(Node.js) Get Certificates within XML Signature

Demonstrates how to get the certificates contained within an XML signature.

Install Chilkat for Node.js and Electron using npm at Chilkat npm packages for Node.js Chilkat npm packages for Electron on Windows, Linux, MacOS

var os = require('os');
if (os.platform() == 'win32') {  
  var chilkat = require('@chilkat/ck-node23-win64'); 
} else if (os.platform() == 'linux') {
    if (os.arch() == 'arm') {
        var chilkat = require('@chilkat/ck-node23-linux-arm');
    } else if (os.arch() == 'arm64') {
        var chilkat = require('@chilkat/ck-node23-linux-arm64');
    } else {
        var chilkat = require('@chilkat/ck-node23-linux-x64');
    }
} else if (os.platform() == 'darwin') {
  var chilkat = require('@chilkat/ck-node23-mac-universal');
}

function chilkatExample() {

    // This example requires the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    var sbXml = new chilkat.StringBuilder();

    // Load XML containing one or more signatures.
    var success = sbXml.LoadFile("qa_data/xml_dsig_valid_samples/multipleSigners/sp.pdf.XAdES.xml","utf-8");
    if (success == false) {
        console.log("Failed to load the XML file..");
        return;
    }

    var dsig = new chilkat.XmlDSig();

    // First load the XML containing the signatures to be verified.
    // Note that this particular Signature already contains the RSA public key that will be used
    // for verification.
    success = dsig.LoadSignatureSb(sbXml);
    if (success !== true) {
        console.log(dsig.LastErrorText);
        return;
    }

    // For each signature, verify and also get the certificate(s) contained within each Signature.
    var i = 0;
    var saCerts = new chilkat.StringArray();
    var cert = new chilkat.Cert();

    console.log("numSignatures = " + dsig.NumSignatures);

    while (i < dsig.NumSignatures) {
        // Select the Nth signature by setting the Selector property.
        dsig.Selector = i;

        var bVerifyReferenceDigests = true;
        var bVerified = dsig.VerifySignature(bVerifyReferenceDigests);
        console.log("Signature " + (i+1) + " verified = " + bVerified);

        // Get the certificates embedded in this signature.
        saCerts.Clear();
        success = dsig.GetCerts(saCerts);
        if (success == true) {
            var j = 0;
            while (j < saCerts.Count) {
                success = cert.LoadFromBase64(saCerts.GetString(j));
                if (success == true) {
                    console.log("    " + cert.SubjectDN);
                }

                j = j+1;
            }

        }

        i = i+1;
    }


}

chilkatExample();