(PHP Extension) Get Certificates within XML Signature

Demonstrates how to get the certificates contained within an XML signature.

Chilkat PHP Downloads PHP Extension for Windows, Linux, MacOS, Alpine Linux

<?php

include("chilkat.php");
// Use "chilkat_9_5_0.php" for versions of Chilkat < 10.0.0

// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

$sbXml = new CkStringBuilder();

// Load XML containing one or more signatures.
$success = $sbXml->LoadFile('qa_data/xml_dsig_valid_samples/multipleSigners/sp.pdf.XAdES.xml','utf-8');
if ($success == false) {
    print 'Failed to load the XML file..' . "\n";
    exit;
}

$dsig = new CkXmlDSig();

// First load the XML containing the signatures to be verified.
// Note that this particular Signature already contains the RSA public key that will be used
// for verification.
$success = $dsig->LoadSignatureSb($sbXml);
if ($success != true) {
    print $dsig->lastErrorText() . "\n";
    exit;
}

// For each signature, verify and also get the certificate(s) contained within each Signature.
$i = 0;
$saCerts = new CkStringArray();
$cert = new CkCert();

print 'numSignatures = ' . $dsig->get_NumSignatures() . "\n";

while ($i < $dsig->get_NumSignatures()) {
    // Select the Nth signature by setting the Selector property.
    $dsig->put_Selector($i);

    $bVerifyReferenceDigests = true;
    $bVerified = $dsig->VerifySignature($bVerifyReferenceDigests);
    print 'Signature ' . ($i + 1) . ' verified = ' . $bVerified . "\n";

    // Get the certificates embedded in this signature.
    $saCerts->Clear();
    $success = $dsig->GetCerts($saCerts);
    if ($success == true) {
        $j = 0;
        while ($j < $saCerts->get_Count()) {
            $success = $cert->LoadFromBase64($saCerts->getString($j));
            if ($success == true) {
                print '    ' . $cert->subjectDN() . "\n";
            }

            $j = $j + 1;
        }

    }

    $i = $i + 1;
}


?>