Chilkat HOME .NET Core C# Android™ AutoIt C C# C++ Chilkat2-Python CkPython Classic ASP DataFlex Delphi ActiveX Delphi DLL Go Java Lianja Mono C# Node.js Objective-C PHP ActiveX PHP Extension Perl PowerBuilder PowerShell PureBasic Ruby SQL Server Swift 2 Swift 3,4,5... Tcl Unicode C Unicode C++ VB.NET VBScript Visual Basic 6.0 Visual FoxPro Xojo Plugin
(PHP ActiveX) Include the SigningCertificateV2 Authenticated Attribute in CAdES (CMS) SignatureDemonstrates how to include the SigningCertificateV2 authenticated attribute in a CMS (.p7m/.p7s) signature.
<?php // This example assumes the Chilkat API to have been previously unlocked. // See Global Unlock Sample for sample code. // For versions of Chilkat < 10.0.0, use new COM('Chilkat_9_5_0.Chilkat.Crypt2') $crypt = new COM("Chilkat.Crypt2"); // For versions of Chilkat < 10.0.0, use new COM('Chilkat_9_5_0.Chilkat.Cert') $cert = new COM("Chilkat.Cert"); $success = $cert->LoadPfxFile('qa_data/pfx/cert_test123.pfx','test123'); if ($success != 1) { print $cert->LastErrorText . "\n"; exit; } // Tell the crypt component to use this cert. $success = $crypt->SetSigningCert($cert); if ($success != 1) { print $crypt->LastErrorText . "\n"; exit; } // The CadesEnabled property applies to all methods that create PKCS7 signatures. // To create a CAdES-BES signature, set this property equal to true. $crypt->CadesEnabled = 1; $crypt->HashAlgorithm = 'sha256'; // We can sign any type of file, creating a .p7s as output. // The .p7s contains the signature and also embeds the data of the file that is signed. $inFile = 'qa_data/pdf/sample.pdf'; $p7sFile = 'qa_output/sample.pdf.p7s'; // For versions of Chilkat < 10.0.0, use new COM('Chilkat_9_5_0.Chilkat.JsonObject') $jsonSigningAttrs = new COM("Chilkat.JsonObject"); $jsonSigningAttrs->UpdateInt('contentType',1); $jsonSigningAttrs->UpdateInt('signingTime',1); $jsonSigningAttrs->UpdateInt('messageDigest',1); // This is where we specify for the signingCertificateV2 attribute to be included: $jsonSigningAttrs->UpdateInt('signingCertificateV2',1); $crypt->SigningAttributes = $jsonSigningAttrs->emit(); // By default, all the certs in the chain of authentication are included in the signature. // If desired, we can choose to only include the signing certificate: $crypt->IncludeCertChain = 0; // Create the CAdES-BES attached signature, which contains the original data. // Note: Chilkat's function naming is not accurate. CreateP7M creates a PKCS7 signature where the signed file // is contained within the signature. CreateP7S creates a detached PKCS7 signature where the signed file // is NOT contained within the signature. We want the data to be contained in the signature, therefore // we call CreateP7M even though we are naming our output file .p7s. $success = $crypt->CreateP7M($inFile,$p7sFile); if ($success == 0) { print $crypt->LastErrorText . "\n"; exit; } // Verify the .p7s file and extract the original file from the .p7s. $extractedToFilePath = 'qa_output/sample.pdf'; $success = $crypt->VerifyP7M($p7sFile,$extractedToFilePath); if ($success == 0) { print $crypt->LastErrorText . "\n"; exit; } print 'Success!' . "\n"; ?> |
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.