Sample code for 30+ languages & platforms
Objective-C

Get the Certificate with Private Key from a Java KeyStore

See more Java KeyStore (JKS) Examples

Load a Chilkat certificate object from a Java KeyStore.

Chilkat Objective-C Downloads

Objective-C
#import <CkoJavaKeyStore.h>
#import <NSString.h>
#import <CkoCertChain.h>
#import <CkoCert.h>
#import <CkoCrypt2.h>

BOOL success = NO;

// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

// Most of the time a .jks contains one certificate with it's associated private key.
// (Similar to how a .pfx/.p12 usually contains a particular certificate with private key.)
// This example demonstrates how to get the certificate with private key such that it can be used
// by other Chilkat classes wherever a cert w/ private key is needed.
CkoJavaKeyStore *jks = [[CkoJavaKeyStore alloc] init];
NSString *password = @"secret";
success = [jks LoadFile: password path: @"qa_data/jks/test_secret.jks"];
if (success == NO) {
    NSLog(@"%@",jks.LastErrorText);
    return;
}

// Make sure we have a private key.
if ([jks.NumPrivateKeys intValue] < 1) {
    NSLog(@"%@",@"No private key available.");
    return;
}

// -------------------------------------------------------------------------
// Get the certificate chain associated with the 1st (and probably only) private key in the JKS.

CkoCertChain *chain = [[CkoCertChain alloc] init];
success = [jks CertChainAt: [NSNumber numberWithInt: 0] certChain: chain];
if (success == NO) {
    NSLog(@"%@",jks.LastErrorText);
    return;
}

CkoCert *cert = [[CkoCert alloc] init];
success = [chain CertAt: [NSNumber numberWithInt: 0] cert: cert];
if (success == NO) {
    NSLog(@"%@",chain.LastErrorText);
    return;
}

// Verify again that this cert has a private key.
if ([cert HasPrivateKey] != YES) {
    NSLog(@"%@",@"Certificate has no associated private key.");
    return;
}

// We now have the cert object with it's associated private key, and it can be used in other Chilkat classes where needed.
// For example..

CkoCrypt2 *crypt = [[CkoCrypt2 alloc] init];
success = [crypt SetSigningCert: cert];
if (success == NO) {
    NSLog(@"%@",crypt.LastErrorText);
    return;
}

// ...
// ...