Sample code for 30+ languages & platforms
JavaScript

Sign Manifest File to Generate a Passbook .pkpass in Memory

Demonstrates how to create a Passbook .pkpass archive by creating a signature of a manifest file and then zipping to a .pkpass archive in memory
Note
This example is intended for running within a Chilkat.Js embedded JavaScript engine. All Chilkat JavaScript examples require Chilkat v11.4.0 or greater.
JavaScript
var success = false;

// This requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

// ---------------------------------------------------------------------------------------------
// This example is the same as Sign Manifest File to Generate a Passbook .pkpass file
// except everything happens in memory (no input files, no output files)
// ---------------------------------------------------------------------------------------------

// First create the manifest.json

var manifest = new CkJsonObject();
var crypt = new CkCrypt2();

var zip = new CkZip();
zip.NewZip("notUsedAndNeverCreated.zip");

crypt.HashAlgorithm = "sha1";
// Return hashes as lowercase hex.
crypt.EncodingMode = "hexlower";

var digestStr;

var pngData = new CkBinData();
// Assume we load the pngData with bytes for "icon.png" from somewhere, such as a byte array in memory.
zip.AddBd("icon.png",pngData);
digestStr = crypt.HashBdENC(pngData);
manifest.UpdateString("\"icon.png\"",digestStr);

pngData.Clear();
// Assume we load the pngData with bytes for "icon@2x.png" from somewhere...
zip.AddBd("icon@2x.png",pngData);
digestStr = crypt.HashBdENC(pngData);
manifest.UpdateString("\"icon@2x.png\"",digestStr);

pngData.Clear();
// Assume we load the pngData with bytes for "logo.png" from somewhere...
zip.AddBd("logo.png",pngData);
digestStr = crypt.HashBdENC(pngData);
manifest.UpdateString("\"logo.png\"",digestStr);

pngData.Clear();
// Assume we load the pngData with bytes for "logo@2x.png" from somewhere...
zip.AddBd("logo@2x.png",pngData);
digestStr = crypt.HashBdENC(pngData);
manifest.UpdateString("\"logo@2x.png\"",digestStr);

var passJson = "{ .... }";//  Contains the contents of pass.json
zip.AddString("pass.json",passJson,"utf-8");
digestStr = crypt.HashStringENC(passJson);
manifest.UpdateString("\"pass.json\"",digestStr);

zip.AddString("manifest.json",manifest.Emit(),"utf-8");

// Make sure we have the Apple WWDR intermediate certificate available for 
// the cert chain in the signature.
var certVault = new CkXmlCertVault();
var appleWwdrCert = new CkCert();
success = appleWwdrCert.LoadByCommonName("Apple Worldwide Developer Relations Certification Authority");
if (success !== true) {
    console.log("The Apple WWDR intermediate certificate is not installed.");
    console.log("It is available at https://developer.apple.com/certificationauthority/AppleWWDRCA.cer");
    console.log("You may alternatively load the .cer like this...");
    success = appleWwdrCert.LoadFromFile("qa_data/certs/AppleWWDRCA.cer");
    if (success == false) {
        console.log(appleWwdrCert.LastErrorText);
        return;
    }

}

certVault.AddCert(appleWwdrCert);
crypt.UseCertVault(certVault);

// Use a digital certificate and private key from a PFX
var bdPfx = new CkBinData();
// Assume we loaded a PFX into bdPfx....
var pfxPassword = "test123";

var cert = new CkCert();
success = cert.LoadPfxBd(bdPfx,pfxPassword);
if (success == false) {
    console.log(cert.LastErrorText);
    return;
}

// Provide the signing cert (with associated private key).
success = crypt.SetSigningCert(cert);
if (success == false) {
    console.log(crypt.LastErrorText);
    return;
}

// Specify the signed attributes to be included.
// (These attributes appear to not be necessary, but we're including
// them just in case they become necessary in the future.)
var jsonSignedAttrs = new CkJsonObject();
jsonSignedAttrs.UpdateInt("contentType",1);
jsonSignedAttrs.UpdateInt("signingTime",1);
crypt.SigningAttributes = jsonSignedAttrs.Emit();

// Sign the manifest JSON to produce a signature
crypt.EncodingMode = "base64";
var sig = crypt.SignStringENC(manifest.Emit());
var bdSig = new CkBinData();
bdSig.AppendEncoded(sig,"base64");
zip.AddBd("signature",bdSig);

// ---------------------------------------------------------------------------------------------
// Note: Chilkat also has the capability to do everything in-memory (no files would be involved).  
// If this is of interest, please send email to support@chilkatsoft.com
// ---------------------------------------------------------------------------------------------

// Create the .pkipass archive (which is a .zip archive containing the required files).
// the .zip is written to bdZip
var bdZip = new CkBinData();
success = zip.WriteBd(bdZip);
if (success == false) {
    console.log(zip.LastErrorText);
    return;
}

console.log("Success.");