(PHP ActiveX) Use HTTPS Client Certificate from .cer and .key Files

Demonstrates how to load a cert + private key from .cer and .key (base64) files and use it for mutual TLS authentication (client-side certificate).

Chilkat ActiveX Downloads ActiveX for 32-bit and 64-bit Windows Note: The php_com_dotnet.dll may need to be enabled inside of php.ini.

<?php

// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

// For versions of Chilkat < 10.0.0, use new COM('Chilkat_9_5_0.Chilkat.Http')
$http = new COM("Chilkat.Http");

// For versions of Chilkat < 10.0.0, use new COM('Chilkat_9_5_0.Chilkat.Cert')
$cert = new COM("Chilkat.Cert");
// For versions of Chilkat < 10.0.0, use new COM('Chilkat_9_5_0.Chilkat.PrivateKey')
$privKey = new COM("Chilkat.PrivateKey");

// Load any type of certificate (.cer, .p7b, .pem, etc.) by calling LoadFromFile.
$success = $cert->LoadFromFile('qa_data/certs/sample_cert_a.cer');
if ($success != 1) {
    print $cert->LastErrorText . "\n";
    exit;
}

// Load the private key.
// For versions of Chilkat < 10.0.0, use new COM('Chilkat_9_5_0.Chilkat.BinData')
$bd = new COM("Chilkat.BinData");
$success = $bd->LoadFile('qa_data/certs/sample_key_a.key');
$success = $privKey->LoadAnyFormat($bd,'privateKeyPasswordIfNecessary');
if ($success != 1) {
    print $privKey->LastErrorText . "\n";
    exit;
}

// Associate the private key with the cert.
$success = $cert->SetPrivateKey($privKey);
if ($success != 1) {
    print $cert->LastErrorText . "\n";
    exit;
}

// Set the certificate to be used for mutual TLS authentication
// (i.e. sets the client-side certificate for two-way TLS authentication)
$success = $http->SetSslClientCert($cert);
if ($success != 1) {
    print $http->LastErrorText . "\n";
    exit;
}

// At this point, the HTTP object instance is setup with the client-side cert, and any SSL/TLS
// connection will automatically use it if the server demands a client-side cert.

?>