Sample code for 30+ languages & platforms
PowerBuilder

FatturaPA XML Invoice Sign+Encrypt to P7M

See more Digital Signatures Examples

Demonstrates how to create a CAdES BES signed + encrypted invoice.xml.p7m for the Italian FatturaPA exchange system.

Chilkat PowerBuilder Downloads

PowerBuilder
integer li_rc
integer li_Success
oleobject loo_Crypt
string ls_PfxPath
string ls_PfxPassword
oleobject loo_Cert
oleobject loo_JsonSignedAttrs
string ls_InFile
string ls_SigFile
oleobject loo_EncryptCert

li_Success = 0

// This requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

loo_Crypt = create oleobject
li_rc = loo_Crypt.ConnectToNewObject("Chilkat.Crypt2")
if li_rc < 0 then
    destroy loo_Crypt
    MessageBox("Error","Connecting to COM object failed")
    return
end if

// Use a digital certificate and private key from a PFX file (.pfx or .p12).
ls_PfxPath = "qa_data/pfx/cert_test123.pfx"
ls_PfxPassword = "test123"

loo_Cert = create oleobject
li_rc = loo_Cert.ConnectToNewObject("Chilkat.Cert")

li_Success = loo_Cert.LoadPfxFile(ls_PfxPath,ls_PfxPassword)
if li_Success = 0 then
    Write-Debug loo_Cert.LastErrorText
    destroy loo_Crypt
    destroy loo_Cert
    return
end if

// Provide the signing cert (with associated private key).
li_Success = loo_Crypt.SetSigningCert(loo_Cert)
if li_Success = 0 then
    Write-Debug loo_Crypt.LastErrorText
    destroy loo_Crypt
    destroy loo_Cert
    return
end if

// Indicate that SHA-256 should be used.
loo_Crypt.HashAlgorithm = "sha256"

// Specify the signed attributes to be included.
// (This is what makes it CAdES-BES compliant.)
loo_JsonSignedAttrs = create oleobject
li_rc = loo_JsonSignedAttrs.ConnectToNewObject("Chilkat.JsonObject")

loo_JsonSignedAttrs.UpdateInt("contentType",1)
loo_JsonSignedAttrs.UpdateInt("signingTime",1)
loo_JsonSignedAttrs.UpdateInt("messageDigest",1)
loo_JsonSignedAttrs.UpdateInt("signingCertificateV2",1)
loo_Crypt.SigningAttributes = loo_JsonSignedAttrs.Emit()

ls_InFile = "qa_data/xml/IT01234567890_11002.xml"
ls_SigFile = "qa_data/fatturapa/signed.p7m"

// Create the CAdES-BES signature, which contains the original data.
li_Success = loo_Crypt.CreateP7M(ls_InFile,ls_SigFile)
if li_Success = 0 then
    Write-Debug loo_Crypt.LastErrorText
    destroy loo_Crypt
    destroy loo_Cert
    destroy loo_JsonSignedAttrs
    return
end if

// Now we'll encrypt what was signed using FatturaPA's certificate (from a PEM file)
loo_EncryptCert = create oleobject
li_rc = loo_EncryptCert.ConnectToNewObject("Chilkat.Cert")

li_Success = loo_EncryptCert.LoadFromFile("qa_data/certs/fatturapa_cert.pem")
if li_Success = 0 then
    Write-Debug loo_EncryptCert.LastErrorText
    destroy loo_Crypt
    destroy loo_Cert
    destroy loo_JsonSignedAttrs
    destroy loo_EncryptCert
    return
end if

loo_Crypt.CryptAlgorithm = "pki"

li_Success = loo_Crypt.SetEncryptCert(loo_EncryptCert)
if li_Success = 0 then
    Write-Debug loo_Crypt.LastErrorText
    destroy loo_Crypt
    destroy loo_Cert
    destroy loo_JsonSignedAttrs
    destroy loo_EncryptCert
    return
end if

// Indicate the underlying bulk encryption algorithm to be used:
loo_Crypt.Pkcs7CryptAlg = "aes"
loo_Crypt.KeyLength = 128

// There's one last option that could be set.  If is the RSA encryption encryption/padding scheme. 
// By default, RSAES_PKCS1-V1_5 is used.  If desired, the OaepPadding property could be set to 1 to
// use RSAES_OAEP.  (We'll leave it set at the default value of 0)
loo_Crypt.OaepPadding = 0

// Everything is specified.  Encrypt the .p7m to create a new .p7m (which adds a layer of encryption around the opaque signature).
// The output is PKCS7 in binary DER format.
li_Success = loo_Crypt.CkEncryptFile(ls_SigFile,"qa_output/signed_and_encrypted.p7m")
if li_Success = 0 then
    Write-Debug loo_Crypt.LastErrorText
    destroy loo_Crypt
    destroy loo_Cert
    destroy loo_JsonSignedAttrs
    destroy loo_EncryptCert
    return
end if

Write-Debug "Success."


destroy loo_Crypt
destroy loo_Cert
destroy loo_JsonSignedAttrs
destroy loo_EncryptCert