Chilkat HOME .NET Core C# Android™ AutoIt C C# C++ Chilkat2-Python CkPython Classic ASP DataFlex Delphi ActiveX Delphi DLL Go Java Lianja Mono C# Node.js Objective-C PHP ActiveX PHP Extension Perl PowerBuilder PowerShell PureBasic Ruby SQL Server Swift 2 Swift 3,4,5... Tcl Unicode C Unicode C++ VB.NET VBScript Visual Basic 6.0 Visual FoxPro Xojo Plugin
(PHP Extension) Verify a CAdES-BES Signature and Examine Signature ContentsDemonstrates how to validate a .p7m (.p7s) signature and examine the contents of the signature.
<?php // The version number (9_5_0) should match version of the Chilkat extension used, omitting the micro-version number. // For example, if using Chilkat v9.5.0.48, then include as shown here: include("chilkat_9_5_0.php"); // This example requires the Chilkat API to have been previously unlocked. // See Global Unlock Sample for sample code. $crypt = new CkCrypt2(); $outputFile = 'qa_output/original.xml'; $inFile = 'qa_data/p7m/fattura_signature.xml.p7m'; // Verify the signature and extract the contained file, which in this case is XML. $success = $crypt->VerifyP7M($inFile,$outputFile); if ($success == false) { print $crypt->lastErrorText() . "\n"; exit; } print 'Signature validated.' . "\n"; // Now let's examine the information about the signature. // json is a CkJsonObject $json = $crypt->LastJsonData(); if ($crypt->get_LastMethodSuccess() == false) { // This should never be the case... print 'No information available.' . "\n"; exit; } $json->put_EmitCompact(false); print $json->emit() . "\n"; // Here's an example of the information about the signature: // { // "pkcs7": { // "verify": { // "certs": [ // { // "issuerCN": "Xyz EU Qualified Certificates CA G1", // "serial": "99A28A51AC389999" // } // ], // "useConstructedOctets": true, // "digestAlgorithms": [ // "sha256" // ], // "signerInfo": [ // { // "cert": { // "subjectKeyIdentifier": "5VM4x8AWnXf07yzbXuLtbb0U3yY=", // "digestAlgOid": "2.16.840.1.101.3.4.2.1", // "digestAlgName": "SHA256" // }, // "signingAlgOid": "1.2.840.113549.1.1.11", // "signingAlgName": "RSA-SHA256-PKCSV-1_5", // "authAttr": { // "1.2.840.113549.1.9.3": { // "name": "contentType", // "oid": "1.2.840.113549.1.7.1" // }, // "1.2.840.113549.1.9.5": { // "name": "signingTime", // "utctime": "190901152340Z" // }, // "1.2.840.113549.1.9.4": { // "name": "messageDigest", // "digest": "y+gd/zAQK33A//HInhaZba7w1fUJleV9AHbP1Ntx6U0=" // }, // "1.2.840.113549.1.9.16.2.47": { // "name": "signingCertificateV2", // "der": "MIH4MI..w4vv0=" // } // } // } // ] // } // } // } // Use this online tool to generate parsing code from sample JSON: // Generate Parsing Code from JSON $authAttrSigningTimeUtctime = new CkDtObj(); $i = 0; $count_i = $json->SizeOfArray('pkcs7.verify.certs'); while ($i < $count_i) { $json->put_I($i); $issuerCN = $json->stringOf('pkcs7.verify.certs[i].issuerCN'); $serial = $json->stringOf('pkcs7.verify.certs[i].serial'); $i = $i + 1; } $i = 0; $count_i = $json->SizeOfArray('pkcs7.verify.digestAlgorithms'); while ($i < $count_i) { $json->put_I($i); $strVal = $json->stringOf('pkcs7.verify.digestAlgorithms[i]'); $i = $i + 1; } $i = 0; $count_i = $json->SizeOfArray('pkcs7.verify.signerInfo'); while ($i < $count_i) { $json->put_I($i); $certSubjectKeyIdentifier = $json->stringOf('pkcs7.verify.signerInfo[i].cert.subjectKeyIdentifier'); $certDigestAlgOid = $json->stringOf('pkcs7.verify.signerInfo[i].cert.digestAlgOid'); $certDigestAlgName = $json->stringOf('pkcs7.verify.signerInfo[i].cert.digestAlgName'); $signingAlgOid = $json->stringOf('pkcs7.verify.signerInfo[i].signingAlgOid'); $signingAlgName = $json->stringOf('pkcs7.verify.signerInfo[i].signingAlgName'); $authAttrContentTypeName = $json->stringOf('pkcs7.verify.signerInfo[i].authAttr.\'1.2.840.113549.1.9.3\'.name'); $authAttrContentTypeOid = $json->stringOf('pkcs7.verify.signerInfo[i].authAttr.\'1.2.840.113549.1.9.3\'.oid'); $authAttrSigningTimeName = $json->stringOf('pkcs7.verify.signerInfo[i].authAttr.\'1.2.840.113549.1.9.5\'.name'); $json->DtOf('pkcs7.verify.signerInfo[i].authAttr.\'1.2.840.113549.1.9.5\'.utctime',false,$authAttrSigningTimeUtctime); $authAttrMessageDigestName = $json->stringOf('pkcs7.verify.signerInfo[i].authAttr.\'1.2.840.113549.1.9.4\'.name'); $authAttrMessageDigestDigest = $json->stringOf('pkcs7.verify.signerInfo[i].authAttr.\'1.2.840.113549.1.9.4\'.digest'); $authAttrSigningCertificateV2Name = $json->stringOf('pkcs7.verify.signerInfo[i].authAttr.\'1.2.840.113549.1.9.16.2.47\'.name'); $authAttrSigningCertificateV2Der = $json->stringOf('pkcs7.verify.signerInfo[i].authAttr.\'1.2.840.113549.1.9.16.2.47\'.der'); $i = $i + 1; } ?> |
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.