Sample code for 30+ languages & platforms
Lianja

Using WS_FTP Self-signed Certificate file (.crt) and Private Key File. (.key)

See more FTP Examples

Demonstrates how to use a self-signed certificate created by WS_FTP with Chilkat FTP2.

Note: It is usually not necessary for the FTP client to use a client-side certificate. Most FTP servers using SSL and TLS connections (explicit or implicit) do not require client-side certs. In addition, some high-security FTP servers require "real" certificates -- meaning certificates issued by a real certificate authority with a chain of authentication that leads to a trusted root certificate. The certificates created by WS_FTP are self-signed and untrusted.

Chilkat Lianja Downloads

Lianja
llSuccess = .F.

// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

// Important:  Before running this program, convert your
// .crt and .key files to a .p12 using OpenSSL:
// The command is this:
// openssl pkcs12 -export -in test.crt -inkey test.key -out test.p12
// 

loFtp = createobject("CkFtp2")

loFtp.Hostname = "ftp.example.com"
loFtp.Port = 21
loFtp.Username = "testLogin"
loFtp.Password = "testPassword"

// This example will use explict TLS/SSL.
// Establish an explicit secure channel after connection
// on the standard FTP port 21.
loFtp.AuthTls = .T.

// The Ssl property is for establishing an implicit SSL connection
// on port 990.  Because this example uses explicit SSL, it 
// should remain .F..
loFtp.Ssl = .F.

// Create an instance of a certificate store object, load a .p12 file,
// locate the certificate we need, and use it for signing.
// (a P12/PFX file may contain more than one certificate.)
loCertStore = createobject("CkCertStore")
// The 1st argument is the filename, the 2nd arg is the 
// .p12 file's password.  (OpenSSL will prompty you to set a password
// when converting the .crt and .key into a .p12).
llSuccess = loCertStore.LoadPfxFile("test.p12","secret")
if (llSuccess <> .T.) then
    ? loCertStore.LastErrorText
    release loFtp
    release loCertStore
    return
endif

loJsonCN = createobject("CkJsonObject")
loJsonCN.UpdateString("CN","cert common name")

loCert = createobject("CkCert")
llSuccess = loCertStore.FindCert(loJsonCN,loCert)
if (llSuccess = .F.) then
    ? loCertStore.LastErrorText
    release loFtp
    release loCertStore
    release loJsonCN
    release loCert
    return
endif

llSuccess = loFtp.SetSslClientCert(loCert)

// Connect and login to the FTP server.
llSuccess = loFtp.Connect()
if (llSuccess <> .T.) then
    ? loFtp.LastErrorText
    release loFtp
    release loCertStore
    release loJsonCN
    release loCert
    return
else
    // LastErrorText contains information even when
    // successful. This allows you to visually verify
    // that the secure connection actually occurred.
    ? loFtp.LastErrorText
endif

? "Secure FTP Channel Established!"
? loFtp.LastErrorText

// Do whatever you're doing to do ...
// upload files, download files, etc...

// ...
// ...

llSuccess = loFtp.Disconnect()


release loFtp
release loCertStore
release loJsonCN
release loCert