|
Chilkat • HOME • .NET Core C# • Android™ • AutoIt • C • C# • C++ • Chilkat2-Python • CkPython • Classic ASP • DataFlex • Delphi ActiveX • Delphi DLL • Go • Java • Lianja • Mono C# • Node.js • Objective-C • PHP ActiveX • PHP Extension • Perl • PowerBuilder • PowerShell • PureBasic • Ruby • SQL Server • Swift 2 • Swift 3,4,5... • Tcl • Unicode C • Unicode C++ • VB.NET • VBScript • Visual Basic 6.0 • Visual FoxPro • Xojo Plugin
(PowerShell) Create JWK Set Containing CertificatesDemonstrates how to create a JWK Set containing N certificates.
Add-Type -Path "C:\chilkat\ChilkatDotNet47-9.5.0-x64\ChilkatDotNet47.dll" # This example creates the following JWK Set from two certificates: # { # "keys": [ # { # "kty": "RSA", # "use": "sig", # "kid": "BB8CeFVqyaGrGNuehJIiL4dfjzw", # "x5t": "BB8CeFVqyaGrGNuehJIiL4dfjzw", # "n": "nYf1jpn7cFdQ...9Iw", # "e": "AQAB", # "x5c": [ # "MIIDBTCCAe2...Z+NTZo" # ] # }, # { # "kty": "RSA", # "use": "sig", # "kid": "M6pX7RHoraLsprfJeRCjSxuURhc", # "x5t": "M6pX7RHoraLsprfJeRCjSxuURhc", # "n": "xHScZMPo8F...EO4QQ", # "e": "AQAB", # "x5c": [ # "MIIC8TCCAdmgA...Vt5432GA==" # ] # } # ] # } # First get two certificates from files. $cert1 = New-Object Chilkat.Cert $success = $cert1.LoadFromFile("qa_data/certs/brasil_cert.pem") if ($success -ne $true) { $($cert1.LastErrorText) exit } $cert2 = New-Object Chilkat.Cert $success = $cert2.LoadFromFile("qa_data/certs/testCert.cer") if ($success -ne $true) { $($cert2.LastErrorText) exit } # We'll need this crypt object re-encode the SHA1 thumbprint from hex to base64. $crypt = New-Object Chilkat.Crypt2 $json = New-Object Chilkat.JsonObject # Let's begin with the 1st cert: $json.I = 0 $json.UpdateString("keys[i].kty","RSA") $json.UpdateString("keys[i].use","sig") $hexThumbprint = $cert1.Sha1Thumbprint $base64Thumbprint = $crypt.ReEncode($hexThumbprint,"hex","base64") $json.UpdateString("keys[i].kid",$base64Thumbprint) $json.UpdateString("keys[i].x5t",$base64Thumbprint) # (We're assuming these are RSA certificates) # To get the modulus (n) and exponent (e), we need to get the cert's public key and then get its JWK. $pubKey = $cert1.ExportPublicKey() $pubKeyJwk = New-Object Chilkat.JsonObject $pubKeyJwk.Load($pubKey.GetJwk()) $json.UpdateString("keys[i].n",$pubKeyJwk.StringOf("n")) $json.UpdateString("keys[i].e",$pubKeyJwk.StringOf("e")) # Now add the entire X.509 certificate $json.UpdateString("keys[i].x5c[0]",$cert1.GetEncoded()) # Now do the same for cert2.. $json.I = 1 $json.UpdateString("keys[i].kty","RSA") $json.UpdateString("keys[i].use","sig") $hexThumbprint = $cert2.Sha1Thumbprint $base64Thumbprint = $crypt.ReEncode($hexThumbprint,"hex","base64") $json.UpdateString("keys[i].kid",$base64Thumbprint) $json.UpdateString("keys[i].x5t",$base64Thumbprint) $pubKey = $cert2.ExportPublicKey() $pubKeyJwk.Load($pubKey.GetJwk()) $json.UpdateString("keys[i].n",$pubKeyJwk.StringOf("n")) $json.UpdateString("keys[i].e",$pubKeyJwk.StringOf("e")) # Now add the entire X.509 certificate $json.UpdateString("keys[i].x5c[0]",$cert2.GetEncoded()) # Emit the JSON.. $json.EmitCompact = $false $($json.Emit()) |
||||
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.