Sample code for 30+ languages & platforms
Visual FoxPro

Verify a CAdES-BES Signature and Examine Signature Contents

See more Digital Signatures Examples

Demonstrates how to validate a .p7m (.p7s) signature and examine the contents of the signature.

Chilkat Visual FoxPro Downloads

Visual FoxPro
LOCAL lnSuccess
LOCAL loCrypt
LOCAL lcOutputFile
LOCAL lcInFile
LOCAL loJson
LOCAL loAuthAttrSigningTimeUtctime
LOCAL lcIssuerCN
LOCAL lcSerial
LOCAL lcStrVal
LOCAL lcCertSubjectKeyIdentifier
LOCAL lcCertDigestAlgOid
LOCAL lcCertDigestAlgName
LOCAL lcSigningAlgOid
LOCAL lcSigningAlgName
LOCAL lcAuthAttrContentTypeName
LOCAL lcAuthAttrContentTypeOid
LOCAL lcAuthAttrSigningTimeName
LOCAL lcAuthAttrMessageDigestName
LOCAL lcAuthAttrMessageDigestDigest
LOCAL lcAuthAttrSigningCertificateV2Name
LOCAL lcAuthAttrSigningCertificateV2Der
LOCAL i
LOCAL lnCount_i

lnSuccess = 0

* This example requires the Chilkat API to have been previously unlocked.
* See Global Unlock Sample for sample code.

loCrypt = CreateObject('Chilkat.Crypt2')

lcOutputFile = "qa_output/original.xml"
lcInFile = "qa_data/p7m/fattura_signature.xml.p7m"

* Verify the signature and extract the contained file, which in this case is XML.
lnSuccess = loCrypt.VerifyP7M(lcInFile,lcOutputFile)
IF (lnSuccess = 0) THEN
    ? loCrypt.LastErrorText
    RELEASE loCrypt
    CANCEL
ENDIF

? "Signature validated."

* Now let's examine the information about the signature.
loJson = CreateObject('Chilkat.JsonObject')
loCrypt.GetLastJsonData(loJson)

loJson.EmitCompact = 0
? loJson.Emit()

* Here's an example of the information about the signature:
* {
*   "pkcs7": {
*     "verify": {
*       "certs": [
*         {
*           "issuerCN": "Xyz EU Qualified Certificates CA G1",
*           "serial": "99A28A51AC389999"
*         }
*       ],
*       "useConstructedOctets": true,
*       "digestAlgorithms": [
*         "sha256"
*       ],
*       "signerInfo": [
*         {
*           "cert": {
*             "subjectKeyIdentifier": "5VM4x8AWnXf07yzbXuLtbb0U3yY=",
*             "digestAlgOid": "2.16.840.1.101.3.4.2.1",
*             "digestAlgName": "SHA256"
*           },
*           "signingAlgOid": "1.2.840.113549.1.1.11",
*           "signingAlgName": "RSA-SHA256-PKCSV-1_5",
*           "authAttr": {
*             "1.2.840.113549.1.9.3": {
*               "name": "contentType",
*               "oid": "1.2.840.113549.1.7.1"
*             },
*             "1.2.840.113549.1.9.5": {
*               "name": "signingTime",
*               "utctime": "190901152340Z"
*             },
*             "1.2.840.113549.1.9.4": {
*               "name": "messageDigest",
*               "digest": "y+gd/zAQK33A//HInhaZba7w1fUJleV9AHbP1Ntx6U0="
*             },
*             "1.2.840.113549.1.9.16.2.47": {
*               "name": "signingCertificateV2",
*               "der": "MIH4MI..w4vv0="
*             }
*           }
*         }
*       ]
*     }
*   }
* }

* Use this online tool to generate parsing code from sample JSON: 
* Generate Parsing Code from JSON

loAuthAttrSigningTimeUtctime = CreateObject('Chilkat.DtObj')

i = 0
lnCount_i = loJson.SizeOfArray("pkcs7.verify.certs")
DO WHILE i < lnCount_i
    loJson.I = i
    lcIssuerCN = loJson.StringOf("pkcs7.verify.certs[i].issuerCN")
    lcSerial = loJson.StringOf("pkcs7.verify.certs[i].serial")
    i = i + 1
ENDDO
i = 0
lnCount_i = loJson.SizeOfArray("pkcs7.verify.digestAlgorithms")
DO WHILE i < lnCount_i
    loJson.I = i
    lcStrVal = loJson.StringOf("pkcs7.verify.digestAlgorithms[i]")
    i = i + 1
ENDDO
i = 0
lnCount_i = loJson.SizeOfArray("pkcs7.verify.signerInfo")
DO WHILE i < lnCount_i
    loJson.I = i
    lcCertSubjectKeyIdentifier = loJson.StringOf("pkcs7.verify.signerInfo[i].cert.subjectKeyIdentifier")
    lcCertDigestAlgOid = loJson.StringOf("pkcs7.verify.signerInfo[i].cert.digestAlgOid")
    lcCertDigestAlgName = loJson.StringOf("pkcs7.verify.signerInfo[i].cert.digestAlgName")
    lcSigningAlgOid = loJson.StringOf("pkcs7.verify.signerInfo[i].signingAlgOid")
    lcSigningAlgName = loJson.StringOf("pkcs7.verify.signerInfo[i].signingAlgName")
    lcAuthAttrContentTypeName = loJson.StringOf('pkcs7.verify.signerInfo[i].authAttr."1.2.840.113549.1.9.3".name')
    lcAuthAttrContentTypeOid = loJson.StringOf('pkcs7.verify.signerInfo[i].authAttr."1.2.840.113549.1.9.3".oid')
    lcAuthAttrSigningTimeName = loJson.StringOf('pkcs7.verify.signerInfo[i].authAttr."1.2.840.113549.1.9.5".name')
    loJson.DtOf('pkcs7.verify.signerInfo[i].authAttr."1.2.840.113549.1.9.5".utctime',0,loAuthAttrSigningTimeUtctime)
    lcAuthAttrMessageDigestName = loJson.StringOf('pkcs7.verify.signerInfo[i].authAttr."1.2.840.113549.1.9.4".name')
    lcAuthAttrMessageDigestDigest = loJson.StringOf('pkcs7.verify.signerInfo[i].authAttr."1.2.840.113549.1.9.4".digest')
    lcAuthAttrSigningCertificateV2Name = loJson.StringOf('pkcs7.verify.signerInfo[i].authAttr."1.2.840.113549.1.9.16.2.47".name')
    lcAuthAttrSigningCertificateV2Der = loJson.StringOf('pkcs7.verify.signerInfo[i].authAttr."1.2.840.113549.1.9.16.2.47".der')
    i = i + 1
ENDDO

RELEASE loCrypt
RELEASE loJson
RELEASE loAuthAttrSigningTimeUtctime