Sample code for 30+ languages & platforms
PowerShell

Sign Manifest File to Generate a Passbook .pkpass in Memory

Demonstrates how to create a Passbook .pkpass archive by creating a signature of a manifest file and then zipping to a .pkpass archive in memory

Chilkat PowerShell Downloads

PowerShell
Add-Type -Path "C:\chilkat\ChilkatDotNet47-x64\ChilkatDotNet47.dll"

$success = $false

# This requires the Chilkat API to have been previously unlocked.
# See Global Unlock Sample for sample code.

# ---------------------------------------------------------------------------------------------
# This example is the same as Sign Manifest File to Generate a Passbook .pkpass file
# except everything happens in memory (no input files, no output files)
# ---------------------------------------------------------------------------------------------

# First create the manifest.json

$manifest = New-Object Chilkat.JsonObject
$crypt = New-Object Chilkat.Crypt2

$zip = New-Object Chilkat.Zip
$zip.NewZip("notUsedAndNeverCreated.zip")

$crypt.HashAlgorithm = "sha1"
# Return hashes as lowercase hex.
$crypt.EncodingMode = "hexlower"

$pngData = New-Object Chilkat.BinData
# Assume we load the pngData with bytes for "icon.png" from somewhere, such as a byte array in memory.
$zip.AddBd("icon.png",$pngData)
$digestStr = $crypt.HashBdENC($pngData)
$manifest.UpdateString("`"icon.png`"",$digestStr)

$pngData.Clear()
# Assume we load the pngData with bytes for "icon@2x.png" from somewhere...
$zip.AddBd("icon@2x.png",$pngData)
$digestStr = $crypt.HashBdENC($pngData)
$manifest.UpdateString("`"icon@2x.png`"",$digestStr)

$pngData.Clear()
# Assume we load the pngData with bytes for "logo.png" from somewhere...
$zip.AddBd("logo.png",$pngData)
$digestStr = $crypt.HashBdENC($pngData)
$manifest.UpdateString("`"logo.png`"",$digestStr)

$pngData.Clear()
# Assume we load the pngData with bytes for "logo@2x.png" from somewhere...
$zip.AddBd("logo@2x.png",$pngData)
$digestStr = $crypt.HashBdENC($pngData)
$manifest.UpdateString("`"logo@2x.png`"",$digestStr)

$passJson = "{ .... }"#  Contains the contents of pass.json
$zip.AddString("pass.json",$passJson,"utf-8")
$digestStr = $crypt.HashStringENC($passJson)
$manifest.UpdateString("`"pass.json`"",$digestStr)

$zip.AddString("manifest.json",$manifest.Emit(),"utf-8")

# Make sure we have the Apple WWDR intermediate certificate available for 
# the cert chain in the signature.
$certVault = New-Object Chilkat.XmlCertVault
$appleWwdrCert = New-Object Chilkat.Cert
$success = $appleWwdrCert.LoadByCommonName("Apple Worldwide Developer Relations Certification Authority")
if ($success -ne $true) {
    $("The Apple WWDR intermediate certificate is not installed.")
    $("It is available at https://developer.apple.com/certificationauthority/AppleWWDRCA.cer")
    $("You may alternatively load the .cer like this...")
    $success = $appleWwdrCert.LoadFromFile("qa_data/certs/AppleWWDRCA.cer")
    if ($success -eq $false) {
        $($appleWwdrCert.LastErrorText)
        exit
    }

}

$certVault.AddCert($appleWwdrCert)
$crypt.UseCertVault($certVault)

# Use a digital certificate and private key from a PFX
$bdPfx = New-Object Chilkat.BinData
# Assume we loaded a PFX into bdPfx....
$pfxPassword = "test123"

$cert = New-Object Chilkat.Cert
$success = $cert.LoadPfxBd($bdPfx,$pfxPassword)
if ($success -eq $false) {
    $($cert.LastErrorText)
    exit
}

# Provide the signing cert (with associated private key).
$success = $crypt.SetSigningCert($cert)
if ($success -eq $false) {
    $($crypt.LastErrorText)
    exit
}

# Specify the signed attributes to be included.
# (These attributes appear to not be necessary, but we're including
# them just in case they become necessary in the future.)
$jsonSignedAttrs = New-Object Chilkat.JsonObject
$jsonSignedAttrs.UpdateInt("contentType",1)
$jsonSignedAttrs.UpdateInt("signingTime",1)
$crypt.SigningAttributes = $jsonSignedAttrs.Emit()

# Sign the manifest JSON to produce a signature
$crypt.EncodingMode = "base64"
$sig = $crypt.SignStringENC($manifest.Emit())
$bdSig = New-Object Chilkat.BinData
$bdSig.AppendEncoded($sig,"base64")
$zip.AddBd("signature",$bdSig)

# ---------------------------------------------------------------------------------------------
# Note: Chilkat also has the capability to do everything in-memory (no files would be involved).  
# If this is of interest, please send email to support@chilkatsoft.com
# ---------------------------------------------------------------------------------------------

# Create the .pkipass archive (which is a .zip archive containing the required files).
# the .zip is written to bdZip
$bdZip = New-Object Chilkat.BinData
$success = $zip.WriteBd($bdZip)
if ($success -eq $false) {
    $($zip.LastErrorText)
    exit
}

$("Success.")