(Objective-C) Create XAdES for Malaysia E-Invoice

See more Malaysia MyInvois Examples

This example signs XML to create the required XAdES for Malaysia E-Invoice as described at the following web pages:

https://sdk.myinvois.hasil.gov.my/signature/
https://sdk.myinvois.hasil.gov.my/signature-creation/

Note: This example requires Chilkat 10.0.0 or later.

Chilkat Objective-C Library Downloads MAC OS X (Cocoa) Libs iOS Libs

#import <CkoXml.h>
#import <CkoXmlDSigGen.h>
#import <CkoCert.h>
#import <CkoStringBuilder.h>
#import <CkoXmlDSig.h>

BOOL success = YES;

// Load XML such as the following to be signed:

// <?xml version="1.0" encoding="utf-8"?>
// <Invoice xmlns="urn:oasis:names:specification:ubl:schema:xsd:Invoice-2" xmlns:cac="urn:oasis:names:specification:ubl:schema:xsd:CommonAggregateComponents-2" xmlns:cbc="urn:oasis:names:specification:ubl:schema:xsd:CommonBasicComponents-2" xmlns:ext="urn:oasis:names:specification:ubl:schema:xsd:CommonExtensionComponents-2">
//     <ext:UBLExtensions>
//         <ext:UBLExtension>
//             <ext:ExtensionURI>urn:oasis:names:specification:ubl:dsig:enveloped:xades</ext:ExtensionURI>
//             <ext:ExtensionContent>
//                 <sig:UBLDocumentSignatures xmlns:sac="urn:oasis:names:specification:ubl:schema:xsd:SignatureAggregateComponents-2" xmlns:sbc="urn:oasis:names:specification:ubl:schema:xsd:SignatureBasicComponents-2" xmlns:sig="urn:oasis:names:specification:ubl:schema:xsd:CommonSignatureComponents-2">
//                     <sac:SignatureInformation>
//                         <cbc:ID>urn:oasis:names:specification:ubl:signature:1</cbc:ID>
//                         <sbc:ReferencedSignatureID>urn:oasis:names:specification:ubl:signature:Invoice</sbc:ReferencedSignatureID>
//                     </sac:SignatureInformation>
//                 </sig:UBLDocumentSignatures>
//             </ext:ExtensionContent>
//         </ext:UBLExtension>
//     </ext:UBLExtensions>
//     <cbc:ID>IV00000105</cbc:ID>
//     <cbc:IssueDate>2024-07-06</cbc:IssueDate>
//     <cbc:IssueTime>15:06:00Z</cbc:IssueTime>
//     <cbc:InvoiceTypeCode listVersionID="1.1">1</cbc:InvoiceTypeCode>
//     <cbc:DocumentCurrencyCode>MYR</cbc:DocumentCurrencyCode>
//     <cac:BillingReference>
//         <cac:AdditionalDocumentReference>
//             <cbc:ID>IV00000105</cbc:ID>
//         </cac:AdditionalDocumentReference>
//     </cac:BillingReference>
//     <cac:Signature>
//         <cbc:ID>urn:oasis:names:specification:ubl:signature:Invoice</cbc:ID>
//         <cbc:SignatureMethod>urn:oasis:names:specification:ubl:dsig:enveloped:xades</cbc:SignatureMethod>
//     </cac:Signature>
//     <cac:AccountingSupplierParty>
//         <cac:Party>
//             <cbc:IndustryClassificationCode name="Other information technology service activities n.e.c.">62099</cbc:IndustryClassificationCode>
//             <cac:PartyIdentification>
//                 <cbc:ID schemeID="TIN">C99999999999</cbc:ID>
//             </cac:PartyIdentification>
//             <cac:PartyIdentification>
//                 <cbc:ID schemeID="BRN">200801099999</cbc:ID>
//             </cac:PartyIdentification>
//             <cac:PostalAddress>
//                 <cbc:CityName>Cheras</cbc:CityName>
//                 <cbc:PostalZone>56000</cbc:PostalZone>
//                 <cbc:CountrySubentityCode>14</cbc:CountrySubentityCode>
//                 <cac:AddressLine>
//                     <cbc:Line>A-3, 11, Jalan 2/199a,</cbc:Line>
//                 </cac:AddressLine>
//                 <cac:AddressLine>
//                     <cbc:Line>Cheras, 56000 Cheras</cbc:Line>
//                 </cac:AddressLine>
//                 <cac:AddressLine>
//                     <cbc:Line>Wilayah Persekutuan Kuala Lumpur</cbc:Line>
//                 </cac:AddressLine>
//                 <cac:Country>
//                     <cbc:IdentificationCode listAgencyID="6" listID="ISO3166-1">MYS</cbc:IdentificationCode>
//                 </cac:Country>
//             </cac:PostalAddress>
//             <cac:PartyLegalEntity>
//                 <cbc:RegistrationName>ABC SYSTEMS SERVICES</cbc:RegistrationName>
//             </cac:PartyLegalEntity>
//             <cac:Contact>
//                 <cbc:Telephone>019-626 9999</cbc:Telephone>
