Chilkat Examples

ChilkatHOMEAndroid™Classic ASPCC++C#Mono C#.NET Core C#C# UWP/WinRTDataFlexDelphi ActiveXDelphi DLLVisual FoxProJavaLianjaMFCObjective-CPerlPHP ActiveXPHP ExtensionPowerBuilderPowerShellPureBasicCkPythonChilkat2-PythonRubySQL ServerSwift 2Swift 3,4,5...TclUnicode CUnicode C++Visual Basic 6.0VB.NETVB.NET UWP/WinRTVBScriptXojo PluginNode.jsExcelGo

MFC Examples

Web API Categories

ASN.1
Amazon EC2
Amazon Glacier
Amazon S3
Amazon S3 (new)
Amazon SES
Amazon SNS
Amazon SQS
Async
Azure Cloud Storage
Azure Service Bus
Azure Table Service
Base64
Bounced Email
Box
CAdES
CSR
CSV
Certificates
Compression
DKIM / DomainKey
DSA
Diffie-Hellman
Digital Signatures
Dropbox
Dynamics CRM
EBICS
ECC
Ed25519
Email Object
Encryption
FTP
FileAccess
Firebase
GMail REST API
GMail SMTP/IMAP/POP
Geolocation
Google APIs
Google Calendar
Google Cloud SQL
Google Cloud Storage
Google Drive
Google Photos
Google Sheets
Google Tasks
Gzip
HTML-to-XML/Text
HTTP

HTTP Misc
IMAP
JSON
JSON Web Encryption (JWE)
JSON Web Signatures (JWS)
JSON Web Token (JWT)
Java KeyStore (JKS)
MHT / HTML Email
MIME
MS Storage Providers
Microsoft Graph
NTLM
OAuth1
OAuth2
OIDC
Office365
OneDrive
OpenSSL
Outlook
Outlook Calendar
Outlook Contact
PDF Signatures
PEM
PFX/P12
PKCS11
POP3
PRNG
REST
REST Misc
RSA
SCP
SCard
SFTP
SMTP
SSH
SSH Key
SSH Tunnel
ScMinidriver
SharePoint
Socket/SSL/TLS
Spider
Stream
Tar Archive
Upload
WebSocket
XAdES
XML
XML Digital Signatures
XMP
Zip
curl

 

 

 

(MFC) Aadhaar Paperless Offline e-kyc

Opens an encrypted .zip containing Aadhaar Paperless Offline e-KYC XML. Gets the XML and validates the digital signature. Then computes the hash for the mobile number and Email ID.

For more information, see https://uidai.gov.in/ecosystem/authentication-devices-documents/about-aadhaar-paperless-offline-e-kyc.html

Chilkat C/C++ Library Downloads

MS Visual C/C++ Libs

See Also: Using MFC CString in Chilkat

#include <CkZip.h>
#include <CkZipEntry.h>
#include <CkBinData.h>
#include <CkXmlDSig.h>
#include <CkCert.h>
#include <CkPublicKey.h>
#include <CkCrypt2.h>
#include <CkXml.h>

void ChilkatSample(void)
    {
    CkString strOut;

    // This example requires the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    // Open the .zip containing the Aadhaar Paperless Offline e-KYC XML.
    // The .zip is encrypted using the "Share Phrase".
    CkZip zip;
    bool success = zip.OpenZip("qa_data/xml_dsig/offline_paperless_kyc.zip");
    if (success == false) {
        strOut.append(zip.lastErrorText());
        strOut.append("\r\n");
        SetDlgItemText(IDC_EDIT1,strOut.getUnicode());
        return;
    }

    // The .zip should contain 1 XML file.
    CkZipEntry *entry = zip.GetEntryByIndex(0);
    if (zip.get_LastMethodSuccess() == false) {
        strOut.append(zip.lastErrorText());
        strOut.append("\r\n");
        SetDlgItemText(IDC_EDIT1,strOut.getUnicode());
        return;
    }

    // To get the contents, we need to specify the Share Phrase.
    const char *sharePhrase = "Lock@487";
    zip.put_DecryptPassword(sharePhrase);

    CkBinData bdXml;
    // The XML file will be unzipped into the bdXml object.
    success = entry->UnzipToBd(bdXml);
    if (success == false) {
        strOut.append(entry->lastErrorText());
        strOut.append("\r\n");
        delete entry;
        SetDlgItemText(IDC_EDIT1,strOut.getUnicode());
        return;
    }

    delete entry;

