Sample code for 30+ languages & platforms
.NET Core C#

Load Java KeyStore and Access Contents

See more Java KeyStore (JKS) Examples

Loads a Java keystore file and iterates over the contents. A Java keystore (.jks) file can contain one or more trusted root certificate entries and/or one or more private key entries. Each private key entry includes an associated certificate chain.

Chilkat .NET Core C# Downloads

.NET Core C#
bool success = false;

// This requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

Chilkat.JavaKeyStore jks = new Chilkat.JavaKeyStore();

// Load the Java keystore from a file.  The JKS file password is used
// to verify the keyed digest that is found at the very end of the keystore.
// It verifies there has been no tampering with the file.
success = jks.LoadFile("jksFilePassword","/someDir/keyStore.jks");
if (success == false) {
    Debug.WriteLine(jks.LastErrorText);
    return;
}

// Find out how many of each type of entry:
int numTrustedCerts = jks.NumTrustedCerts;
int numPrivateKeys = jks.NumPrivateKeys;

Chilkat.Cert cert = new Chilkat.Cert();
string alias;

// For each trusted certificate, access it by getting
// it as a cert object.  Also get the alias associated with the certificate.
Debug.WriteLine("Trusted Certs:");
int i = 0;
while (i < numTrustedCerts) {
    success = jks.TrustedCertAt(i,cert);
    Debug.WriteLine(jks.GetTrustedCertAlias(i) + ": " + cert.SubjectDN);
    i = i + 1;
}

Chilkat.PrivateKey privKey = new Chilkat.PrivateKey();
Chilkat.CertChain certChain = new Chilkat.CertChain();

// For each private key entry, get the private key and
// the associated certificate chain.
// Each private key is password protected.  Usually it is the same
// password as used for the keyed digest of the entire JKS.  
// However, this does not have to be.  The password is passed
// here to handle the possibility of each private key requiring
// a different password.
Debug.WriteLine("Private Keys:");
i = 0;
while (i < numPrivateKeys) {
    jks.PrivateKeyAt("jksFilePassword",i,privKey);
    Debug.WriteLine(jks.GetPrivateKeyAlias(i));
    jks.CertChainAt(i,certChain);

    // The 1st certificate in the chain is the one associated with the private key.
    certChain.CertAt(0,cert);
    Debug.WriteLine(cert.SubjectDN);

    i = i + 1;
}