Chilkat HOME .NET Core C# Android™ AutoIt C C# C++ Chilkat2-Python CkPython Classic ASP DataFlex Delphi ActiveX Delphi DLL Go Java Lianja Mono C# Node.js Objective-C PHP ActiveX PHP Extension Perl PowerBuilder PowerShell PureBasic Ruby SQL Server Swift 2 Swift 3,4,5... Tcl Unicode C Unicode C++ VB.NET VBScript Visual Basic 6.0 Visual FoxPro Xojo Plugin
(Objective-C) Include the SigningCertificateV2 Authenticated Attribute in CAdES (CMS) SignatureDemonstrates how to include the SigningCertificateV2 authenticated attribute in a CMS (.p7m/.p7s) signature.
#import <CkoCrypt2.h> #import <CkoCert.h> #import <NSString.h> #import <CkoJsonObject.h> // This example assumes the Chilkat API to have been previously unlocked. // See Global Unlock Sample for sample code. CkoCrypt2 *crypt = [[CkoCrypt2 alloc] init]; CkoCert *cert = [[CkoCert alloc] init]; BOOL success = [cert LoadPfxFile: @"qa_data/pfx/cert_test123.pfx" password: @"test123"]; if (success != YES) { NSLog(@"%@",cert.LastErrorText); return; } // Tell the crypt component to use this cert. success = [crypt SetSigningCert: cert]; if (success != YES) { NSLog(@"%@",crypt.LastErrorText); return; } // The CadesEnabled property applies to all methods that create PKCS7 signatures. // To create a CAdES-BES signature, set this property equal to true. crypt.CadesEnabled = YES; crypt.HashAlgorithm = @"sha256"; // We can sign any type of file, creating a .p7s as output. // The .p7s contains the signature and also embeds the data of the file that is signed. NSString *inFile = @"qa_data/pdf/sample.pdf"; NSString *p7sFile = @"qa_output/sample.pdf.p7s"; CkoJsonObject *jsonSigningAttrs = [[CkoJsonObject alloc] init]; [jsonSigningAttrs UpdateInt: @"contentType" value: [NSNumber numberWithInt: 1]]; [jsonSigningAttrs UpdateInt: @"signingTime" value: [NSNumber numberWithInt: 1]]; [jsonSigningAttrs UpdateInt: @"messageDigest" value: [NSNumber numberWithInt: 1]]; // This is where we specify for the signingCertificateV2 attribute to be included: [jsonSigningAttrs UpdateInt: @"signingCertificateV2" value: [NSNumber numberWithInt: 1]]; crypt.SigningAttributes = [jsonSigningAttrs Emit]; // By default, all the certs in the chain of authentication are included in the signature. // If desired, we can choose to only include the signing certificate: crypt.IncludeCertChain = NO; // Create the CAdES-BES attached signature, which contains the original data. // Note: Chilkat's function naming is not accurate. CreateP7M creates a PKCS7 signature where the signed file // is contained within the signature. CreateP7S creates a detached PKCS7 signature where the signed file // is NOT contained within the signature. We want the data to be contained in the signature, therefore // we call CreateP7M even though we are naming our output file .p7s. success = [crypt CreateP7M: inFile p7mPath: p7sFile]; if (success == NO) { NSLog(@"%@",crypt.LastErrorText); return; } // Verify the .p7s file and extract the original file from the .p7s. NSString *extractedToFilePath = @"qa_output/sample.pdf"; success = [crypt VerifyP7M: p7sFile destPath: extractedToFilePath]; if (success == NO) { NSLog(@"%@",crypt.LastErrorText); return; } NSLog(@"%@",@"Success!"); |
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.