Sample code for 30+ languages & platforms
Lianja

Create XAdES using Smart Card or USB Token

See more XAdES Examples

Demonstrates how to create an XAdES signed XML document using a certificate located on a smartcard or USB token.

Chilkat Lianja Downloads

Lianja
llSuccess = .F.

// Load the XML to be signed.
loXmlToSign = createobject("CkXml")
llSuccess = loXmlToSign.LoadXmlFile("qa_data/fattura_electronica/docToSign.xml")
if (llSuccess = .F.) then
    ? loXmlToSign.LastErrorText
    release loXmlToSign
    return
endif

loGen = createobject("CkXmlDSigGen")

loGen.SigLocation = "p:FatturaElettronica"
loGen.SigId = "xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504"
loGen.SigNamespacePrefix = "ds"
loGen.SigNamespaceUri = "http://www.w3.org/2000/09/xmldsig#"
loGen.SigValueId = "xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-sigvalue"
loGen.SignedInfoCanonAlg = "C14N"
loGen.SignedInfoDigestMethod = "sha256"

// Create an Object to be added to the Signature.
// Note: Chilkat will automatically populate the strings indicated by "TO BE GENERATED BY CHILKAT" with actual/correct values
// when the XML is signed.
loObject1 = createobject("CkXml")
loObject1.Tag = "xades:QualifyingProperties"
loObject1.AddAttribute("xmlns:xades","http://uri.etsi.org/01903/v1.3.2#")
loObject1.AddAttribute("xmlns:xades141","http://uri.etsi.org/01903/v1.4.1#")
loObject1.AddAttribute("Target","#xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504")
loObject1.UpdateAttrAt("xades:SignedProperties",.T.,"Id","xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-signedprops")
loObject1.UpdateChildContent("xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningTime","TO BE GENERATED BY CHILKAT")
loObject1.UpdateAttrAt("xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningCertificateV2|xades:Cert|xades:CertDigest|ds:DigestMethod",.T.,"Algorithm","http://www.w3.org/2001/04/xmlenc#sha256")
loObject1.UpdateChildContent("xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningCertificateV2|xades:Cert|xades:CertDigest|ds:DigestValue","TO BE GENERATED BY CHILKAT")
loObject1.UpdateChildContent("xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningCertificateV2|xades:Cert|xades:IssuerSerialV2","TO BE GENERATED BY CHILKAT")

loGen.AddObject("",loObject1.GetXml(),"","")

// -------- Reference 1 --------
loGen.KeyInfoId = "xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-keyinfo"
loGen.AddSameDocRef("xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-keyinfo","sha256","","","")

// -------- Reference 2 --------
loGen.AddSameDocRef("","sha256","","","")
loGen.SetRefIdAttr("","xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-ref0")

// -------- Reference 3 --------
loGen.AddObjectRef("xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-signedprops","sha256","","","http://uri.etsi.org/01903#SignedProperties")

// ----------------------------------------------------------------
//  Load a certificate that has been pre-installed on the Windows system
//  This includes certificates on smartcards and USB tokens
loCert = createobject("CkCert")

//  You may provide the PIN here..
loCert.SmartCardPin = "000000"

// Load the certificate on the smartcard currently in the reader (or on the USB token).
// Pass an empty string to allow Chilkat to automatically choose the CSP (Cryptographi Service Provider).
// See Load Certificate on Smartcard for information about explicitly selecting a particular CSP.
llSuccess = loCert.LoadFromSmartcard("")
if (llSuccess = .F.) then
    ? loCert.LastErrorText
    release loXmlToSign
    release loGen
    release loObject1
    release loCert
    return
endif

loGen.SetX509Cert(loCert,.T.)
loGen.KeyInfoType = "X509Data"
loGen.X509Type = "Certificate"

// Load XML to be signed...
loSbXml = createobject("CkStringBuilder")
loXmlToSign.GetXmlSb(loSbXml)

loGen.Behaviors = "IndentedSignature,ForceAddEnvelopedSignatureTransform"

// Sign the XML...
llSuccess = loGen.CreateXmlDSigSb(loSbXml)
if (llSuccess = .F.) then
    ? loGen.LastErrorText
    release loXmlToSign
    release loGen
    release loObject1
    release loCert
    release loSbXml
    return
endif

// Save the signed XMl to a file.
llSuccess = loSbXml.WriteFile("qa_output/signedXml.xml","utf-8",.F.)

? loSbXml.GetAsString()

// ----------------------------------------
// Verify the signature we just produced...
loVerifier = createobject("CkXmlDSig")
llSuccess = loVerifier.LoadSignatureSb(loSbXml)
if (llSuccess = .F.) then
    ? loVerifier.LastErrorText
    release loXmlToSign
    release loGen
    release loObject1
    release loCert
    release loSbXml
    release loVerifier
    return
endif

llVerified = loVerifier.VerifySignature(.T.)
if (llVerified <> .T.) then
    ? loVerifier.LastErrorText
    release loXmlToSign
    release loGen
    release loObject1
    release loCert
    release loSbXml
    release loVerifier
    return
endif

? "This signature was successfully verified."


release loXmlToSign
release loGen
release loObject1
release loCert
release loSbXml
release loVerifier