Chilkat HOME .NET Core C# Android™ AutoIt C C# C++ Chilkat2-Python CkPython Classic ASP DataFlex Delphi ActiveX Delphi DLL Go Java Lianja Mono C# Node.js Objective-C PHP ActiveX PHP Extension Perl PowerBuilder PowerShell PureBasic Ruby SQL Server Swift 2 Swift 3,4,5... Tcl Unicode C Unicode C++ VB.NET VBScript Visual Basic 6.0 Visual FoxPro Xojo Plugin
(PureBasic) ITIDA Debug Signed JSON and HTTP POSTSee more Egypt ITIDA ExamplesExplains how to debug when problems are encountered with ITIDA canonicalization, signing, and posting to api.preprod.invoicing.eta.gov.eg. The most common error response from the api.preprod.invoicing.eta.gov.eg server is: ITIDA Signature Invalid Signature * 4043 4043:message-digest attribute value does not match the calculated value[message-digest attribute value does not match the calculated value]
IncludeFile "CkJsonObject.pb" IncludeFile "CkHttp.pb" IncludeFile "CkCrypt2.pb" IncludeFile "CkStringBuilder.pb" IncludeFile "CkHttpResponse.pb" IncludeFile "CkCert.pb" Procedure ChilkatExample() ; This example assumes the Chilkat API to have been previously unlocked. ; See Global Unlock Sample for sample code. crypt.i = CkCrypt2::ckCreate() If crypt.i = 0 Debug "Failed to create object." ProcedureReturn EndIf CkCrypt2::setCkVerboseLogging(crypt, 1) cert.i = CkCert::ckCreate() If cert.i = 0 Debug "Failed to create object." ProcedureReturn EndIf CkCert::setCkVerboseLogging(cert, 1) ; Set the smart card PIN, which will be needed for signing. CkCert::setCkSmartCardPin(cert, "12345678") ; There are many ways to load the certificate. ; This example was created for a customer using an ePass2003 USB token. ; Assuming the USB token is the only source of a hardware-based private key.. success.i = CkCert::ckLoadFromSmartcard(cert,"") If success <> 1 Debug CkCert::ckLastErrorText(cert) CkCrypt2::ckDispose(crypt) CkCert::ckDispose(cert) ProcedureReturn EndIf ; Tell the crypt class to use this cert. success = CkCrypt2::ckSetSigningCert(crypt,cert) If success <> 1 Debug CkCrypt2::ckLastErrorText(crypt) CkCrypt2::ckDispose(crypt) CkCert::ckDispose(cert) ProcedureReturn EndIf cmsOptions.i = CkJsonObject::ckCreate() If cmsOptions.i = 0 Debug "Failed to create object." ProcedureReturn EndIf ; Setting "DigestData" causes OID 1.2.840.113549.1.7.5 (digestData) to be used. CkJsonObject::ckUpdateBool(cmsOptions,"DigestData",1) CkJsonObject::ckUpdateBool(cmsOptions,"OmitAlgorithmIdNull",1) ; Indicate that we are passing normal JSON and we want Chilkat do automatically ; do the ITIDA JSON canonicalization: CkJsonObject::ckUpdateBool(cmsOptions,"CanonicalizeITIDA",1) CkCrypt2::setCkCmsOptions(crypt, CkJsonObject::ckEmit(cmsOptions)) ; The CadesEnabled property applies to all methods that create CMS/PKCS7 signatures. ; To create a CAdES-BES signature, set this property equal to true. CkCrypt2::setCkCadesEnabled(crypt, 1) CkCrypt2::setCkHashAlgorithm(crypt, "sha256") jsonSigningAttrs.i = CkJsonObject::ckCreate() If jsonSigningAttrs.i = 0 Debug "Failed to create object." ProcedureReturn EndIf CkJsonObject::ckUpdateInt(jsonSigningAttrs,"contentType",1) CkJsonObject::ckUpdateInt(jsonSigningAttrs,"signingTime",1) CkJsonObject::ckUpdateInt(jsonSigningAttrs,"messageDigest",1) CkJsonObject::ckUpdateInt(jsonSigningAttrs,"signingCertificateV2",1) CkCrypt2::setCkSigningAttributes(crypt, CkJsonObject::ckEmit(jsonSigningAttrs)) ; By