Lianja
Lianja
Create XAdES using Smart Card or USB Token
See more XAdES Examples
Demonstrates how to create an XAdES signed XML document using a certificate located on a smartcard or USB token.Chilkat Lianja Downloads
llSuccess = .F.
// Load the XML to be signed.
loXmlToSign = createobject("CkXml")
llSuccess = loXmlToSign.LoadXmlFile("qa_data/fattura_electronica/docToSign.xml")
if (llSuccess = .F.) then
? loXmlToSign.LastErrorText
release loXmlToSign
return
endif
loGen = createobject("CkXmlDSigGen")
loGen.SigLocation = "p:FatturaElettronica"
loGen.SigId = "xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504"
loGen.SigNamespacePrefix = "ds"
loGen.SigNamespaceUri = "http://www.w3.org/2000/09/xmldsig#"
loGen.SigValueId = "xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-sigvalue"
loGen.SignedInfoCanonAlg = "C14N"
loGen.SignedInfoDigestMethod = "sha256"
// Create an Object to be added to the Signature.
// Note: Chilkat will automatically populate the strings indicated by "TO BE GENERATED BY CHILKAT" with actual/correct values
// when the XML is signed.
loObject1 = createobject("CkXml")
loObject1.Tag = "xades:QualifyingProperties"
loObject1.AddAttribute("xmlns:xades","http://uri.etsi.org/01903/v1.3.2#")
loObject1.AddAttribute("xmlns:xades141","http://uri.etsi.org/01903/v1.4.1#")
loObject1.AddAttribute("Target","#xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504")
loObject1.UpdateAttrAt("xades:SignedProperties",.T.,"Id","xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-signedprops")
loObject1.UpdateChildContent("xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningTime","TO BE GENERATED BY CHILKAT")
loObject1.UpdateAttrAt("xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningCertificateV2|xades:Cert|xades:CertDigest|ds:DigestMethod",.T.,"Algorithm","http://www.w3.org/2001/04/xmlenc#sha256")
loObject1.UpdateChildContent("xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningCertificateV2|xades:Cert|xades:CertDigest|ds:DigestValue","TO BE GENERATED BY CHILKAT")
loObject1.UpdateChildContent("xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningCertificateV2|xades:Cert|xades:IssuerSerialV2","TO BE GENERATED BY CHILKAT")
loGen.AddObject("",loObject1.GetXml(),"","")
// -------- Reference 1 --------
loGen.KeyInfoId = "xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-keyinfo"
loGen.AddSameDocRef("xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-keyinfo","sha256","","","")
// -------- Reference 2 --------
loGen.AddSameDocRef("","sha256","","","")
loGen.SetRefIdAttr("","xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-ref0")
// -------- Reference 3 --------
loGen.AddObjectRef("xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-signedprops","sha256","","","http://uri.etsi.org/01903#SignedProperties")
// ----------------------------------------------------------------
// Load a certificate that has been pre-installed on the Windows system
// This includes certificates on smartcards and USB tokens
loCert = createobject("CkCert")
// You may provide the PIN here..
loCert.SmartCardPin = "000000"
// Load the certificate on the smartcard currently in the reader (or on the USB token).
// Pass an empty string to allow Chilkat to automatically choose the CSP (Cryptographi Service Provider).
// See Load Certificate on Smartcard for information about explicitly selecting a particular CSP.
llSuccess = loCert.LoadFromSmartcard("")
if (llSuccess = .F.) then
? loCert.LastErrorText
release loXmlToSign
release loGen
release loObject1
release loCert
return
endif
loGen.SetX509Cert(loCert,.T.)
loGen.KeyInfoType = "X509Data"
loGen.X509Type = "Certificate"
// Load XML to be signed...
loSbXml = createobject("CkStringBuilder")
loXmlToSign.GetXmlSb(loSbXml)
loGen.Behaviors = "IndentedSignature,ForceAddEnvelopedSignatureTransform"
// Sign the XML...
llSuccess = loGen.CreateXmlDSigSb(loSbXml)
if (llSuccess = .F.) then
? loGen.LastErrorText
release loXmlToSign
release loGen
release loObject1
release loCert
release loSbXml
return
endif
// Save the signed XMl to a file.
llSuccess = loSbXml.WriteFile("qa_output/signedXml.xml","utf-8",.F.)
? loSbXml.GetAsString()
// ----------------------------------------
// Verify the signature we just produced...
loVerifier = createobject("CkXmlDSig")
llSuccess = loVerifier.LoadSignatureSb(loSbXml)
if (llSuccess = .F.) then
? loVerifier.LastErrorText
release loXmlToSign
release loGen
release loObject1
release loCert
release loSbXml
release loVerifier
return
endif
llVerified = loVerifier.VerifySignature(.T.)
if (llVerified <> .T.) then
? loVerifier.LastErrorText
release loXmlToSign
release loGen
release loObject1
release loCert
release loSbXml
release loVerifier
return
endif
? "This signature was successfully verified."
release loXmlToSign
release loGen
release loObject1
release loCert
release loSbXml
release loVerifier