Sample code for 30+ languages & platforms
PowerBuilder

RSA Sign using a Private Key on a USB Token or Smartcard

See more Apple Keychain Examples

Create an RSA signature using a private key stored on a USB token or smartcard.

Note: On MacOS and iOS, this example requires Chilkat v10.1.2 or later when the Apple Keychain is used as the underlying means to do the signing.

Chilkat PowerBuilder Downloads

PowerBuilder
integer li_rc
integer li_Success
oleobject loo_Cert
oleobject loo_Bd
integer i
oleobject loo_Rsa
oleobject loo_BdSig

li_Success = 0

// Assuming the smartcard/USB token is installed with the correct drivers from the manufacturer,
// this code can work on multiple platforms including Windows, MacOS, Linux, and iOS.

// Chilkat automatically detects and determines the way in which the HSM is used,
// which can be by PKCS11, Apple Keychain, Microsoft CNG / Crypto API, or ScMinidriver.

loo_Cert = create oleobject
li_rc = loo_Cert.ConnectToNewObject("Chilkat.Cert")
if li_rc < 0 then
    destroy loo_Cert
    MessageBox("Error","Connecting to COM object failed")
    return
end if

// Set the token/smartcard PIN prior to loading.
loo_Cert.SmartCardPin = "123456"

// Specify the certificate by its common name.
li_Success = loo_Cert.LoadFromSmartcard("cn=chilkat-rsa-2048")
if li_Success = 0 then
    Write-Debug loo_Cert.LastErrorText
    destroy loo_Cert
    return
end if

Write-Debug "Signing with cert: " + loo_Cert.SubjectCN

// Create data to be hashed and signed.
loo_Bd = create oleobject
li_rc = loo_Bd.ConnectToNewObject("Chilkat.BinData")

for i = 0 to 100
    loo_Bd.AppendEncoded("000102030405060708090A0B0C0D0E0F","hex")
next

loo_Rsa = create oleobject
li_rc = loo_Rsa.ConnectToNewObject("Chilkat.Rsa")

// Use the certificate's private key for signing.
li_Success = loo_Rsa.SetX509Cert(loo_Cert,1)
if li_Success = 0 then
    Write-Debug loo_Rsa.LastErrorText
    destroy loo_Cert
    destroy loo_Bd
    destroy loo_Rsa
    return
end if

// Sign the SHA-256 hash of the contents of bd.
loo_BdSig = create oleobject
li_rc = loo_BdSig.ConnectToNewObject("Chilkat.BinData")

li_Success = loo_Rsa.SignBd(loo_Bd,"sha256",loo_BdSig)
if li_Success = 0 then
    Write-Debug loo_Rsa.LastErrorText
    destroy loo_Cert
    destroy loo_Bd
    destroy loo_Rsa
    destroy loo_BdSig
    return
end if

// The RSA signature is equal in length to the size of the RSA key.
Write-Debug "Output signature size in bits = " + string(loo_BdSig.NumBytes * 8)

// We can save the signature for later verification..
loo_BdSig.WriteFile("rsaSignatures/test1.sig")

// See the example to verify the RSA signature:
// Verfies an RSA Signature


destroy loo_Cert
destroy loo_Bd
destroy loo_Rsa
destroy loo_BdSig