default, all the certs in the chain of authentication are included in the signature. ; If desired, we can choose to only include the signing certificate: CkCrypt2::setCkIncludeCertChain(crypt, 0) ; First, load the JSON file that is to be canonicalized and signed. ; The JSON file should look like this: ; NOTE: The JSON should not begin with "{ "documents" : [ ..." ; We want to send a single signed document like this: ; { ; "issuer":{ ; "address":{ ; "branchID":"0", ; "country":"EG", ; "regionCity":"Cairo", ; "postalCode":"", ; "buildingNumber":"0", ; "street":"123rd Street", ; "governate":"GOVERNATE" ; }, ; "type":"B", ; "id":"209999899", ; "name":"Xyz SAE" ; }, ; "receiver":{ ; "address":{ ; "country":"EG", ; "regionCity":"CAIRO", ; "postalCode":"11435", ; "buildingNumber":"0", ; "street":"Autostrad Road Abc", ; "governate":"GOVERNATE" ; }, ; "type":"B", ; "id":"999999999", ; "name":"XYZ EGYPT FOR TRADE" ; }, ; "documentType":"I", ; "documentTypeVersion":"1.0", ; "dateTimeIssued":"2020-11-15T11:04:53Z", ; "taxpayerActivityCode":"1073", ; "internalID":"ZZZZ999", ; "purchaseOrderReference":"2009199918", ; "salesOrderReference":"", ; "payment":{ ; "bankName":"", ; "bankAddress":"", ; "bankAccountNo":"", ; "bankAccountIBAN":"", ; "swiftCode":"", ; "terms":"" ; }, ; "delivery":{ ; "approach":"", ; "packaging":"", ; "dateValidity":"", ; "exportPort":"", ; "countryOfOrigin":"EG", ; "grossWeight":0, ; "netWeight":0, ; "terms":"" ; }, ; "invoiceLines":[ ; { ; "description":"CDM Widget 48GX99X12BA", ; "itemType":"GS1", ; "itemCode":"7622213335056", ; "unitType":"CS", ; "quantity":1.00, ; "unitValue":{ ; "currencySold":"EGP", ; "amountEGP":588.67, ; "amountSold":0, ; "currencyExchangeRate":0 ; }, ; "salesTotal":588.67, ; "total":603.97, ; "valueDifference":0, ; "totalTaxableFees":0, ; "netTotal":529.8, ; "itemsDiscount":0, ; "discount":{ ; "rate":10.00, ; "amount":58.87 ; }, ; "taxableItems":[ ; { ; "taxType":"T1", ; "amount":74.17, ; "subType":"No sub", ; "rate":14.00 ; } ; ], ; "internalCode":"9099994" ; } ; ], ; "totalSales":588.67, ; "totalSalesAmount":588.67, ; "totalDiscountAmount":58.87, ; "netAmount":529.80, ; "taxTotals":[ ; { ; "taxType":"T1", ; "amount":74.17 ; } ; ], ; "extraDiscountAmount":0, ; "totalItemsDiscountAmount":0, ; "totalAmount":603.97, ; } ; ; Please include this JSON file as an attachment in your support email to Chilkat. json.i = CkJsonObject::ckCreate() If json.i = 0 Debug "Failed to create object." ProcedureReturn EndIf success = CkJsonObject::ckLoadFile(json,"c:/someDir/jsonToSignAndSend.json") If success = 0 Debug "Failed to load input JSON file." CkCrypt2::ckDispose(crypt) CkCert::ckDispose(cert) CkJsonObject::ckDispose(cmsOptions) CkJsonObject::ckDispose(jsonSigningAttrs) CkJsonObject::ckDispose(json) ProcedureReturn EndIf CkJsonObject::setCkEmitCompact(json, 1) jsonToSign.s = CkJsonObject::ckEmit(json) ; Create the CAdES-BES signature. CkCrypt2::setCkEncodingMode(crypt, "base64") ; Make sure we sign the utf-8 byte representation of the JSON string CkCrypt2::setCkCharset(crypt, "utf-8") ; Turn on verbose logging. CkCrypt2::setCkVerboseLogging(crypt, 1) sigBase64.s = CkCrypt2::ckSignStringENC(crypt,jsonToSign) If CkCrypt2::ckLastMethodSuccess(crypt) = 0 Debug