Chilkat Examples

ChilkatHOME.NET Core C#Android™AutoItCC#C++Chilkat2-PythonCkPythonClassic ASPDataFlexDelphi ActiveXDelphi DLLGoJavaLianjaMono C#Node.jsObjective-CPHP ActiveXPHP ExtensionPerlPowerBuilderPowerShellPureBasicRubySQL ServerSwift 2Swift 3,4,5...TclUnicode CUnicode C++VB.NETVBScriptVisual Basic 6.0Visual FoxProXojo Plugin

Objective-C Examples

Web API Categories

ASN.1
AWS KMS
AWS Misc
Amazon EC2
Amazon Glacier
Amazon S3
Amazon S3 (new)
Amazon SES
Amazon SNS
Amazon SQS
Async
Azure Cloud Storage
Azure Key Vault
Azure Service Bus
Azure Table Service
Base64
Bounced Email
Box
CAdES
CSR
CSV
Certificates
Cloud Signature CSC
Code Signing
Compression
DKIM / DomainKey
DNS
DSA
Diffie-Hellman
Digital Signatures
Dropbox
Dynamics CRM
EBICS
ECC
Ed25519
Email Object
Encryption
FTP
FileAccess
Firebase
GMail REST API
GMail SMTP/IMAP/POP
Geolocation
Google APIs
Google Calendar
Google Cloud SQL
Google Cloud Storage
Google Drive
Google Photos
Google Sheets
Google Tasks
Gzip
HTML-to-XML/Text
HTTP

HTTP Misc
IMAP
JSON
JSON Web Encryption (JWE)
JSON Web Signatures (JWS)
JSON Web Token (JWT)
Java KeyStore (JKS)
MHT / HTML Email
MIME
MS Storage Providers
Microsoft Graph
Misc
NTLM
OAuth1
OAuth2
OIDC
Office365
OneDrive
OpenSSL
Outlook
Outlook Calendar
Outlook Contact
PDF Signatures
PEM
PFX/P12
PKCS11
POP3
PRNG
REST
REST Misc
RSA
SCP
SCard
SFTP
SMTP
SSH
SSH Key
SSH Tunnel
ScMinidriver
Secrets
SharePoint
SharePoint Online
Signing in the Cloud
Socket/SSL/TLS
Spider
Stream
Tar Archive
ULID/UUID
Upload
WebSocket
XAdES
XML
XML Digital Signatures
XMP
Zip
curl
uncategorized

 

 

 

(Objective-C) Add Private Key to Java Keystore

Adds a private key to an existing Java keystore.

Chilkat Objective-C Library Downloads

MAC OS X (Cocoa) Libs

iOS Libs

#import <CkoJavaKeyStore.h>
#import <NSString.h>
#import <CkoCert.h>
#import <CkoXmlCertVault.h>
#import <CkoPrivateKey.h>
#import <CkoPfx.h>

// This requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

CkoJavaKeyStore *jks = [[CkoJavaKeyStore alloc] init];

NSString *jksPassword = @"myJksPassword";
NSString *jksPath = @"/someDir/keyStore.jks";

// Load the Java keystore from a file.
BOOL success = [jks LoadFile: jksPassword path: jksPath];
if (success != YES) {
    NSLog(@"%@",jks.LastErrorText);
    return;
}

// A JKS private key entry consists of both the private key,
// it's associated certificate (which contains the matching public key
// within the X.509 of the certificate), and the certificates in the
// chain of authentication to the root.
// 
// Therefore, to add a private key entry to a JKS requires
// a Chilkat certificate object that has a private key and which also
// has the certificate chain (up to the root) available.

// There are many ways to get a Chilkat certificate object
// that contains (within it) the private key and the certificate chain
// This example will show two possibilities:
// (1) Where the cert and issuing root are provided in PEM format in .crt files,
// and the private key is also provided in unencrypted PEM format (.key file).
// (2) Where the cert, private key, and issuing root are provided in a single PFX.

// First for the .crt / .key files:
CkoCert *cert = [[CkoCert alloc] init];

// Chilkat will automatically determine the format of the cert file and load it correctly.
success = [cert LoadFromFile: @"/mycerts/alice.crt"];
if (success != YES) {
    NSLog(@"%@",cert.LastErrorText);
    return;
}

// Certificates required for building the chain of authentication can be
// added to an XML certificate vault object, and then provided as
// a source for obtaining certs when building the chain.
CkoXmlCertVault *certVault = [[CkoXmlCertVault alloc] init];
success = [certVault AddCertFile: @"/mycerts/ca.crt"];
if (success != YES) {
    NSLog(@"%@",certVault.LastErrorText);
    return;
}

success = [cert UseCertVault: certVault];
if (success != YES) {
    NSLog(@"%@",cert.LastErrorText);
    return;
}

// Now provide the associated private key to the certificate object.
// The Chilkat private key class provides methods for loading from many formats (both
// encrypted and unencrypted).
CkoPrivateKey *privKey = [[CkoPrivateKey alloc] init];
success = [privKey LoadPemFile: @"/mycerts/alice.key"];
if (success != YES) {
    NSLog(@"%@",privKey.LastErrorText);
    return;
}

// Provide the certificate object with the private key:
success = [cert SetPrivateKey: privKey];
if (success != YES) {
    NSLog(@"%@",cert.LastErrorText);
    return;
}

// Our certificate object now contains all that we need to add it as a private key entry
// to the Java keystore:
NSString *alias = @"alice";
success = [jks AddPrivateKey: cert alias: alias password: jksPassword];
if (success != YES) {
    NSLog(@"%@",jks.LastErrorText);
    return;
}

// Write the updated JKS, which contains the new private key entry w/ certificate chain.
success = [jks ToFile: jksPassword path: jksPath];
if (success != YES) {
    NSLog(@"%@",jks.LastErrorText);
    return;
}

NSLog(@"%@",@"Added new private key entry (from .crt and .key files) to the JKS!");

// Now let's add a new private key entry from a PFX that contains a single
// private key with associated cert and cert chain.
CkoPfx *pfx = [[CkoPfx alloc] init];

success = [pfx LoadPfxFile: @"/myPfxFiles/my.pfx" password: @"pfxPassword"];
if (success != YES) {
    NSLog(@"%@",pfx.LastErrorText);
    return;
}

// This is easy -- simply add the PFX to the JKS
alias = @"bob";
success = [jks AddPfx: pfx alias: alias password: jksPassword];
if (success != YES) {
    NSLog(@"%@",jks.LastErrorText);
    return;
}

// Write the updated JKS, which contains the new private key entry w/ certificate chain
// that came from the PFX.
success = [jks ToFile: jksPassword path: jksPath];
if (success != YES) {
    NSLog(@"%@",jks.LastErrorText);
    return;
}

NSLog(@"%@",@"Added new private key entry (from PFX) to the JKS!");
 

© 2000-2024 Chilkat Software, Inc. All Rights Reserved.