|
Chilkat • HOME • .NET Core C# • Android™ • AutoIt • C • C# • C++ • Chilkat2-Python • CkPython • Classic ASP • DataFlex • Delphi ActiveX • Delphi DLL • Go • Java • Lianja • Mono C# • Node.js • Objective-C • PHP ActiveX • PHP Extension • Perl • PowerBuilder • PowerShell • PureBasic • Ruby • SQL Server • Swift 2 • Swift 3,4,5... • Tcl • Unicode C • Unicode C++ • VB.NET • VBScript • Visual Basic 6.0 • Visual FoxPro • Xojo Plugin
(Objective-C) Create CAdES-T Signature using Aruba TSA Server (servizi.arubapec.it)Demonstrates how to create a signature with an external timestamp (using the Aruba TSA Server) that certifies the time of signing. Note: This example requires Chilkat v9.5.0.79 or greater.
#import <CkoCrypt2.h> #import <CkoCert.h> #import <NSString.h> #import <CkoJsonObject.h> // This example requires the Chilkat API to have been previously unlocked. // See Global Unlock Sample for sample code. CkoCrypt2 *crypt = [[CkoCrypt2 alloc] init]; // This example will use a certificate + private key from a .pfx/.p12 file. // On Windows systems, it is also possible to use certs on smartcards/usb tokens or certs pre-installed in the Windows registry. CkoCert *cert = [[CkoCert alloc] init]; NSString *pfxPath = @"qa_data/pfx/myCertAndKey.p12"; NSString *pfxPassword = @"test123"; BOOL success = [cert LoadPfxFile: pfxPath password: pfxPassword]; if (success != YES) { NSLog(@"%@",cert.LastErrorText); return; } success = [crypt SetSigningCert: cert]; // Use SHA-256 rather than the default of SHA-1 crypt.HashAlgorithm = @"sha256"; // Create JSON that tells Chilkat what signing attributes to include: CkoJsonObject *attrs = [[CkoJsonObject alloc] init]; [attrs UpdateBool: @"contentType" value: YES]; [attrs UpdateBool: @"signingTime" value: YES]; [attrs UpdateBool: @"messageDigest" value: YES]; [attrs UpdateBool: @"signingCertificateV2" value: YES]; // A CAdES-T signature is one that includes a timestampToken created by an online TSA (time stamping authority). // We must include the TSA's URL, as well as a few options to indicate what is desired. // This example uses the Aruba TSA server, which requires a login/password for the HTTPS request. [attrs UpdateBool: @"timestampToken.enabled" value: YES]; [attrs UpdateString: @"timestampToken.tsaUrl" value: @"https://servizi.arubapec.it/tsa/ngrequest.php"]; // The tsaUsername/tsaPassword feature was added in Chilkat v9.5.0.79. // Make sure you are using a version of Chilkat that is no older than v9.5.0.79 [attrs UpdateString: @"timestampToken.tsaUsername" value: @"arubaTsaUsername"]; [attrs UpdateString: @"timestampToken.tsaPassword" value: @"arubaTsaPassword"]; [attrs UpdateBool: @"timestampToken.addNonce" value: NO]; [attrs UpdateBool: @"timestampToken.requestTsaCert" value: YES]; [attrs UpdateString: @"timestampToken.hashAlg" value: @"sha256"]; crypt.SigningAttributes = [attrs Emit]; NSString *inFile = @"qa_data/json/sample.json"; NSString *outFile = @"qa_output/sample_cades_t.p7m"; // This creates the CAdES-T signature. During the signature creation, it // communicates with the TSA to get a timestampToken. success = [crypt CreateP7M: inFile p7mPath: outFile]; if (success != YES) { NSLog(@"%@",crypt.LastErrorText); return; } NSLog(@"%@",@"Success."); |
||||
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.