|
Chilkat • HOME • .NET Core C# • Android™ • AutoIt • C • C# • C++ • Chilkat2-Python • CkPython • Classic ASP • DataFlex • Delphi ActiveX • Delphi DLL • Go • Java • Lianja • Mono C# • Node.js • Objective-C • PHP ActiveX • PHP Extension • Perl • PowerBuilder • PowerShell • PureBasic • Ruby • SQL Server • Swift 2 • Swift 3,4,5... • Tcl • Unicode C • Unicode C++ • VB.NET • VBScript • Visual Basic 6.0 • Visual FoxPro • Xojo Plugin
(Objective-C) FatturaPA XML Invoice Sign+Encrypt to P7MDemonstrates how to create a CAdES BES signed + encrypted invoice.xml.p7m for the Italian FatturaPA exchange system. Note: This example requires Chilkat v9.5.0.75 or greater.
#import <CkoCrypt2.h> #import <NSString.h> #import <CkoCert.h> #import <CkoJsonObject.h> // Note: Requires Chilkat v9.5.0.75 or greater. // This requires the Chilkat API to have been previously unlocked. // See Global Unlock Sample for sample code. CkoCrypt2 *crypt = [[CkoCrypt2 alloc] init]; // Use a digital certificate and private key from a PFX file (.pfx or .p12). NSString *pfxPath = @"qa_data/pfx/cert_test123.pfx"; NSString *pfxPassword = @"test123"; CkoCert *cert = [[CkoCert alloc] init]; BOOL success = [cert LoadPfxFile: pfxPath password: pfxPassword]; if (success != YES) { NSLog(@"%@",cert.LastErrorText); return; } // Provide the signing cert (with associated private key). success = [crypt SetSigningCert: cert]; if (success != YES) { NSLog(@"%@",crypt.LastErrorText); return; } // Indicate that SHA-256 should be used. crypt.HashAlgorithm = @"sha256"; // Specify the signed attributes to be included. // (This is what makes it CAdES-BES compliant.) CkoJsonObject *jsonSignedAttrs = [[CkoJsonObject alloc] init]; [jsonSignedAttrs UpdateInt: @"contentType" value: [NSNumber numberWithInt: 1]]; [jsonSignedAttrs UpdateInt: @"signingTime" value: [NSNumber numberWithInt: 1]]; [jsonSignedAttrs UpdateInt: @"messageDigest" value: [NSNumber numberWithInt: 1]]; [jsonSignedAttrs UpdateInt: @"signingCertificateV2" value: [NSNumber numberWithInt: 1]]; crypt.SigningAttributes = [jsonSignedAttrs Emit]; NSString *inFile = @"qa_data/xml/IT01234567890_11002.xml"; NSString *sigFile = @"qa_data/fatturapa/signed.p7m"; // Create the CAdES-BES signature, which contains the original data. success = [crypt CreateP7M: inFile p7mPath: sigFile]; if (success == NO) { NSLog(@"%@",crypt.LastErrorText); return; } // Now we'll encrypt what was signed using FatturaPA's certificate (from a PEM file) CkoCert *encryptCert = [[CkoCert alloc] init]; success = [encryptCert LoadFromFile: @"qa_data/certs/fatturapa_cert.pem"]; if (success != YES) { NSLog(@"%@",encryptCert.LastErrorText); return; } crypt.CryptAlgorithm = @"pki"; success = [crypt SetEncryptCert: encryptCert]; if (success != YES) { NSLog(@"%@",crypt.LastErrorText); return; } // Indicate the underlying bulk encryption algorithm to be used: crypt.Pkcs7CryptAlg = @"aes"; crypt.KeyLength = [NSNumber numberWithInt:128]; // There's one last option that could be set. If is the RSA encryption encryption/padding scheme. // By default, RSAES_PKCS1-V1_5 is used. If desired, the OaepPadding property could be set to YES to // use RSAES_OAEP. (We'll leave it set at the default value of NO) crypt.OaepPadding = NO; // Everything is specified. Encrypt the .p7m to create a new .p7m (which adds a layer of encryption around the opaque signature). // The output is PKCS7 in binary DER format. success = [crypt CkEncryptFile: sigFile destFile: @"qa_output/signed_and_encrypted.p7m"]; if (success != YES) { NSLog(@"%@",crypt.LastErrorText); return; } NSLog(@"%@",@"Success."); |
||||
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.