PureBasic
PureBasic
Find Certificate by Email Address
See more Cert Store Examples
Demonstrates how to find a certificate having the specified email address either within the cert's subject email, or the RFC822 name.In an X.509 certificate, an email address can typically be located in two places:
- RFC822 Name (Subject Alternative Name extension) -
- The certificate may include an email address in the Subject Alternative Name (SAN) extension under the RFC822 Name field. This is a modern and preferred method because it allows for flexibility and alignment with security best practices.
- To find it, Chilkat inspects the SAN extension in the certificate details.
- Subject (Common Name or Email Address attribute) -
- Older certificates may store the email address directly in the Subject field, typically under the Email Address attribute ("emailAddress") or, less commonly, the Common Name (CN).
- This method is less preferred in modern standards but can still be encountered in legacy implementations. Chilkat also searches here for the email address.
Note: Requires Chilkat v10.1.2 or later.
Chilkat PureBasic Downloads
IncludeFile "CkCertStore.pb"
IncludeFile "CkCert.pb"
IncludeFile "CkJsonObject.pb"
Procedure ChilkatExample()
success.i = 0
certStore.i = CkCertStore::ckCreate()
If certStore.i = 0
Debug "Failed to create object."
ProcedureReturn
EndIf
; This opens the Current User certificate store on Windows,
; On MacOS and iOS it opens the default Keychain.
readOnly.i = 0
success = CkCertStore::ckOpenCurrentUserStore(certStore,readOnly)
If success = 0
Debug CkCertStore::ckLastErrorText(certStore)
CkCertStore::ckDispose(certStore)
ProcedureReturn
EndIf
; Find the certificate having the specified email address in either the RFC822 Name or in the Subject.
json.i = CkJsonObject::ckCreate()
If json.i = 0
Debug "Failed to create object."
ProcedureReturn
EndIf
email_address.s = "joe@example.com"
CkJsonObject::ckUpdateString(json,"email",email_address)
cert.i = CkCert::ckCreate()
If cert.i = 0
Debug "Failed to create object."
ProcedureReturn
EndIf
success = CkCertStore::ckFindCert(certStore,json,cert)
If success = 1
; Show the full distinguished name of the certificate.
Debug "Found: " + CkCert::ckSubjectDN(cert)
Else
Debug "Not found."
EndIf
CkCertStore::ckDispose(certStore)
CkJsonObject::ckDispose(json)
CkCert::ckDispose(cert)
ProcedureReturn
EndProcedure