); Exit; end; // Get the cert's private key. This is what will be uploaded to AWS KMS. privKey := CkCert_ExportPrivateKey(cert); if (CkCert_getLastMethodSuccess(cert) = False) then begin Memo1.Lines.Add('The certificate does not have a private key.'); Exit; end; json := CkJsonObject_Create(); CkJsonObject_UpdateString(json,'service','aws-kms'); CkJsonObject_UpdateString(json,'auth.access_key','AWS_ACCESS_KEY'); CkJsonObject_UpdateString(json,'auth.secret_key','AWS_SECRET_KEY'); CkJsonObject_UpdateString(json,'auth.region','us-west-2'); CkJsonObject_UpdateString(json,'description','Test of uploading existing private key to AWS KMS'); // Let's add some information about the certificate this key belongs to. // This is for informational purposes only, so that we can examine the tags // in the AWS KMS console and know the corresponding certificate. CkJsonObject_UpdateString(json,'tags[0].key','CertSerial'); CkJsonObject_UpdateString(json,'tags[0].value',CkCert__serialNumber(cert)); CkJsonObject_UpdateString(json,'tags[1].key','CertIssuer'); CkJsonObject_UpdateString(json,'tags[1].value',CkCert__issuerCN(cert)); CkJsonObject_UpdateString(json,'tags[2].key','CertSubject'); CkJsonObject_UpdateString(json,'tags[2].value',CkCert__subjectCN(cert)); CkJsonObject_UpdateString(json,'keyUsage','SIGN_VERIFY'); // The UploadToCloud method was added in Chilkat v9.5.0.96 jsonOut := CkJsonObject_Create(); success := CkPrivateKey_UploadToCloud(privKey,json,jsonOut); if (success = False) then begin Memo1.Lines.Add(CkPrivateKey__lastErrorText(privKey)); CkPrivateKey_Dispose(privKey); Exit; end; CkPrivateKey_Dispose(privKey); // When successful, the jsonOut contains information about the private key in AWS KMS. // Most importantly, the KeyId. CkJsonObject_putEmitCompact(jsonOut,False); Memo1.Lines.Add(CkJsonObject__emit(jsonOut)); // Sample JSON result: // { // "AWSAccountId": "954491834127", // "Arn": "arn:aws:kms:us-west-2:954491834127:key/187012e8-008f-4fc7-b100-5efe6146dff2", // "KeySpec": "RSA_4096", // "Description": "Test of uploading existing private key to AWS KMS", // "KeyId": "187012e8-008f-4fc7-b100-5efe6146dff2", // "KeyUsage": "SIGN_VERIFY" // } CkCert_Dispose(cert); CkJsonObject_Dispose(json); CkJsonObject_Dispose(jsonOut); end; |
||||
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.