CkCrypt2::ckLastErrorText(crypt) CkCrypt2::ckDispose(crypt) CkCert::ckDispose(cert) CkJsonObject::ckDispose(cmsOptions) CkJsonObject::ckDispose(jsonSigningAttrs) CkJsonObject::ckDispose(json) ProcedureReturn EndIf ; The LastErrorText property still contains information when the method succeeds. ; Send the contents of this LastErrorText as an attachment in your support email to Chilkat. Debug CkCrypt2::ckLastErrorText(crypt) ; Insert the base64 signature into the JSON to be sent CkJsonObject::ckUpdateString(json,"signatures[0].signatureType","I") CkJsonObject::ckUpdateString(json,"signatures[0].value",sigBase64) ; Wrap the JSON in {"documents":[ ... ]} sbToSend.i = CkStringBuilder::ckCreate() If sbToSend.i = 0 Debug "Failed to create object." ProcedureReturn EndIf CkStringBuilder::ckAppend(sbToSend,"{" + Chr(34) + "documents" + Chr(34) + ":[") CkStringBuilder::ckAppend(sbToSend,CkJsonObject::ckEmit(json)) CkStringBuilder::ckAppend(sbToSend,"]}") ; ------------------------------------------------------------------------ ; Submit the signed JSON to Chilkat's URL for simply echoing back the contents of the HTTP POST it receives: ; ; We just want to see what actually gets sent. To do this, we can send to https://www.chilkatsoft.com/echoPostBody.asp ; which will echo in the response that data and headers it received. http.i = CkHttp::ckCreate() If http.i = 0 Debug "Failed to create object." ProcedureReturn EndIf ; Also, set the SessionLogFilename property so we can see the exact bytes of the HTTP request sent from your end. ; Please include this session log file as an attachment in your support email to Chilkat. CkHttp::setCkSessionLogFilename(http, "c:/someDir/sessionLog.txt") resp.i = CkHttp::ckPostJson2(http,"https://www.chilkatsoft.com/echoPostBody.asp","application/json; charset=utf-8",CkStringBuilder::ckGetAsString(sbToSend)) If CkHttp::ckLastMethodSuccess(http) = 0 Debug CkHttp::ckLastErrorText(http) CkCrypt2::ckDispose(crypt) CkCert::ckDispose(cert) CkJsonObject::ckDispose(cmsOptions) CkJsonObject::ckDispose(jsonSigningAttrs) CkJsonObject::ckDispose(json) CkStringBuilder::ckDispose(sbToSend) CkHttp::ckDispose(http) ProcedureReturn EndIf ; Save the exact contents of Chilkat's response to a file. ; The server at https://www.chilkatsoft.com/echoPostBody.asp is simply echoing back the headers and POST body it received. ; Please include the responseBody.txt as an attachment in your support email to Chilkat. success = CkHttpResponse::ckSaveBodyBinary(resp,"c:/someDir/responseBody.txt") Debug "Response status code: " + Str(CkHttpResponse::ckStatusCode(resp)) CkHttpResponse::ckDispose(resp) ; ------------------------------------------------- ; In summary, please include the following in your support email to Chilkat ; 1. The original JSON file before signing and before canonicalization (i.e. c:/someDir/jsonToSignAndSend.json) ; 2. The contents of the LastErrorText for the successful call to SignStringENC. ; 3. The HTTP session log file (i.e. c:/someDir/sessionLog.txt) ; 4. The responseBody.txt file. CkCrypt2::ckDispose(crypt) CkCert::ckDispose(cert) CkJsonObject::ckDispose(cmsOptions) CkJsonObject::ckDispose(jsonSigningAttrs) CkJsonObject::ckDispose(json) CkStringBuilder::ckDispose(sbToSend) CkHttp::ckDispose(http) ProcedureReturn EndProcedure |
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.