    // First verify the XML digital signature.
    CkXmlDSig dsig;
    success = dsig.LoadSignatureBd(bdXml);
    if (success != true) {
        strOut.append(dsig.lastErrorText());
        strOut.append("\r\n");
        SetDlgItemText(IDC_EDIT1,strOut.getUnicode());
        return;
    }

    // The UIDAI XML signature does not contain the KeyInfo, so we must load the uidai certificate
    // and indicate that its public key is to be used for verifying the signature.
    CkCert cert;
    success = cert.LoadFromFile("qa_data/xml_dsig/uidai_auth_sign_prod_2023.cer");
    if (success != true) {
        strOut.append(cert.lastErrorText());
        strOut.append("\r\n");
        SetDlgItemText(IDC_EDIT1,strOut.getUnicode());
        return;
    }

    // Get the certificate's public key.
    CkPublicKey *pubKey = cert.ExportPublicKey();
    success = dsig.SetPublicKey(*pubKey);
    delete pubKey;

    // The XML in this example contains only 1 signature.
    bool bVerifyReferenceDigests = true;
    bool bVerified = dsig.VerifySignature(bVerifyReferenceDigests);
    if (bVerified == false) {
        strOut.append(dsig.lastErrorText());
        strOut.append("\r\n");
        strOut.append("The signature was not valid.");
        strOut.append("\r\n");
        SetDlgItemText(IDC_EDIT1,strOut.getUnicode());
        return;
    }

    strOut.append("The XML digital signature is valid.");
    strOut.append("\r\n");

    // Let's compute the hash for the Mobile Number.

    // 	Hashing logic for Mobile Number :
    // 	Sha256(Sha256(Mobile+SharePhrase))*number of times last digit of Aadhaar number
    // 	(Ref ID field contains last 4 digits).
    // 
    // 	Example :
    // 	Mobile: 1234567890
    // 	Aadhaar Number:XXXX XXXX 3632
    // 	Passcode : Lock@487
    // 	Hash: Sha256(Sha256(1234567890Lock@487))*2
    // 	In case of Aadhaar number ends with Zero we will hashed one time.

    CkCrypt2 crypt;
    crypt.put_HashAlgorithm("sha256");
    crypt.put_EncodingMode("hexlower");

    const char *strToHash = "1234567890Lock@487";
    CkBinData bdHash;
    success = bdHash.AppendString(strToHash,"utf-8");

    // Hash a number of times equal to the last digit of your Aadhaar number.
    // If the Aadhaar number ends with 0, then hash one time.
    // For this example, we'll just set the number of times to hash
    // for the case where an Aadhaar number ends in "9"
    int numTimesToHash = 9;
    int i;
    for (i = 1; i <= numTimesToHash; i++) {
        const char *tmpStr = crypt.hashBdENC(bdHash);
        bdHash.Clear();
        bdHash.AppendString(tmpStr,"utf-8");
    }

    strOut.append("Computed Mobile hash = ");
    strOut.append(bdHash.getString("utf-8"));
    strOut.append("\r\n");

    // Let's get the mobile hash stored in the XML and compare it with our computed hash.
    CkXml xml;
    success = xml.LoadBd(bdXml,true);
    const char *m_hash = xml.chilkatPath("UidData|Poi|(m)");

    strOut.append("Stored Mobile hash   = ");
    strOut.append(m_hash);
    strOut.append("\r\n");

    // Now do the same thing for the email hash:

    strToHash = "abc@gm.comLock@487";
    bdHash.Clear();
    success = bdHash.AppendString(strToHash,"utf-8");

    for (i = 1; i <= numTimesToHash; i++) {
        const char *tmpStr = crypt.hashBdENC(bdHash);
        bdHash.Clear();
        bdHash.AppendString(tmpStr,"utf-8");
    }

    strOut.append("Computed Email hash = ");
    strOut.append(bdHash.getString("utf-8"));
    strOut.append("\r\n");

    const char *e_hash = xml.chilkatPath("UidData|Poi|(e)");
    strOut.append("Stored Email hash   = ");
    strOut.append(e_hash);
    strOut.append("\r\n");


    SetDlgItemText(IDC_EDIT1,strOut.getUnicode());

    }

 

© 2000-2022 Chilkat Software, Inc. All Rights Reserved.