PowerBuilder
PowerBuilder
FatturaPA XML Invoice Sign+Encrypt to P7M
See more Digital Signatures Examples
Demonstrates how to create a CAdES BES signed + encrypted invoice.xml.p7m for the Italian FatturaPA exchange system.Chilkat PowerBuilder Downloads
integer li_rc
integer li_Success
oleobject loo_Crypt
string ls_PfxPath
string ls_PfxPassword
oleobject loo_Cert
oleobject loo_JsonSignedAttrs
string ls_InFile
string ls_SigFile
oleobject loo_EncryptCert
li_Success = 0
// This requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
loo_Crypt = create oleobject
li_rc = loo_Crypt.ConnectToNewObject("Chilkat.Crypt2")
if li_rc < 0 then
destroy loo_Crypt
MessageBox("Error","Connecting to COM object failed")
return
end if
// Use a digital certificate and private key from a PFX file (.pfx or .p12).
ls_PfxPath = "qa_data/pfx/cert_test123.pfx"
ls_PfxPassword = "test123"
loo_Cert = create oleobject
li_rc = loo_Cert.ConnectToNewObject("Chilkat.Cert")
li_Success = loo_Cert.LoadPfxFile(ls_PfxPath,ls_PfxPassword)
if li_Success = 0 then
Write-Debug loo_Cert.LastErrorText
destroy loo_Crypt
destroy loo_Cert
return
end if
// Provide the signing cert (with associated private key).
li_Success = loo_Crypt.SetSigningCert(loo_Cert)
if li_Success = 0 then
Write-Debug loo_Crypt.LastErrorText
destroy loo_Crypt
destroy loo_Cert
return
end if
// Indicate that SHA-256 should be used.
loo_Crypt.HashAlgorithm = "sha256"
// Specify the signed attributes to be included.
// (This is what makes it CAdES-BES compliant.)
loo_JsonSignedAttrs = create oleobject
li_rc = loo_JsonSignedAttrs.ConnectToNewObject("Chilkat.JsonObject")
loo_JsonSignedAttrs.UpdateInt("contentType",1)
loo_JsonSignedAttrs.UpdateInt("signingTime",1)
loo_JsonSignedAttrs.UpdateInt("messageDigest",1)
loo_JsonSignedAttrs.UpdateInt("signingCertificateV2",1)
loo_Crypt.SigningAttributes = loo_JsonSignedAttrs.Emit()
ls_InFile = "qa_data/xml/IT01234567890_11002.xml"
ls_SigFile = "qa_data/fatturapa/signed.p7m"
// Create the CAdES-BES signature, which contains the original data.
li_Success = loo_Crypt.CreateP7M(ls_InFile,ls_SigFile)
if li_Success = 0 then
Write-Debug loo_Crypt.LastErrorText
destroy loo_Crypt
destroy loo_Cert
destroy loo_JsonSignedAttrs
return
end if
// Now we'll encrypt what was signed using FatturaPA's certificate (from a PEM file)
loo_EncryptCert = create oleobject
li_rc = loo_EncryptCert.ConnectToNewObject("Chilkat.Cert")
li_Success = loo_EncryptCert.LoadFromFile("qa_data/certs/fatturapa_cert.pem")
if li_Success = 0 then
Write-Debug loo_EncryptCert.LastErrorText
destroy loo_Crypt
destroy loo_Cert
destroy loo_JsonSignedAttrs
destroy loo_EncryptCert
return
end if
loo_Crypt.CryptAlgorithm = "pki"
li_Success = loo_Crypt.SetEncryptCert(loo_EncryptCert)
if li_Success = 0 then
Write-Debug loo_Crypt.LastErrorText
destroy loo_Crypt
destroy loo_Cert
destroy loo_JsonSignedAttrs
destroy loo_EncryptCert
return
end if
// Indicate the underlying bulk encryption algorithm to be used:
loo_Crypt.Pkcs7CryptAlg = "aes"
loo_Crypt.KeyLength = 128
// There's one last option that could be set. If is the RSA encryption encryption/padding scheme.
// By default, RSAES_PKCS1-V1_5 is used. If desired, the OaepPadding property could be set to 1 to
// use RSAES_OAEP. (We'll leave it set at the default value of 0)
loo_Crypt.OaepPadding = 0
// Everything is specified. Encrypt the .p7m to create a new .p7m (which adds a layer of encryption around the opaque signature).
// The output is PKCS7 in binary DER format.
li_Success = loo_Crypt.CkEncryptFile(ls_SigFile,"qa_output/signed_and_encrypted.p7m")
if li_Success = 0 then
Write-Debug loo_Crypt.LastErrorText
destroy loo_Crypt
destroy loo_Cert
destroy loo_JsonSignedAttrs
destroy loo_EncryptCert
return
end if
Write-Debug "Success."
destroy loo_Crypt
destroy loo_Cert
destroy loo_JsonSignedAttrs
destroy loo_EncryptCert