PureBasic
PureBasic
Require SSL Server Certificate Domain Match
See more HTTP Examples
Demonstrates how to require that the SSL server certificate's domain matches the intended domain.Chilkat PureBasic Downloads
IncludeFile "CkHttp.pb"
Procedure ChilkatExample()
success.i = 0
; This example assumes the Chilkat API to have been previously unlocked.
; See Global Unlock Sample for sample code.
http.i = CkHttp::ckCreate()
If http.i = 0
Debug "Failed to create object."
ProcedureReturn
EndIf
; Call SetSslCertRequirement to require that the SSL server certificate's domain
; matches only the domain we are intending to communicate with.
; In this example we will test with the URL https://wrong.host.badssl.com/
; which intentionally has an SSL certificate that does not match "wrong.host.badssl.com"
CkHttp::ckSetSslCertRequirement(http,"SAN","wrong.host.badssl.com")
; Also validate the server cert..
CkHttp::setCkRequireSslCertVerify(http, 1)
; Try sending the request. It should fail within the SSL/TLS handshake
; because the server's certificate does not match the domain "wrong.host.badssl.com"
html.s = CkHttp::ckQuickGetStr(http,"https://wrong.host.badssl.com/")
If CkHttp::ckLastMethodSuccess(http) = 0
Debug CkHttp::ckLastErrorText(http)
Else
Debug "Unexpected success."
EndIf
CkHttp::ckDispose(http)
ProcedureReturn
EndProcedure