Sample code for 30+ languages & platforms
PureBasic

SSL Server Example

See more Socket/SSL/TLS Examples

Demonstrates how to create an SSL socket for accepting connections. This example is *very* simple in that it will create an SSL socket for accepting a single connection. It will read a message from the client, send a reply, and exit.

Chilkat PureBasic Downloads

PureBasic
IncludeFile "CkCertStore.pb"
IncludeFile "CkCert.pb"
IncludeFile "CkSocket.pb"
IncludeFile "CkJsonObject.pb"

Procedure ChilkatExample()

    success.i = 0

    ; This example requires the Chilkat API to have been previously unlocked.
    ; See Global Unlock Sample for sample code.

    listenSslSocket.i = CkSocket::ckCreate()
    If listenSslSocket.i = 0
        Debug "Failed to create object."
        ProcedureReturn
    EndIf

    ; An SSL server needs a digital certificate.  This example loads it from a PFX file.

    ; Create an instance of a certificate store object, load a PFX file,
    ; locate the certificate we need, and use it.
    ; (a PFX file may contain more than one certificate.)
    certStore.i = CkCertStore::ckCreate()
    If certStore.i = 0
        Debug "Failed to create object."
        ProcedureReturn
    EndIf

    ; The 1st argument is the filename, the 2nd arg is the 
    ; PFX file's password:
    success = CkCertStore::ckLoadPfxFile(certStore,"chilkat.pfx","test")
    If success = 0
        Debug CkCertStore::ckLastErrorText(certStore)
        CkSocket::ckDispose(listenSslSocket)
        CkCertStore::ckDispose(certStore)
        ProcedureReturn
    EndIf

    ; Find the certificate to be used for SSL:
    jsonCN.i = CkJsonObject::ckCreate()
    If jsonCN.i = 0
        Debug "Failed to create object."
        ProcedureReturn
    EndIf

    CkJsonObject::ckUpdateString(jsonCN,"CN","example.com")

    cert.i = CkCert::ckCreate()
    If cert.i = 0
        Debug "Failed to create object."
        ProcedureReturn
    EndIf

    success = CkCertStore::ckFindCert(certStore,jsonCN,cert)
    If success = 0
        Debug CkCertStore::ckLastErrorText(certStore)
        CkSocket::ckDispose(listenSslSocket)
        CkCertStore::ckDispose(certStore)
        CkJsonObject::ckDispose(jsonCN)
        CkCert::ckDispose(cert)
        ProcedureReturn
    EndIf

    ; Use the certificate:
    success = CkSocket::ckInitSslServer(listenSslSocket,cert)
    If success = 0
        Debug CkSocket::ckLastErrorText(listenSslSocket)
        CkSocket::ckDispose(listenSslSocket)
        CkCertStore::ckDispose(certStore)
        CkJsonObject::ckDispose(jsonCN)
        CkCert::ckDispose(cert)
        ProcedureReturn
    EndIf

    ; Bind and listen on a port:
    myPort.i = 8123
    ; Allow for a max of 5 queued connect requests.
    backLog.i = 5
    success = CkSocket::ckBindAndListen(listenSslSocket,myPort,backLog)
    If success = 0
        Debug CkSocket::ckLastErrorText(listenSslSocket)
        CkSocket::ckDispose(listenSslSocket)
        CkCertStore::ckDispose(certStore)
        CkJsonObject::ckDispose(jsonCN)
        CkCert::ckDispose(cert)
        ProcedureReturn
    EndIf

    ; If accepting an SSL/TLS connection, the SSL handshake is part of the connection
    ; establishment process. This involves a few back-and-forth messages between the 
    ; client and server to establish algorithms and a shared key to create the secure 
    ; channel. The sending and receiving of these messages are governed by the 
    ; MaxReadIdleMs and MaxSendIdleMs properties. If these properties are set to 0 
    ; (and this is the default unless changed by your application), then the 
    ; AcceptNext can hang indefinitely during the SSL handshake process. 
    ; Make sure these properties are set to appropriate values before calling AcceptNext.

    ; Set a 10 second max for waiting to read/write.  This is for the SSL/TLS handshake establishment.
    CkSocket::setCkMaxReadIdleMs(listenSslSocket, 10000)
    CkSocket::setCkMaxSendIdleMs(listenSslSocket, 10000)

    ; Accept a single client connection and establish the secure SSL/TLS channel:
    maxWaitMillisec.i = 20000
    clientSock.i = CkSocket::ckCreate()
    If clientSock.i = 0
        Debug "Failed to create object."
        ProcedureReturn
    EndIf

    success = CkSocket::ckAcceptNext(listenSslSocket,maxWaitMillisec,clientSock)
    If success = 0
        Debug CkSocket::ckLastErrorText(listenSslSocket)
        CkSocket::ckDispose(listenSslSocket)
        CkCertStore::ckDispose(certStore)
        CkJsonObject::ckDispose(jsonCN)
        CkCert::ckDispose(cert)
        CkSocket::ckDispose(clientSock)
        ProcedureReturn
    EndIf

    ; The client (in this example) is going to send a "Hello Server! -EOM-" 
    ; message.  Read it:
    receivedMsg.s = CkSocket::ckReceiveUntilMatch(clientSock,"-EOM-")
    If CkSocket::ckLastMethodSuccess(clientSock) = 0
        Debug CkSocket::ckLastErrorText(clientSock)
        CkSocket::ckDispose(listenSslSocket)
        CkCertStore::ckDispose(certStore)
        CkJsonObject::ckDispose(jsonCN)
        CkCert::ckDispose(cert)
        CkSocket::ckDispose(clientSock)
        ProcedureReturn
    EndIf

    Debug receivedMsg

    ; Send a "Hello Client! -EOM-" message:
    success = CkSocket::ckSendString(clientSock,"Hello Client! -EOM-")
    If success = 0
        Debug CkSocket::ckLastErrorText(clientSock)
        CkSocket::ckDispose(listenSslSocket)
        CkCertStore::ckDispose(certStore)
        CkJsonObject::ckDispose(jsonCN)
        CkCert::ckDispose(cert)
        CkSocket::ckDispose(clientSock)
        ProcedureReturn
    EndIf

    ; Close the connection with the client
    ; Wait a max of 20 seconds (20000 millsec)
    success = CkSocket::ckClose(clientSock,20000)


    CkSocket::ckDispose(listenSslSocket)
    CkCertStore::ckDispose(certStore)
    CkJsonObject::ckDispose(jsonCN)
    CkCert::ckDispose(cert)
    CkSocket::ckDispose(clientSock)


    ProcedureReturn
EndProcedure