Sample code for 30+ languages & platforms
PowerShell

Sign Manifest File to Generate a Passbook .pkpass file

See more Digital Signatures Examples

Demonstrates how to create a Passbook .pkpass archive by creating a signature of a manifest file and then zipping to a .pkpass archive.

Note: Chilkat also has the capability to do everything in-memory (no files would be involved). If this is of interest, please send email to support@chilkatsoft.com

Chilkat PowerShell Downloads

PowerShell
Add-Type -Path "C:\chilkat\ChilkatDotNet47-x64\ChilkatDotNet47.dll"

$success = $false

# This requires the Chilkat API to have been previously unlocked.
# See Global Unlock Sample for sample code.

# ---------------------------------------------------------------------------------------------
# Note: Chilkat also has the capability to do everything in-memory (no files would be involved).  
# See this example:  Sign Manifest File to Generate a Passbook .pkpass in Memory
# ---------------------------------------------------------------------------------------------

# First create the manifest.json

$manifest = New-Object Chilkat.JsonObject
$crypt = New-Object Chilkat.Crypt2

$zip = New-Object Chilkat.Zip
$zip.NewZip("qa_data/p7s/pass-wallet/example.pkpass")
# Set the AppendFromDir property to prevent that relative paths from being stored in the .pkpass archive.
$zip.AppendFromDir = "qa_data/p7s/pass-wallet/"

$crypt.HashAlgorithm = "sha1"
# Return hashes as lowercase hex.
$crypt.EncodingMode = "hexlower"

$filePath = "qa_data/p7s/pass-wallet/icon.png"
$fileHash = $crypt.HashFileENC($filePath)
$zip.AddFile("icon.png",$false)
$manifest.UpdateString("`"icon.png`"",$fileHash)

$filePath = "qa_data/p7s/pass-wallet/icon@2x.png"
$fileHash = $crypt.HashFileENC($filePath)
$zip.AddFile("icon@2x.png",$false)
$manifest.UpdateString("`"icon@2x.png`"",$fileHash)

$filePath = "qa_data/p7s/pass-wallet/logo.png"
$fileHash = $crypt.HashFileENC($filePath)
$zip.AddFile("logo.png",$false)
$manifest.UpdateString("`"logo.png`"",$fileHash)

$filePath = "qa_data/p7s/pass-wallet/logo@2x.png"
$fileHash = $crypt.HashFileENC($filePath)
$zip.AddFile("logo@2x.png",$false)
$manifest.UpdateString("`"logo@2x.png`"",$fileHash)

$filePath = "qa_data/p7s/pass-wallet/pass.json"
$fileHash = $crypt.HashFileENC($filePath)
$zip.AddFile("pass.json",$false)
$manifest.UpdateString("`"pass.json`"",$fileHash)

$sbJson = New-Object Chilkat.StringBuilder
$manifest.EmitSb($sbJson)
$manifestPath = "qa_data/p7s/pass-wallet/manifest.json"
$sbJson.WriteFile($manifestPath,"utf-8",$false)
$zip.AddFile("manifest.json",$false)

# Make sure we have the Apple WWDR intermediate certificate available for 
# the cert chain in the signature.
$certVault = New-Object Chilkat.XmlCertVault
$appleWwdrCert = New-Object Chilkat.Cert
$success = $appleWwdrCert.LoadByCommonName("Apple Worldwide Developer Relations Certification Authority")
if ($success -ne $true) {
    $("The Apple WWDR intermediate certificate is not installed.")
    $("It is available at https://developer.apple.com/certificationauthority/AppleWWDRCA.cer")
    $("You may alternatively load the .cer like this...")
    $success = $appleWwdrCert.LoadFromFile("qa_data/certs/AppleWWDRCA.cer")
    if ($success -eq $false) {
        $($appleWwdrCert.LastErrorText)
        exit
    }

}

$certVault.AddCert($appleWwdrCert)
$crypt.UseCertVault($certVault)

# Use a digital certificate and private key from a PFX file (.pfx or .p12).
$pfxPath = "qa_data/pfx/cert_test123.pfx"
$pfxPassword = "test123"

$cert = New-Object Chilkat.Cert
$success = $cert.LoadPfxFile($pfxPath,$pfxPassword)
if ($success -eq $false) {
    $($cert.LastErrorText)
    exit
}

# Provide the signing cert (with associated private key).
$success = $crypt.SetSigningCert($cert)
if ($success -eq $false) {
    $($crypt.LastErrorText)
    exit
}

# Specify the signed attributes to be included.
# (These attributes appear to not be necessary, but we're including
# them just in case they become necessary in the future.)
$jsonSignedAttrs = New-Object Chilkat.JsonObject
$jsonSignedAttrs.UpdateInt("contentType",1)
$jsonSignedAttrs.UpdateInt("signingTime",1)
$crypt.SigningAttributes = $jsonSignedAttrs.Emit()

# Sign the manifest JSON file to produce a file named "signature".
$sigPath = "qa_data/p7s/pass-wallet/signature"

# Create the "signature" file.
$success = $crypt.CreateP7S($manifestPath,$sigPath)
if ($success -eq $false) {
    $($crypt.LastErrorText)
    exit
}

$zip.AddFile("signature",$false)

# ---------------------------------------------------------------------------------------------
# Note: Chilkat also has the capability to do everything in-memory (no files would be involved).  
# If this is of interest, please send email to support@chilkatsoft.com
# ---------------------------------------------------------------------------------------------

# Create the .pkipass archive (which is a .zip archive containing the required files).
$success = $zip.WriteZipAndClose()
if ($success -eq $false) {
    $($zip.LastErrorText)
    exit
}

$("Success.")