PowerShell
PowerShell
Azure Key Vault Get Certificates
See more Azure Key Vault Examples
Demonstrates how to list the certificates in an Azure Key Vault.Note: This example requires Chilkat v9.5.0.96 or later.
Chilkat PowerShell Downloads
Add-Type -Path "C:\chilkat\ChilkatDotNet47-x64\ChilkatDotNet47.dll"
$success = $false
# This requires the Chilkat API to have been previously unlocked.
# See Global Unlock Sample for sample code.
# We demonstrated how to get an access token for your Azure Key Vault
# in this example: Azure Key Vault Get OAuth2 Access Token using Client Credentials
# However.. starting in Chilkat v9.5.0.96, instead of directly providing Chilkat with the OAuth2 access token,
# you can instead provide the means for Chilkat to automatically get the OAuth2 access token,
# and in addition, Chilkat will automatically re-fetch a new OAuth2 access token as needed, such as shortly
# prior to or after expiration.
# You do this by setting the AuthToken property to a JSON string that contains the required information.
$json = New-Object Chilkat.JsonObject
$json.UpdateString("client_id","APP_ID")
# The APP_PASSWORD is the "password" returned by the Azure CLI command: az ad sp create-for-rbac --name http://example.com --role Contributor
# See Azure Key Vault Get OAuth2 Access Token using Client Credentials
$json.UpdateString("client_secret","APP_PASSWORD")
# The access token will be for Azure Key Vault operations.
$json.UpdateString("resource","https://vault.azure.net")
# Specify the token endpoint which includes your tenant ID.
$json.UpdateString("token_endpoint","https://login.microsoftonline.com/TENANT_ID/oauth2/token")
$http = New-Object Chilkat.Http
# Instead of providing an actual access token, we give Chilkat the information that allows it to
# automatically fetch the access token using the OAuth2 client credentials flow.
$http.AuthToken = $json.Emit()
# Replace key_vault_name with the name of your Azure Key Vault.
$sbResponse = New-Object Chilkat.StringBuilder
$success = $http.QuickGetSb("https://key_vault_name.vault.azure.net/certificates?api-version=7.4",$sbResponse)
if ($success -eq $false) {
$statusCode = $http.LastStatus
if ($statusCode -eq 0) {
# We did not get a response from the server..
$($http.LastErrorText)
}
else {
# We received a response, but it was an error.
$("Error response status code: " + $statusCode)
$("Error response:")
$($sbResponse.GetAsString())
}
exit
}
$jsonResp = New-Object Chilkat.JsonObject
$jsonResp.LoadSb($sbResponse)
$jsonResp.EmitCompact = $false
$($jsonResp.Emit())
# The output looks like this:
# {
# "value": [
# {
# "id": "https://kvchilkat.vault.azure.net/certificates/BadSSL",
# "x5t": "U04xLnb8Ww7BKkW9dD7P1cCHNDY",
# "attributes": {
# "enabled": true,
# "nbf": 1674409014,
# "exp": 1737481014,
# "created": 1697294224,
# "updated": 1697294224
# },
# "subject": ""
# },
# {
# "id": "https://kvchilkat.vault.azure.net/certificates/Brasil",
# "x5t": "ayF5eBtlA35xPMivusE0wpmFjnA",
# "attributes": {
# "enabled": true,
# "nbf": 1667830002,
# "exp": 1699366002,
# "created": 1697294090,
# "updated": 1697294090
# },
# "subject": ""
# }
# ],
# "nextLink": null
# }
# Use this online tool to generate parsing code from sample JSON:
# Generate Parsing Code from JSON
$i = 0
$count_i = $jsonResp.SizeOfArray("value")
while ($i -lt $count_i) {
$jsonResp.I = $i
$id = $jsonResp.StringOf("value[i].id")
$x5t = $jsonResp.StringOf("value[i].x5t")
$Enabled = $jsonResp.BoolOf("value[i].attributes.enabled")
$Nbf = $jsonResp.IntOf("value[i].attributes.nbf")
$Exp = $jsonResp.IntOf("value[i].attributes.exp")
$Created = $jsonResp.IntOf("value[i].attributes.created")
$Updated = $jsonResp.IntOf("value[i].attributes.updated")
$subject = $jsonResp.StringOf("value[i].subject")
$i = $i + 1
}