Chilkat HOME Android™ AutoIt C C# C++ Chilkat2-Python CkPython Classic ASP DataFlex Delphi DLL Go Java Node.js Objective-C PHP Extension Perl PowerBuilder PowerShell PureBasic Ruby SQL Server Swift Tcl Unicode C Unicode C++ VB.NET VBScript Visual Basic 6.0 Visual FoxPro Xojo Plugin
(PHP ActiveX) Add Private Key to Java KeystoreAdds a private key to an existing Java keystore.
<?php // This requires the Chilkat API to have been previously unlocked. // See Global Unlock Sample for sample code. // For versions of Chilkat < 10.0.0, use new COM('Chilkat_9_5_0.Chilkat.JavaKeyStore') $jks = new COM("Chilkat.JavaKeyStore"); $jksPassword = 'myJksPassword'; $jksPath = '/someDir/keyStore.jks'; // Load the Java keystore from a file. $success = $jks->LoadFile($jksPassword,$jksPath); if ($success != 1) { print $jks->LastErrorText . "\n"; exit; } // A JKS private key entry consists of both the private key, // it's associated certificate (which contains the matching public key // within the X.509 of the certificate), and the certificates in the // chain of authentication to the root. // // Therefore, to add a private key entry to a JKS requires // a Chilkat certificate object that has a private key and which also // has the certificate chain (up to the root) available. // There are many ways to get a Chilkat certificate object // that contains (within it) the private key and the certificate chain // This example will show two possibilities: // (1) Where the cert and issuing root are provided in PEM format in .crt files, // and the private key is also provided in unencrypted PEM format (.key file). // (2) Where the cert, private key, and issuing root are provided in a single PFX. // First for the .crt / .key files: // For versions of Chilkat < 10.0.0, use new COM('Chilkat_9_5_0.Chilkat.Cert') $cert = new COM("Chilkat.Cert"); // Chilkat will automatically determine the format of the cert file and load it correctly. $success = $cert->LoadFromFile('/mycerts/alice.crt'); if ($success != 1) { print $cert->LastErrorText . "\n"; exit; } // Certificates required for building the chain of authentication can be // added to an XML certificate vault object, and then provided as // a source for obtaining certs when building the chain. // For versions of Chilkat < 10.0.0, use new COM('Chilkat_9_5_0.Chilkat.XmlCertVault') $certVault = new COM("Chilkat.XmlCertVault"); $success = $certVault->AddCertFile('/mycerts/ca.crt'); if ($success != 1) { print $certVault->LastErrorText . "\n"; exit; } $success = $cert->UseCertVault($certVault); if ($success != 1) { print $cert->LastErrorText . "\n"; exit; } // Now provide the associated private key to the certificate object. // The Chilkat private key class provides methods for loading from many formats (both // encrypted and unencrypted). // For versions of Chilkat < 10.0.0, use new COM('Chilkat_9_5_0.Chilkat.PrivateKey') $privKey = new COM("Chilkat.PrivateKey"); $success = $privKey->LoadPemFile('/mycerts/alice.key'); if ($success != 1) { print $privKey->LastErrorText . "\n"; exit; } // Provide the certificate object with the private key: $success = $cert->SetPrivateKey($privKey); if ($success != 1) { print $cert->LastErrorText . "\n"; exit; } // Our certificate object now contains all that we need to add it as a private key entry // to the Java keystore: $alias = 'alice'; $success = $jks->AddPrivateKey($cert,$alias,$jksPassword); if ($success != 1) { print $jks->LastErrorText . "\n"; exit; } // Write the updated JKS, which contains the new private key entry w/ certificate chain. $success = $jks->ToFile($jksPassword,$jksPath); if ($success != 1) { print $jks->LastErrorText . "\n"; exit; } print 'Added new private key entry (from .crt and .key files) to the JKS!' . "\n"; // Now let's add a new private key entry from a PFX that contains a single // private key with associated cert and cert chain. // For versions of Chilkat < 10.0.0, use new COM('Chilkat_9_5_0.Chilkat.Pfx') $pfx = new COM("Chilkat.Pfx"); $success = $pfx->LoadPfxFile('/myPfxFiles/my.pfx','pfxPassword'); if ($success != 1) { print $pfx->LastErrorText . "\n"; exit; } // This is easy -- simply add the PFX to the JKS $alias = 'bob'; $success = $jks->AddPfx($pfx,$alias,$jksPassword); if ($success != 1) { print $jks->LastErrorText . "\n"; exit; } // Write the updated JKS, which contains the new private key entry w/ certificate chain // that came from the PFX. $success = $jks->ToFile($jksPassword,$jksPath); if ($success != 1) { print $jks->LastErrorText . "\n"; exit; } print 'Added new private key entry (from PFX) to the JKS!' . "\n"; ?> |
© 2000-2025 Chilkat Software, Inc. All Rights Reserved.