Sample code for 30+ languages & platforms
PowerBuilder

CAdES BES Attached (Opaque) Signature

See more Encryption Examples

Demonstrates how to create a CAdES BES attached signature file (.p7m). This is a PKCS7 signature format (known as an opaque, or "attached" signature) where the file data is embedded within the signature file. The signature verification both verifies the signature and extracts the original data.

(A "detached" signature is where the original data is NOT included within the PKCS7 signature format.)

Chilkat PowerBuilder Downloads

PowerBuilder
integer li_rc
integer li_Success
oleobject loo_Crypt
string ls_PfxPath
string ls_PfxPassword
oleobject loo_Cert
string ls_InFile
string ls_SigFile
string ls_ExtractedToFilePath

li_Success = 0

// This example assumes the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

loo_Crypt = create oleobject
li_rc = loo_Crypt.ConnectToNewObject("Chilkat.Crypt2")
if li_rc < 0 then
    destroy loo_Crypt
    MessageBox("Error","Connecting to COM object failed")
    return
end if

// Use a digital certificate and private key from a PFX file (.pfx or .p12).
ls_PfxPath = "qa_data/pfx/myCertAndPrivateKey.p12"
ls_PfxPassword = "password"

loo_Cert = create oleobject
li_rc = loo_Cert.ConnectToNewObject("Chilkat.Cert")

li_Success = loo_Cert.LoadPfxFile(ls_PfxPath,ls_PfxPassword)
if li_Success <> 1 then
    Write-Debug loo_Cert.LastErrorText
    destroy loo_Crypt
    destroy loo_Cert
    return
end if

// Tell the crypt component to use this cert.
li_Success = loo_Crypt.SetSigningCert(loo_Cert)
if li_Success <> 1 then
    Write-Debug loo_Crypt.LastErrorText
    destroy loo_Crypt
    destroy loo_Cert
    return
end if

// The CadesEnabled property applies to all methods that create PKCS7 signatures. 
// To create a CAdES-BES signature, set this property equal to true. 
loo_Crypt.CadesEnabled = 1

// To sign with SHA1, set the HashAlgorithm property to "sha1"
loo_Crypt.HashAlgorithm = "sha1"

// To sign with SHA256, set the HashAlgorithm property to "SHA256".
loo_Crypt.HashAlgorithm = "sha256"

// Other hash algorithm choices are "md5", "md2", "sha384", and "sha512"

// We can sign any type of file, creating a .p7m as output.
// The .p7m contains the signature and also embeds the data of the file that is signed.
ls_InFile = "qa_data/json/sample.json"
ls_SigFile = "qa_output/signature.p7m"

// -----------------------------------------------------------------------------------------
// Also see Chilkat's online tool to examine a .p7m and generate code to duplicate the .p7m
// -----------------------------------------------------------------------------------------

// Create the CAdES-BES attached signature, which contains the original data.
li_Success = loo_Crypt.CreateP7M(ls_InFile,ls_SigFile)
if li_Success = 0 then
    Write-Debug loo_Crypt.LastErrorText
    destroy loo_Crypt
    destroy loo_Cert
    return
end if

// Verify the .p7m file and extract the original file from the .p7m. 
ls_ExtractedToFilePath = "qa_output/sample.json"
li_Success = loo_Crypt.VerifyP7M(ls_SigFile,ls_ExtractedToFilePath)
if li_Success = 0 then
    Write-Debug loo_Crypt.LastErrorText
    destroy loo_Crypt
    destroy loo_Cert
    return
end if

Write-Debug "Success!"


destroy loo_Crypt
destroy loo_Cert