|
Chilkat • HOME • .NET Core C# • Android™ • AutoIt • C • C# • C++ • Chilkat2-Python • CkPython • Classic ASP • DataFlex • Delphi ActiveX • Delphi DLL • Go • Java • Lianja • Mono C# • Node.js • Objective-C • PHP ActiveX • PHP Extension • Perl • PowerBuilder • PowerShell • PureBasic • Ruby • SQL Server • Swift 2 • Swift 3,4,5... • Tcl • Unicode C • Unicode C++ • VB.NET • VBScript • Visual Basic 6.0 • Visual FoxPro • Xojo Plugin
(PowerBuilder) Examine Client Certificates for an Accepted TLS ConnectionDemonstrates how to access the client certificates for a TLS connection accepted by your application acting as the server.
integer li_rc oleobject loo_ListenSslSocket oleobject loo_Cert integer li_Success integer li_MyPort integer li_BackLog integer li_MaxWaitMillisec oleobject loo_ClientSock integer li_NumClientCerts integer i oleobject loo_ClientCert // This example requires the Chilkat API to have been previously unlocked. // See Global Unlock Sample for sample code. loo_ListenSslSocket = create oleobject // Use "Chilkat_9_5_0.Socket" for versions of Chilkat < 10.0.0 li_rc = loo_ListenSslSocket.ConnectToNewObject("Chilkat.Socket") if li_rc < 0 then destroy loo_ListenSslSocket MessageBox("Error","Connecting to COM object failed") return end if // An SSL/TLS server needs a digital certificate. This example loads it from a PFX file. // This is the server's certificate. loo_Cert = create oleobject // Use "Chilkat_9_5_0.Cert" for versions of Chilkat < 10.0.0 li_rc = loo_Cert.ConnectToNewObject("Chilkat.Cert") li_Success = loo_Cert.LoadPfxFile("qa_data/serverCert/myServerCert.pfx","pfx_password") if li_Success <> 1 then Write-Debug loo_Cert.LastErrorText destroy loo_ListenSslSocket destroy loo_Cert return end if // To accept client client certificates in the TLS handshake, // we must indicate a list of acceptable client certificate root CA DN's // that are allowed. (DN is an acronym for Distinguished Name.) // Call AddSslAcceptableClientCaDn once for each acceptable CA DN. // Here are a few examples so you can see the general format of a DN. loo_ListenSslSocket.AddSslAcceptableClientCaDn("C=SE, O=AddTrust AB, OU=AddTrust External TTP Network, CN=AddTrust External CA Root") loo_ListenSslSocket.AddSslAcceptableClientCaDn("O=Digital Signature Trust Co., CN=DST Root CA X3") // Initialize with our server's TLS certificate. li_Success = loo_ListenSslSocket.InitSslServer(loo_Cert) if li_Success <> 1 then Write-Debug loo_ListenSslSocket.LastErrorText destroy loo_ListenSslSocket destroy loo_Cert return end if // Bind and listen on a port: li_MyPort = 8123 // Allow for a max of 5 queued connect requests. li_BackLog = 5 li_Success = loo_ListenSslSocket.BindAndListen(li_MyPort,li_BackLog) if li_Success <> 1 then Write-Debug loo_ListenSslSocket.LastErrorText destroy loo_ListenSslSocket destroy loo_Cert return end if // Accept the next incoming connection. li_MaxWaitMillisec = 20000 loo_ClientSock = loo_ListenSslSocket.AcceptNextConnection(li_MaxWaitMillisec) if loo_ListenSslSocket.LastMethodSuccess = 0 then Write-Debug loo_ListenSslSocket.LastErrorText destroy loo_ListenSslSocket destroy loo_Cert return end if // Examine the client certs chain. The 1st cert will be the client certificate, and // the subsequent certs will be the certs in the chain of authentication. li_NumClientCerts = loo_ClientSock.NumReceivedClientCerts Write-Debug "numClientCerts = " + string(li_NumClientCerts) i = 0 do while i < li_NumClientCerts loo_ClientCert = loo_ClientSock.GetReceivedClientCert(i) Write-Debug loo_ClientCert.SubjectDN destroy loo_ClientCert i = i + 1 loop // Close the connection with the client li_Success = loo_ClientSock.Close(1000) destroy loo_ClientSock destroy loo_ListenSslSocket destroy loo_Cert |
||||
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.