(PowerBuilder) Azure Key Vault Get the Latest Version of a Certificate

See more Azure Key Vault Examples

Demonstrates how to get the latest version of a certificate in Azure Key Vault.

Note: This example requires Chilkat v9.5.0.96 or later.

For more information, see https://learn.microsoft.com/en-us/rest/api/keyvault/certificates/get-certificate/get-certificate?tabs=HTTP

Chilkat ActiveX Downloads ActiveX for 32-bit and 64-bit Windows

integer li_rc
integer li_Success
oleobject loo_Json
oleobject loo_Http
oleobject loo_SbResponse
integer li_StatusCode
oleobject loo_JsonResp
oleobject loo_Cert
oleobject loo_SbId
string ls_CertVersion

// This requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

// See Azure Key Vault Get Certificates for a more detailed explanation
// for how Chilkat is automatically getting the OAuth2 access token for your application.

// Provide information needed for Chilkat to automatically get an OAuth2 access token as needed.
loo_Json = create oleobject
// Use "Chilkat_9_5_0.JsonObject" for versions of Chilkat < 10.0.0
li_rc = loo_Json.ConnectToNewObject("Chilkat.JsonObject")
if li_rc < 0 then
    destroy loo_Json
    MessageBox("Error","Connecting to COM object failed")
    return
end if
loo_Json.UpdateString("client_id","APP_ID")
loo_Json.UpdateString("client_secret","APP_PASSWORD")
loo_Json.UpdateString("resource","https://vault.azure.net")
loo_Json.UpdateString("token_endpoint","https://login.microsoftonline.com/TENANT_ID/oauth2/token")

loo_Http = create oleobject
// Use "Chilkat_9_5_0.Http" for versions of Chilkat < 10.0.0
li_rc = loo_Http.ConnectToNewObject("Chilkat.Http")

// Instead of providing an actual access token, we give Chilkat the information that allows it to 
// automatically fetch the access token using the OAuth2 client credentials flow.
loo_Http.AuthToken = loo_Json.Emit()

// Replace VAULT_NAME with the name of your Azure Key Vault.
loo_Http.SetUrlVar("certName","importCert01")

loo_SbResponse = create oleobject
// Use "Chilkat_9_5_0.StringBuilder" for versions of Chilkat < 10.0.0
li_rc = loo_SbResponse.ConnectToNewObject("Chilkat.StringBuilder")

li_Success = loo_Http.QuickGetSb("https://VAULT_NAME.vault.azure.net/certificates/{$certName}?api-version=7.4",loo_SbResponse)
if li_Success = 0 then

    li_StatusCode = loo_Http.LastStatus
    if li_StatusCode = 0 then
        // We did not get a response from the server..
        Write-Debug loo_Http.LastErrorText
    else
        // We received a response, but it was an error.
        Write-Debug "Error response status code: " + string(li_StatusCode)
        Write-Debug "Error response:"
        Write-Debug loo_SbResponse.GetAsString()
    end if

    destroy loo_Json
    destroy loo_Http
    destroy loo_SbResponse
    return
end if

loo_JsonResp = create oleobject
// Use "Chilkat_9_5_0.JsonObject" for versions of Chilkat < 10.0.0
li_rc = loo_JsonResp.ConnectToNewObject("Chilkat.JsonObject")

loo_JsonResp.LoadSb(loo_SbResponse)
loo_JsonResp.EmitCompact = 0

Write-Debug loo_JsonResp.Emit()

// A sample JSON response is show at the bottom.

// Let's do two things with the result.
// 1) Load the DER of the cert into a Chilkat Cert object.
// 2) Get the Key Vault version id of the certificate.

loo_Cert = create oleobject
// Use "Chilkat_9_5_0.Cert" for versions of Chilkat < 10.0.0
li_rc = loo_Cert.ConnectToNewObject("Chilkat.Cert")

li_Success = loo_Cert.LoadFromBase64(loo_JsonResp.StringOf("cer"))
if li_Success = 0 then
    Write-Debug loo_Cert.LastErrorText
    Write-Debug "Failed to load certificate from Base64 DER."
    destroy loo_Json
    destroy loo_Http
    destroy loo_SbResponse
    destroy loo_JsonResp
    destroy loo_Cert
    return
end if

// The Azure Key Vault's "version" of the certificate is the hex string at the end of the "id", "kid", and "sid" JSON members.
// For example:  "7140c8755ed14839b5d86a9f7e7f0497"
loo_SbId = create oleobject
// Use "Chilkat_9_5_0.StringBuilder" for versions of Chilkat < 10.0.0
li_rc = loo_SbId.ConnectToNewObject("Chilkat.StringBuilder")

loo_SbId.Append(loo_JsonResp.StringOf("id"))
ls_CertVersion = loo_SbId.GetAfterFinal("/",0)
Write-Debug "The key vault cert version is " + ls_CertVersion

// {
//   "id": "https://kvchilkat.vault.azure.net/certificates/importCert01/7140c8755ed14839b5d86a9f7e7f0497",
//   "kid": "https://kvchilkat.vault.azure.net/keys/importCert01/7140c8755ed14839b5d86a9f7e7f0497",
//   "sid": "https://kvchilkat.vault.azure.net/secrets/importCert01/7140c8755ed14839b5d86a9f7e7f0497",
//   "x5t": "I_e3776K5Q_6PN1HHvJoI2ZGQRQ",
//   "cer": "MIIGXjCCB .... cjTsi7yIY=",
//   "attributes": {
//     "enabled": true,
//     "nbf": 1633996800,
//     "exp": 1728691199,
//     "created": 1697411128,
//     "updated": 1697411128,
//     "recoveryLevel": "CustomizedRecoverable+Purgeable",
//     "recoverableDays": 7
//   },
//   "policy": {
//     "id": "https://kvchilkat.vault.azure.net/certificates/importCert01/policy",
//     "key_props": {
//       "exportable": true,
//       "kty": "RSA",
//       "key_size": 4096,
//       "reuse_key": false
//     },
//     "secret_props": {
//       "contentType": "application/x-pkcs12"
//     },
//     "x509_props": {
//       "subject": "CN=\"Chilkat Software, Inc.\", O=\"Chilkat Software, Inc.\", S=Illinois, C=US",
//       "ekus": [
//         "1.3.6.1.5.5.7.3.3"
//       ],
//       "key_usage": [
//         "digitalSignature"
//       ],
//       "validity_months": 37,
//       "basic_constraints": {
//         "ca": false
//       }
//     },
//     "lifetime_actions": [
//       {
//         "trigger": {
//           "lifetime_percentage": 80
//         },
//         "action": {
//           "action_type": "EmailContacts"
//         }
//       }
//     ],
//     "issuer": {
//       "name": "Unknown"
//     },
//     "attributes": {
//       "enabled": true,
//       "created": 1697411128,
//       "updated": 1697411128
//     }
//   }
// }


destroy loo_Json
destroy loo_Http
destroy loo_SbResponse
destroy loo_JsonResp
destroy loo_Cert
destroy loo_SbId