//                 <cbc:ElectronicMail>Info@abc.com.my</cbc:ElectronicMail>
//             </cac:Contact>
//         </cac:Party>
//     </cac:AccountingSupplierParty>
//     <cac:AccountingCustomerParty>
//         <cac:Party>
//             <cac:PartyIdentification>
//                 <cbc:ID schemeID="TIN">C99999999999</cbc:ID>
//             </cac:PartyIdentification>
//             <cac:PartyIdentification>
//                 <cbc:ID schemeID="BRN">200801099999</cbc:ID>
//             </cac:PartyIdentification>
//             <cac:PostalAddress>
//                 <cbc:CityName>Cheras</cbc:CityName>
//                 <cbc:PostalZone>56000</cbc:PostalZone>
//                 <cbc:CountrySubentityCode>14</cbc:CountrySubentityCode>
//                 <cac:AddressLine>
//                     <cbc:Line>A-3, 11, Jalan 2/199a,</cbc:Line>
//                 </cac:AddressLine>
//                 <cac:AddressLine>
//                     <cbc:Line>Cheras, 56000 Cheras</cbc:Line>
//                 </cac:AddressLine>
//                 <cac:AddressLine>
//                     <cbc:Line>Cheras, 56000 Cheras</cbc:Line>
//                 </cac:AddressLine>
//                 <cac:Country>
//                     <cbc:IdentificationCode listAgencyID="6" listID="ISO3166-1">MYS</cbc:IdentificationCode>
//                 </cac:Country>
//             </cac:PostalAddress>
//             <cac:PartyLegalEntity>
//                 <cbc:RegistrationName>ABC SYSTEMS SERVICES</cbc:RegistrationName>
//             </cac:PartyLegalEntity>
//             <cac:Contact>
//                 <cbc:Telephone>019-626 9999</cbc:Telephone>
//                 <cbc:ElectronicMail>Info@abc.com.my</cbc:ElectronicMail>
//             </cac:Contact>
//         </cac:Party>
//     </cac:AccountingCustomerParty>
//     <cac:TaxTotal>
//         <cbc:TaxAmount currencyID="MYR">0</cbc:TaxAmount>
//         <cac:TaxSubtotal>
//             <cbc:TaxableAmount currencyID="MYR">40</cbc:TaxableAmount>
//             <cbc:TaxAmount currencyID="MYR">0</cbc:TaxAmount>
//             <cac:TaxCategory>
//                 <cbc:ID>6</cbc:ID>
//                 <cbc:Percent>0</cbc:Percent>
//                 <cac:TaxScheme>
//                     <cbc:ID schemeAgencyID="6" schemeID="UN/ECE 5153">OTH</cbc:ID>
//                 </cac:TaxScheme>
//             </cac:TaxCategory>
//         </cac:TaxSubtotal>
//     </cac:TaxTotal>
//     <cac:LegalMonetaryTotal>
//         <cbc:LineExtensionAmount currencyID="MYR">40</cbc:LineExtensionAmount>
//         <cbc:TaxExclusiveAmount currencyID="MYR">40</cbc:TaxExclusiveAmount>
//         <cbc:TaxInclusiveAmount currencyID="MYR">49</cbc:TaxInclusiveAmount>
//         <cbc:AllowanceTotalAmount currencyID="MYR">0</cbc:AllowanceTotalAmount>
//         <cbc:PayableAmount currencyID="MYR">49</cbc:PayableAmount>
//     </cac:LegalMonetaryTotal>
//     <cac:InvoiceLine>
//         <cbc:ID>1</cbc:ID>
//         <cbc:InvoicedQuantity unitCode="H87">2</cbc:InvoicedQuantity>
//         <cbc:LineExtensionAmount currencyID="MYR">40</cbc:LineExtensionAmount>
//         <cac:TaxTotal>
//             <cbc:TaxAmount currencyID="MYR">0</cbc:TaxAmount>
//             <cac:TaxSubtotal>
//                 <cbc:TaxableAmount currencyID="MYR">40</cbc:TaxableAmount>
//                 <cbc:TaxAmount currencyID="MYR">0</cbc:TaxAmount>
//                 <cac:TaxCategory>
//                     <cbc:ID>6</cbc:ID>
//                     <cbc:Percent>0</cbc:Percent>
//                     <cac:TaxScheme>
//                         <cbc:ID schemeAgencyID="6" schemeID="UN/ECE 5153">OTH</cbc:ID>
//                     </cac:TaxScheme>
//                 </cac:TaxCategory>
//             </cac:TaxSubtotal>
//         </cac:TaxTotal>
//         <cac:Item>
//             <cbc:Description>Computer Monitor 24 inch</cbc:Description>
//             <cac:CommodityClassification>
//                 <cbc:ItemClassificationCode listID="CLASS">3</cbc:ItemClassificationCode>
//             </cac:CommodityClassification>
//         </cac:Item>
//         <cac:Price>
//             <cbc:PriceAmount currencyID="MYR">20</cbc:PriceAmount>
//         </cac:Price>
//         <cac:ItemPriceExtension>
//             <cbc:Amount currencyID="MYR">40</cbc:Amount>
//         </cac:ItemPriceExtension>
//     </cac:InvoiceLine>
// </Invoice>

