(PHP ActiveX) Convert Java KeyStore to PEM

Loads a Java keystore file and saves the trusted certificate entries to a PEM file.

Chilkat ActiveX Downloads ActiveX for 32-bit and 64-bit Windows Note: The php_com_dotnet.dll may need to be enabled inside of php.ini.

<?php

// This requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

// For versions of Chilkat < 10.0.0, use new COM('Chilkat_9_5_0.Chilkat.JavaKeyStore')
$jks = new COM("Chilkat.JavaKeyStore");

$jksPassword = 'myJksPassword';

// Load the Java keystore from a file.  The JKS file password is used
// to verify the keyed digest that is found at the very end of the keystore.
// It verifies that the keystore has not been modified.
$success = $jks->LoadFile($jksPassword,'/someDir/keyStore.jks');
if ($success != 1) {
    print $jks->LastErrorText . "\n";
    exit;
}

// Open/create the output PEM file. 
// This example uses Chilkat's file access class for writing the output file.
// You may replace the file I/O lines of code with whatever is most convenient for you.
// For versions of Chilkat < 10.0.0, use new COM('Chilkat_9_5_0.Chilkat.FileAccess')
$fac = new COM("Chilkat.FileAccess");
$success = $fac->OpenForWrite('/pemFiles/caCerts.pem');
if ($success != 1) {
    print $fac->LastErrorText . "\n";
    exit;
}

$numCerts = $jks->NumTrustedCerts;

// Iterate over the trusted certs, get the PEM for each,
// and append it to the output file.
$i = 0;
while ($i < $numCerts) {
    // cert is a Chilkat.Cert
    $cert = $jks->GetTrustedCert($i);

    // Get the certificate in PEM format.  
    $pem = $cert->exportCertPem();

    // Append the PEM string to the open file.
    // The PEM contains only us-ascii chars..
    $success = $fac->AppendAnsi($pem);
    if ($success != 1) {
        print $fac->LastErrorText . "\n";

        exit;
    }

    $i = $i + 1;
}

// Close the output file.
$fac->FileClose();

print 'Trusted certificates saved to PEM.' . "\n";

?>