Sample code for 30+ languages & platforms
Lianja

Download and Trust the DigiCert Global Root CA

See more Certificates Examples

Demonstrates how to download a root certificate and trust it.

Chilkat Lianja Downloads

Lianja
llSuccess = .F.

// This requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

// In this example, the URLs for the DigiCert root CA certs are available at this web page:
// https://www.digicert.com/digicert-root-certificates.htm

// This example downloads the "DigiCert Global Root G3"
// Valid until: 15/Jan/2038
// Serial #: 05:55:56:BC:F2:5E:A4:35:35:C3:A4:0F:D5:AB:45:72
// Thumbprint: 7E04DE896A3E666D00E687D33FFAD93BE83D349E

lcCertUrl = "https://dl.cacerts.digicert.com/DigiCertGlobalRootG3.crt"

loHttp = createobject("CkHttp")
loBdCert = createobject("CkBinData")
llSuccess = loHttp.DownloadBd(lcCertUrl,loBdCert)
if (llSuccess = .F.) then
    ? loHttp.LastErrorText
    release loHttp
    release loBdCert
    return
endif

// Load it into a Chilkat cert object.
loCert = createobject("CkCert")
llSuccess = loCert.LoadFromBd(loBdCert)
if (llSuccess = .F.) then
    ? loCert.LastErrorText
    release loHttp
    release loBdCert
    release loCert
    return
endif

// Examine the common name,serial, and thumbprint:
? "CN: " + loCert.SubjectCN
? "Serial: " + loCert.SerialNumber
? "Thumbprint: " + loCert.Sha1Thumbprint

// Output from the above:
// CN: DigiCert Global Root G3
// Serial: 055556BCF25EA43535C3A40FD5AB4572
// Thumbprint: 7E04DE896A3E666D00E687D33FFAD93BE83D349E

// If desired, the certificate can be saved to a local file so it does not need
// to be downloaded from the website every time.  
lcCertPath = "qa_data/certs/DigiCertGlobalRootG3.crt"
llSuccess = loBdCert.WriteFile(lcCertPath)

// To load the cert from a file...
llSuccess = loCert.LoadFromFile(lcCertPath)

// Do the following to add the cert to the collection of trusted roots
// for this application.  (Note:  The trust is not persisted.  Each time the
// application runs, it should load the cert (from whatever source, whether it is
// a file, a database,etc.) and do the following:
loTroots = createobject("CkTrustedRoots")

loTroots.AddCert(loCert)
loTroots.Activate()

? loCert.SubjectCN + " is now trusted for this run of this application."


release loHttp
release loBdCert
release loCert
release loTroots