Chilkat HOME Android™ AutoIt C C# C++ Chilkat2-Python CkPython Classic ASP DataFlex Delphi DLL Go Java Node.js Objective-C PHP Extension Perl PowerBuilder PowerShell PureBasic Ruby SQL Server Swift Tcl Unicode C Unicode C++ VB.NET VBScript Visual Basic 6.0 Visual FoxPro Xojo Plugin
(Delphi DLL) Use a Custom Set of Trusted Root CertificatesDemonstrates how to build a set of trusted root certificates to be used globally by all Chilkat classes.
uses Winapi.Windows, Winapi.Messages, System.SysUtils, System.Variants, System.Classes, Vcl.Graphics, Vcl.Controls, Vcl.Forms, Vcl.Dialogs, Vcl.StdCtrls, TrustedRoots, ZipEntry, Cert, Zip; ... procedure TForm1.Button1Click(Sender: TObject); var trustedRoots: HCkTrustedRoots; zip: HCkZip; success: Boolean; entry: HCkZipEntry; nextEntry: HCkZipEntry; pemStr: PWideChar; cert: HCkCert; bHasMoreEntries: Boolean; begin // This example requires the Chilkat API to have been previously unlocked. // See Global Unlock Sample for sample code. trustedRoots := CkTrustedRoots_Create(); // Indicate that we will NOT trust any pre-installed certificates on the system. CkTrustedRoots_putTrustSystemCaRoots(trustedRoots,False); // Thawte is a certificate authority that provides a .zip download of their // root CA certificates: https://www.thawte.com/roots/index.html // The direct download link is: https://www.verisign.com/support/thawte-roots.zip // Note: The above URLs are valid at the time of writing this example (29-May-2015). // Assuming the .zip has already been downloaded, open it and load each .pem file into // our trusted roots object. zip := CkZip_Create(); // Open a .zip containing PEM files, among other things.. success := CkZip_OpenZip(zip,'qa_data/certs/thawte-roots.zip'); if (success <> True) then begin Memo1.Lines.Add(CkZip__lastErrorText(zip)); Exit; end; entry := CkZip_FirstMatchingEntry(zip,'*.pem'); if (CkZip_getLastMethodSuccess(zip) <> True) then begin Memo1.Lines.Add('No entries matched.'); Exit; end; cert := CkCert_Create(); bHasMoreEntries := True; while (bHasMoreEntries = True) do begin Memo1.Lines.Add('Entry: ' + CkZipEntry__fileName(entry)); // Get the PEM of the CA cert: pemStr := CkZipEntry__unzipToString(entry,0,'utf-8'); // Load it into a certificate object: success := CkCert_LoadPem(cert,pemStr); if (success <> True) then begin Memo1.Lines.Add(CkCert__lastErrorText(cert)); end; // Add it to the trusted roots. CkTrustedRoots_AddCert(trustedRoots,cert); // The NextMatchingEntry method was added in v9.5.0.50 nextEntry := CkZipEntry_NextMatchingEntry(entry,'*.pem'); bHasMoreEntries := CkZipEntry_getLastMethodSuccess(entry); CkZipEntry_Dispose(entry); entry := nextEntry; end; // Activate the trusted roots globally for all Chilkat objects. // This call really shouldn't fail, so we're not checking the return value. success := CkTrustedRoots_Activate(trustedRoots); CkTrustedRoots_Dispose(trustedRoots); CkZip_Dispose(zip); CkCert_Dispose(cert); end; |
© 2000-2025 Chilkat Software, Inc. All Rights Reserved.