|
Chilkat • HOME • .NET Core C# • Android™ • AutoIt • C • C# • C++ • Chilkat2-Python • CkPython • Classic ASP • DataFlex • Delphi ActiveX • Delphi DLL • Go • Java • Lianja • Mono C# • Node.js • Objective-C • PHP ActiveX • PHP Extension • Perl • PowerBuilder • PowerShell • PureBasic • Ruby • SQL Server • Swift 2 • Swift 3,4,5... • Tcl • Unicode C • Unicode C++ • VB.NET • VBScript • Visual Basic 6.0 • Visual FoxPro • Xojo Plugin
(PHP Extension) Get ETK Public Key (api-acpt.ehealth.fgov.be)See more Belgian eHealth Platform ExamplesThe following URL returns JSON, which contains a PKCS7 signed data: https://api-acpt.ehealth.fgov.be/etee/v1/etks?identifier=12345678901&type=SSIN This example extracts the signed data, validates it, and then extracts the public key from the certificate (obtained from signed content in the PKCS7) Note: The URL above uses "12345678901" which is not valid. You should replace it with a valid number.
<?php include("chilkat_9_5_0.php"); // This example requires the Chilkat API to have been previously unlocked. // See Global Unlock Sample for sample code. $http = new CkHttp(); $jsonStr = $http->quickGetStr('https://api-acpt.ehealth.fgov.be/etee/v1/etks?identifier=12345678901&type=SSIN'); if ($http->get_LastMethodSuccess() == false) { print $http->lastErrorText() . "\n"; exit; } print $jsonStr . "\n"; // The JSON contains something like this: // [ // { // "key": { // "applicationIdentifier": "", // "ssin": "12345678901" // }, // "value": "MIAGCSq....AAAAAAAA==" // } // ] // Note: The above is a JSON array (not a JSON object) // It should be loaded into a Chilkat JSON array. $jarr = new CkJsonArray(); $success = $jarr->Load($jsonStr); if ($success == false) { print 'Failed to load JSON.' . "\n"; exit; } // json is a CkJsonObject $json = $jarr->ObjectAt(0); $bdPkcs7 = new CkBinData(); $bdPkcs7->AppendEncoded($json->stringOf('value'),'base64'); // Let's verify the PKCS7, and then examine the signing cert, // and get the signing cert's public key. $crypt = new CkCrypt2(); // Validate the signedData PKCS7, and replace the contents of bdPkcs7 with the extracted signed content. $success = $crypt->OpaqueVerifyBd($bdPkcs7); if ($success == false) { print $crypt->lastErrorText() . "\n"; exit; } // The signed content is the DER of a certificate. // In other words, bdPkcs7 now contains a certificate. $cert = new CkCert(); $success = $cert->LoadFromBd($bdPkcs7); if ($success == false) { print $cert->lastErrorText() . "\n"; exit; } // Show some certificate information: print 'Subject: ' . $cert->subjectDN() . "\n"; print 'Serial: ' . $cert->serialNumber() . "\n"; print 'Issuer: ' . $cert->issuerDN() . "\n"; // Let's get the cert's public key... // pubKey is a CkPublicKey $pubKey = $cert->ExportPublicKey(); if ($cert->get_LastMethodSuccess() == false) { print $cert->lastErrorText() . "\n"; exit; } // OK, you now have the public key and can do whatever is needed.. print $pubKey->keyType() . "\n"; print $pubKey->get_KeySize() . "\n"; ?> |
||||
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.