(PHP Extension) Get the Certificate with Private Key from a Java KeyStore

See more Java KeyStore (JKS) Examples

Chilkat PHP Downloads PHP Extension for Windows, Linux, MacOS, Alpine Linux

<?php

include("chilkat.php");
// Use "chilkat_9_5_0.php" for versions of Chilkat < 10.0.0

// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

// Most of the time a .jks contains one certificate with it's associated private key.
// (Similar to how a .pfx/.p12 usually contains a particular certificate with private key.)
// This example demonstrates how to get the certificate with private key such that it can be used
// by other Chilkat classes wherever a cert w/ private key is needed.
$jks = new CkJavaKeyStore();
$password = 'secret';
$success = $jks->LoadFile($password,'qa_data/jks/test_secret.jks');
if ($success != true) {
    print $jks->lastErrorText() . "\n";
    exit;
}

// Make sure we have a private key.
if ($jks->get_NumPrivateKeys() < 1) {
    print 'No private key available.' . "\n";
    exit;
}

// -------------------------------------------------------------------------
// Get the certificate chain associated with the 1st (and probably only) private key in the JKS.
// chain is a CkCertChain
$chain = $jks->GetCertChain(0);
if ($jks->get_LastMethodSuccess() != true) {
    print $jks->lastErrorText() . "\n";
    exit;
}

// cert is a CkCert
$cert = $chain->GetCert(0);
if ($chain->get_LastMethodSuccess() != true) {
    print $chain->lastErrorText() . "\n";

    exit;
}

// Verify again that this cert has a private key.
if ($cert->HasPrivateKey() != true) {
    print 'Certificate has no associated private key.' . "\n";

    exit;
}

// We now have the cert object with it's associated private key, and it can be used in other Chilkat classes where needed.
// For example..

$crypt = new CkCrypt2();
$success = $crypt->SetSigningCert($cert);
if ($success == false) {
    print $crypt->lastErrorText() . "\n";
    exit;
}

// ...
// ...


?>