|
Chilkat • HOME • .NET Core C# • Android™ • AutoIt • C • C# • C++ • Chilkat2-Python • CkPython • Classic ASP • DataFlex • Delphi ActiveX • Delphi DLL • Go • Java • Lianja • Mono C# • Node.js • Objective-C • PHP ActiveX • PHP Extension • Perl • PowerBuilder • PowerShell • PureBasic • Ruby • SQL Server • Swift 2 • Swift 3,4,5... • Tcl • Unicode C • Unicode C++ • VB.NET • VBScript • Visual Basic 6.0 • Visual FoxPro • Xojo Plugin
(Perl) Create XAdES using Smart Card or USB TokenDemonstrates how to create an XAdES signed XML document using a certificate located on a smartcard or USB token. Note: This example requires Chilkat v9.5.0.75 or greater. Also, at the time of this writing this example is restricted to the Windows operating system.
use chilkat(); # ---------------------------------------------------------------------- # IMPORTANT: This generated example requires Chilkat v9.5.0.75 or later. # Contact support@chilkatsoft.com for a pre-release. # ---------------------------------------------------------------------- # Load the XML to be signed. $xmlToSign = chilkat::CkXml->new(); $success = $xmlToSign->LoadXmlFile("qa_data/fattura_electronica/docToSign.xml"); if ($success != 1) { print $xmlToSign->lastErrorText() . "\r\n"; exit; } $gen = chilkat::CkXmlDSigGen->new(); $gen->put_SigLocation("p:FatturaElettronica"); $gen->put_SigId("xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504"); $gen->put_SigNamespacePrefix("ds"); $gen->put_SigNamespaceUri("http://www.w3.org/2000/09/xmldsig#"); $gen->put_SigValueId("xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-sigvalue"); $gen->put_SignedInfoCanonAlg("C14N"); $gen->put_SignedInfoDigestMethod("sha256"); # Create an Object to be added to the Signature. # Note: Chilkat will automatically populate the strings indicated by "TO BE GENERATED BY CHILKAT" with actual/correct values # when the XML is signed. $object1 = chilkat::CkXml->new(); $object1->put_Tag("xades:QualifyingProperties"); $object1->AddAttribute("xmlns:xades","http://uri.etsi.org/01903/v1.3.2#"); $object1->AddAttribute("xmlns:xades141","http://uri.etsi.org/01903/v1.4.1#"); $object1->AddAttribute("Target","#xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504"); $object1->UpdateAttrAt("xades:SignedProperties",1,"Id","xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-signedprops"); $object1->UpdateChildContent("xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningTime","TO BE GENERATED BY CHILKAT"); $object1->UpdateAttrAt("xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningCertificate|xades:Cert|xades:CertDigest|ds:DigestMethod",1,"Algorithm","http://www.w3.org/2001/04/xmlenc#sha256"); $object1->UpdateChildContent("xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningCertificate|xades:Cert|xades:CertDigest|ds:DigestValue","TO BE GENERATED BY CHILKAT"); $object1->UpdateChildContent("xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningCertificate|xades:Cert|xades:IssuerSerial|ds:X509IssuerName","TO BE GENERATED BY CHILKAT"); $object1->UpdateChildContent("xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningCertificate|xades:Cert|xades:IssuerSerial|ds:X509SerialNumber","TO BE GENERATED BY CHILKAT"); $gen->AddObject("",$object1->getXml(),"",""); # -------- Reference 1 -------- $gen->put_KeyInfoId("xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-keyinfo"); $gen->AddSameDocRef("xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-keyinfo","sha256","","",""); # -------- Reference 2 -------- $gen->AddSameDocRef("","sha256","","",""); $gen->SetRefIdAttr("","xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-ref0"); # -------- Reference 3 -------- $gen->AddObjectRef("xmldsig-6f4b994a-7191-4bb1-ab3c-17549515b504-signedprops","sha256","","","http://uri.etsi.org/01903#SignedProperties"); # ---------------------------------------------------------------- # Load a certificate that has been pre-installed on the Windows system # This includes certificates on smartcards and USB tokens $cert = chilkat::CkCert->new(); # You may provide the PIN here.. $cert->put_SmartCardPin("000000"); # Load the certificate on the smartcard currently in the reader (or on the USB token). # Pass an empty string to allow Chilkat to automatically choose the CSP (Cryptographi Service Provider). # See Load Certificate on Smartcard for information about explicitly selecting a particular CSP. $success = $cert->LoadFromSmartcard(""); if ($success != 1) { print $cert->lastErrorText() . "\r\n"; exit; } $gen->SetX509Cert($cert,1); $gen->put_KeyInfoType("X509Data"); $gen->put_X509Type("Certificate"); # Load XML to be signed... $sbXml = chilkat::CkStringBuilder->new(); $xmlToSign->GetXmlSb($sbXml); $gen->put_Behaviors("IndentedSignature,ForceAddEnvelopedSignatureTransform"); # Sign the XML... $success = $gen->CreateXmlDSigSb($sbXml); if ($success != 1) { print $gen->lastErrorText() . "\r\n"; exit; } # Save the signed XMl to a file. $success = $sbXml->WriteFile("qa_output/signedXml.xml","utf-8",0); print $sbXml->getAsString() . "\r\n"; # ---------------------------------------- # Verify the signature we just produced... $verifier = chilkat::CkXmlDSig->new(); $success = $verifier->LoadSignatureSb($sbXml); if ($success != 1) { print $verifier->lastErrorText() . "\r\n"; exit; } $verified = $verifier->VerifySignature(1); if ($verified != 1) { print $verifier->lastErrorText() . "\r\n"; exit; } print "This signature was successfully verified." . "\r\n"; |
||||
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.