Chilkat HOME .NET Core C# Android™ AutoIt C C# C++ Chilkat2-Python CkPython Classic ASP DataFlex Delphi ActiveX Delphi DLL Go Java Lianja Mono C# Node.js Objective-C PHP ActiveX PHP Extension Perl PowerBuilder PowerShell PureBasic Ruby SQL Server Swift 2 Swift 3,4,5... Tcl Unicode C Unicode C++ VB.NET VBScript Visual Basic 6.0 Visual FoxPro Xojo Plugin
(PureBasic) Include the SigningCertificateV2 Authenticated Attribute in CAdES (CMS) SignatureDemonstrates how to include the SigningCertificateV2 authenticated attribute in a CMS (.p7m/.p7s) signature.
IncludeFile "CkCert.pb" IncludeFile "CkJsonObject.pb" IncludeFile "CkCrypt2.pb" Procedure ChilkatExample() ; This example assumes the Chilkat API to have been previously unlocked. ; See Global Unlock Sample for sample code. crypt.i = CkCrypt2::ckCreate() If crypt.i = 0 Debug "Failed to create object." ProcedureReturn EndIf cert.i = CkCert::ckCreate() If cert.i = 0 Debug "Failed to create object." ProcedureReturn EndIf success.i = CkCert::ckLoadPfxFile(cert,"qa_data/pfx/cert_test123.pfx","test123") If success <> 1 Debug CkCert::ckLastErrorText(cert) CkCrypt2::ckDispose(crypt) CkCert::ckDispose(cert) ProcedureReturn EndIf ; Tell the crypt component to use this cert. success = CkCrypt2::ckSetSigningCert(crypt,cert) If success <> 1 Debug CkCrypt2::ckLastErrorText(crypt) CkCrypt2::ckDispose(crypt) CkCert::ckDispose(cert) ProcedureReturn EndIf ; The CadesEnabled property applies to all methods that create PKCS7 signatures. ; To create a CAdES-BES signature, set this property equal to true. CkCrypt2::setCkCadesEnabled(crypt, 1) CkCrypt2::setCkHashAlgorithm(crypt, "sha256") ; We can sign any type of file, creating a .p7s as output. ; The .p7s contains the signature and also embeds the data of the file that is signed. inFile.s = "qa_data/pdf/sample.pdf" p7sFile.s = "qa_output/sample.pdf.p7s" jsonSigningAttrs.i = CkJsonObject::ckCreate() If jsonSigningAttrs.i = 0 Debug "Failed to create object." ProcedureReturn EndIf CkJsonObject::ckUpdateInt(jsonSigningAttrs,"contentType",1) CkJsonObject::ckUpdateInt(jsonSigningAttrs,"signingTime",1) CkJsonObject::ckUpdateInt(jsonSigningAttrs,"messageDigest",1) ; This is where we specify for the signingCertificateV2 attribute to be included: CkJsonObject::ckUpdateInt(jsonSigningAttrs,"signingCertificateV2",1) CkCrypt2::setCkSigningAttributes(crypt, CkJsonObject::ckEmit(jsonSigningAttrs)) ; By default, all the certs in the chain of authentication are included in the signature. ; If desired, we can choose to only include the signing certificate: CkCrypt2::setCkIncludeCertChain(crypt, 0) ; Create the CAdES-BES attached signature, which contains the original data. ; Note: Chilkat's function naming is not accurate. CreateP7M creates a PKCS7 signature where the signed file ; is contained within the signature. CreateP7S creates a detached PKCS7 signature where the signed file ; is NOT contained within the signature. We want the data to be contained in the signature, therefore ; we call CreateP7M even though we are naming our output file .p7s. success = CkCrypt2::ckCreateP7M(crypt,inFile,p7sFile) If success = 0 Debug CkCrypt2::ckLastErrorText(crypt) CkCrypt2::ckDispose(crypt) CkCert::ckDispose(cert) CkJsonObject::ckDispose(jsonSigningAttrs) ProcedureReturn EndIf ; Verify the .p7s file and extract the original file from the .p7s. extractedToFilePath.s = "qa_output/sample.pdf" success = CkCrypt2::ckVerifyP7M(crypt,p7sFile,extractedToFilePath) If success = 0 Debug CkCrypt2::ckLastErrorText(crypt) CkCrypt2::ckDispose(crypt) CkCert::ckDispose(cert) CkJsonObject::ckDispose(jsonSigningAttrs) ProcedureReturn EndIf Debug "Success!" CkCrypt2::ckDispose(crypt) CkCert::ckDispose(cert) CkJsonObject::ckDispose(jsonSigningAttrs) ProcedureReturn EndProcedure |
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.