CkoXml *xmlToSign = [[CkoXml alloc] init];
success = [xmlToSign LoadXmlFile: @"qa_data/xml/myinvois_notYetSigned.xml"];
if (success == NO) {
    NSLog(@"%@",@"Failed to load the XML to be signed.");
    return;
}

CkoXmlDSigGen *gen = [[CkoXmlDSigGen alloc] init];
// ------------------------------------------------------------------------------------------------
// This behavior is required for the peculiarities of the MyInvois implementation.
// It requires Chilkat 10.0.0 or later.
gen.Behaviors = @"MyInvois";
// ------------------------------------------------------------------------------------------------

gen.SigLocation = @"Invoice|ext:UBLExtensions|ext:UBLExtension|ext:ExtensionContent|sig:UBLDocumentSignatures|sac:SignatureInformation";
gen.SigLocationMod = [NSNumber numberWithInt:0];
gen.SigId = @"signature";
gen.SigNamespacePrefix = @"ds";
gen.SigNamespaceUri = @"http://www.w3.org/2000/09/xmldsig#";
gen.SignedInfoCanonAlg = @"C14N_11";
gen.SignedInfoDigestMethod = @"sha256";

// Create an Object to be added to the Signature.
CkoXml *object1 = [[CkoXml alloc] init];
object1.Tag = @"xades:QualifyingProperties";
[object1 AddAttribute: @"xmlns:xades" value: @"http://uri.etsi.org/01903/v1.3.2#"];
[object1 AddAttribute: @"Target" value: @"signature"];
[object1 UpdateAttrAt: @"xades:SignedProperties" autoCreate: YES attrName: @"Id" attrValue: @"id-xades-signed-props"];
[object1 UpdateChildContent: @"xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningTime" value: @"TO BE GENERATED BY CHILKAT"];
[object1 UpdateAttrAt: @"xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningCertificate|xades:Cert|xades:CertDigest|ds:DigestMethod" autoCreate: YES attrName: @"Algorithm" attrValue: @"http://www.w3.org/2001/04/xmlenc#sha256"];
[object1 UpdateChildContent: @"xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningCertificate|xades:Cert|xades:CertDigest|ds:DigestValue" value: @"TO BE GENERATED BY CHILKAT"];
[object1 UpdateChildContent: @"xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningCertificate|xades:Cert|xades:IssuerSerial|ds:X509IssuerName" value: @"TO BE GENERATED BY CHILKAT"];
[object1 UpdateChildContent: @"xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningCertificate|xades:Cert|xades:IssuerSerial|ds:X509SerialNumber" value: @"TO BE GENERATED BY CHILKAT"];

