Objective-C
Objective-C
Sign Manifest File to Generate a Passbook .pkpass in Memory
Demonstrates how to create a Passbook .pkpass archive by creating a signature of a manifest file and then zipping to a .pkpass archive in memoryChilkat Objective-C Downloads
#import <CkoJsonObject.h>
#import <CkoCrypt2.h>
#import <CkoZip.h>
#import <NSString.h>
#import <CkoBinData.h>
#import <CkoXmlCertVault.h>
#import <CkoCert.h>
BOOL success = NO;
// This requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
// ---------------------------------------------------------------------------------------------
// This example is the same as Sign Manifest File to Generate a Passbook .pkpass file
// except everything happens in memory (no input files, no output files)
// ---------------------------------------------------------------------------------------------
// First create the manifest.json
CkoJsonObject *manifest = [[CkoJsonObject alloc] init];
CkoCrypt2 *crypt = [[CkoCrypt2 alloc] init];
CkoZip *zip = [[CkoZip alloc] init];
[zip NewZip: @"notUsedAndNeverCreated.zip"];
crypt.HashAlgorithm = @"sha1";
// Return hashes as lowercase hex.
crypt.EncodingMode = @"hexlower";
NSString *digestStr = 0;
CkoBinData *pngData = [[CkoBinData alloc] init];
// Assume we load the pngData with bytes for "icon.png" from somewhere, such as a byte array in memory.
[zip AddBd: @"icon.png" bd: pngData];
digestStr = [crypt HashBdENC: pngData];
[manifest UpdateString: @"\"icon.png\"" value: digestStr];
[pngData Clear];
// Assume we load the pngData with bytes for "icon@2x.png" from somewhere...
[zip AddBd: @"icon@2x.png" bd: pngData];
digestStr = [crypt HashBdENC: pngData];
[manifest UpdateString: @"\"icon@2x.png\"" value: digestStr];
[pngData Clear];
// Assume we load the pngData with bytes for "logo.png" from somewhere...
[zip AddBd: @"logo.png" bd: pngData];
digestStr = [crypt HashBdENC: pngData];
[manifest UpdateString: @"\"logo.png\"" value: digestStr];
[pngData Clear];
// Assume we load the pngData with bytes for "logo@2x.png" from somewhere...
[zip AddBd: @"logo@2x.png" bd: pngData];
digestStr = [crypt HashBdENC: pngData];
[manifest UpdateString: @"\"logo@2x.png\"" value: digestStr];
NSString *passJson = @"{ .... }";// Contains the contents of pass.json
[zip AddString: @"pass.json" content: passJson charset: @"utf-8"];
digestStr = [crypt HashStringENC: passJson];
[manifest UpdateString: @"\"pass.json\"" value: digestStr];
[zip AddString: @"manifest.json" content: [manifest Emit] charset: @"utf-8"];
// Make sure we have the Apple WWDR intermediate certificate available for
// the cert chain in the signature.
CkoXmlCertVault *certVault = [[CkoXmlCertVault alloc] init];
CkoCert *appleWwdrCert = [[CkoCert alloc] init];
success = [appleWwdrCert LoadByCommonName: @"Apple Worldwide Developer Relations Certification Authority"];
if (success != YES) {
NSLog(@"%@",@"The Apple WWDR intermediate certificate is not installed.");
NSLog(@"%@",@"It is available at https://developer.apple.com/certificationauthority/AppleWWDRCA.cer");
NSLog(@"%@",@"You may alternatively load the .cer like this...");
success = [appleWwdrCert LoadFromFile: @"qa_data/certs/AppleWWDRCA.cer"];
if (success == NO) {
NSLog(@"%@",appleWwdrCert.LastErrorText);
return;
}
}
[certVault AddCert: appleWwdrCert];
[crypt UseCertVault: certVault];
// Use a digital certificate and private key from a PFX
CkoBinData *bdPfx = [[CkoBinData alloc] init];
// Assume we loaded a PFX into bdPfx....
NSString *pfxPassword = @"test123";
CkoCert *cert = [[CkoCert alloc] init];
success = [cert LoadPfxBd: bdPfx password: pfxPassword];
if (success == NO) {
NSLog(@"%@",cert.LastErrorText);
return;
}
// Provide the signing cert (with associated private key).
success = [crypt SetSigningCert: cert];
if (success == NO) {
NSLog(@"%@",crypt.LastErrorText);
return;
}
// Specify the signed attributes to be included.
// (These attributes appear to not be necessary, but we're including
// them just in case they become necessary in the future.)
CkoJsonObject *jsonSignedAttrs = [[CkoJsonObject alloc] init];
[jsonSignedAttrs UpdateInt: @"contentType" value: [NSNumber numberWithInt: 1]];
[jsonSignedAttrs UpdateInt: @"signingTime" value: [NSNumber numberWithInt: 1]];
crypt.SigningAttributes = [jsonSignedAttrs Emit];
// Sign the manifest JSON to produce a signature
crypt.EncodingMode = @"base64";
NSString *sig = [crypt SignStringENC: [manifest Emit]];
CkoBinData *bdSig = [[CkoBinData alloc] init];
[bdSig AppendEncoded: sig encoding: @"base64"];
[zip AddBd: @"signature" bd: bdSig];
// ---------------------------------------------------------------------------------------------
// Note: Chilkat also has the capability to do everything in-memory (no files would be involved).
// If this is of interest, please send email to support@chilkatsoft.com
// ---------------------------------------------------------------------------------------------
// Create the .pkipass archive (which is a .zip archive containing the required files).
// the .zip is written to bdZip
CkoBinData *bdZip = [[CkoBinData alloc] init];
success = [zip WriteBd: bdZip];
if (success == NO) {
NSLog(@"%@",zip.LastErrorText);
return;
}
NSLog(@"%@",@"Success.");