[gen AddObject: @"" content: [object1 GetXml] mimeType: @"" encoding: @""];

// -------- Reference 1 --------
CkoXml *xml1 = [[CkoXml alloc] init];
xml1.Tag = @"ds:Transforms";
[xml1 UpdateAttrAt: @"ds:Transform" autoCreate: YES attrName: @"Algorithm" attrValue: @"http://www.w3.org/TR/1999/REC-xpath-19991116"];
[xml1 UpdateChildContent: @"ds:Transform|ds:XPath" value: @"not(//ancestor-or-self::ext:UBLExtensions)"];
[xml1 UpdateAttrAt: @"ds:Transform[1]" autoCreate: YES attrName: @"Algorithm" attrValue: @"http://www.w3.org/TR/1999/REC-xpath-19991116"];
[xml1 UpdateChildContent: @"ds:Transform[1]|ds:XPath" value: @"not(//ancestor-or-self::cac:Signature)"];
[xml1 UpdateAttrAt: @"ds:Transform[2]" autoCreate: YES attrName: @"Algorithm" attrValue: @"http://www.w3.org/2006/12/xml-c14n11"];

[gen AddSameDocRef2: @"" digestMethod: @"sha256" transforms: xml1 refType: @""];
[gen SetRefIdAttr: @"" value: @"id-doc-signed-data"];

// -------- Reference 2 --------
[gen AddObjectRef: @"id-xades-signed-props" digestMethod: @"sha256" canonMethod: @"" prefixList: @"" refType: @"http://www.w3.org/2000/09/xmldsig#SignatureProperties"];

// Provide a certificate + private key. (PFX password is test123)
CkoCert *cert = [[CkoCert alloc] init];
success = [cert LoadPfxFile: @"qa_data/pfx/cert_test123.pfx" password: @"test123"];
if (success != YES) {
    NSLog(@"%@",cert.LastErrorText);
    return;
}

[gen SetX509Cert: cert usePrivateKey: YES];

gen.KeyInfoType = @"X509Data";
gen.X509Type = @"Certificate";

// Load XML to be signed...
CkoStringBuilder *sbXml = [[CkoStringBuilder alloc] init];
xmlToSign.EmitCompact = YES;
[xmlToSign GetXmlSb: sbXml];

// Sign the XML...
success = [gen CreateXmlDSigSb: sbXml];
if (success != YES) {
    NSLog(@"%@",gen.LastErrorText);
    return;
}

// -----------------------------------------------

// Save the signed XML to a file.
success = [sbXml WriteFile: @"c:/temp/qa_output/signedXml.xml" charset: @"utf-8" emitBom: NO];

NSLog(@"%@",[sbXml GetAsString]);

// ----------------------------------------
// Verify the signatures we just produced...
CkoXmlDSig *verifier = [[CkoXmlDSig alloc] init];
success = [verifier LoadSignatureSb: sbXml];
if (success != YES) {
    NSLog(@"%@",verifier.LastErrorText);
    return;
}

// ----------------------------------------
// Make sure to indicate that we are verifying a MyInvois signature
// This is because MyInvois does things in a non-standard way..
verifier.UncommonOptions = @"MyInvois";
// ----------------------------------------

int numSigs = [verifier.NumSignatures intValue];
int verifyIdx = 0;
while (verifyIdx < numSigs) {
    verifier.Selector = [NSNumber numberWithInt: verifyIdx];
    BOOL verified = [verifier VerifySignature: YES];
    if (verified != YES) {
        NSLog(@"%@",verifier.LastErrorText);
        return;
    }

    verifyIdx = verifyIdx + 1;
}

NSLog(@"%@",@"All signatures were successfully verified.");