Chilkat Examples

ChilkatHOMEAndroid™Classic ASPCC++C#Mono C#.NET Core C#C# UWP/WinRTDataFlexDelphi ActiveXDelphi DLLVisual FoxProJavaLianjaMFCObjective-CPerlPHP ActiveXPHP ExtensionPowerBuilderPowerShellPureBasicCkPythonChilkat2-PythonRubySQL ServerSwift 2Swift 3/4TclUnicode CUnicode C++Visual Basic 6.0VB.NETVB.NET UWP/WinRTVBScriptXojo PluginNode.jsExcelGo

SQL Server Examples

Web API Categories

ASN.1
Amazon Glacier
Amazon S3
Amazon S3 (new)
Amazon SES
Amazon SNS
Amazon SQS
Async
Azure Cloud Storage
Azure Service Bus
Base64
Bounced Email
Box
CSR
CSV
Certificates
Compression
DKIM / DomainKey
DSA
Diffie-Hellman
Digital Signatures
Dropbox
Dynamics CRM
ECC
Email Object
Encryption
FTP
FileAccess
Firebase
GMail REST API
Geolocation
Google APIs
Google Calendar
Google Cloud Storage
Google Drive
Google Photos
Google Sheets
Google Tasks
Gzip
HTML-to-XML/Text

HTTP
HTTP Misc
IMAP
JSON
JSON Web Encryption (JWE)
JSON Web Signatures (JWS)
JSON Web Token (JWT)
Java KeyStore (JKS)
MHT / HTML Email
MIME
Microsoft Graph
NTLM
OAuth1
OAuth2
OneDrive
OpenSSL
Outlook
PEM
PFX/P12
POP3
PRNG
REST
REST Misc
RSA Encryption
SCP
SFTP
SMTP
SSH
SSH Key
SSH Tunnel
SharePoint
Socket/SSL/TLS
Spider
Stream
Tar Archive
Upload
WebSocket
XAdES
XML
XML Digital Signatures
XMP
Zip
curl

 

 

 

(SQL Server) Verify Opaque Signature and Retrieve Signing Certificates

Demonstrates how to verify a PCKS7 opaque digital signature (signed data), extract the original file/data, and then extract the certificate(s) that were used to sign.

Chilkat ActiveX Downloads

ActiveX for 32-bit and 64-bit Windows

CREATE PROCEDURE ChilkatSample
AS
BEGIN
    DECLARE @hr int
    DECLARE @sTmp0 nvarchar(4000)
    --  This example requires the Chilkat Crypt API to have been previously unlocked.
    --  See Unlock Chilkat Crypt for sample code.

    DECLARE @crypt int
    EXEC @hr = sp_OACreate 'Chilkat_9_5_0.Crypt2', @crypt OUT
    IF @hr <> 0
    BEGIN
        PRINT 'Failed to create ActiveX component'
        RETURN
    END

    --  Verify a PKCS7 signed-data (opaque signature) file and extract the original content to a file.
    DECLARE @success int
    EXEC sp_OAMethod @crypt, 'VerifyP7M', @success OUT, 'qa_data/p7m/opaqueSig.p7', 'qa_output/originalData.dat'
    IF @success <> 1
      BEGIN
        EXEC sp_OAGetProperty @crypt, 'LastErrorText', @sTmp0 OUT
        PRINT @sTmp0
        EXEC @hr = sp_OADestroy @crypt
        RETURN
      END

    --  Alternatively, we can do it in memory...
    DECLARE @binData int
    EXEC @hr = sp_OACreate 'Chilkat_9_5_0.BinData', @binData OUT

    EXEC sp_OAMethod @binData, 'LoadFile', @success OUT, 'qa_data/p7m/opaqueSig.p7'
    --  Your app should check for success, but we'll skip the check for brevity..

    --  If verified, the signature is unwrapped and binData is replaced with the original data that was signed.
    EXEC sp_OAMethod @crypt, 'OpaqueVerifyBd', @success OUT, @binData
    IF @success <> 1
      BEGIN
        EXEC sp_OAGetProperty @crypt, 'LastErrorText', @sTmp0 OUT
        PRINT @sTmp0
        EXEC @hr = sp_OADestroy @crypt
        EXEC @hr = sp_OADestroy @binData
        RETURN
      END

    --  For our testing, we signed some text, so we can get it from the binData..

    PRINT 'Original Data:'
    EXEC sp_OAMethod @binData, 'GetString', @sTmp0 OUT, 'utf-8'
    PRINT @sTmp0

    --  After any method call that verifies a signature, the crypt object will contain the certificate(s)
    --  that were used for signing (assuming the X.509 certs were available in the signature, which is typically the case).

    --  Get the number of signing certificates, and get each..
    DECLARE @numCerts int
    EXEC sp_OAGetProperty @crypt, 'NumSignerCerts', @numCerts OUT
    DECLARE @i int
    SELECT @i = 0
    WHILE @i < @numCerts
      BEGIN
        DECLARE @cert int
        EXEC sp_OAMethod @crypt, 'GetSignerCert', @cert OUT, @i
        EXEC sp_OAGetProperty @cert, 'SubjectDN', @sTmp0 OUT
        PRINT @sTmp0
        EXEC @hr = sp_OADestroy @cert

        SELECT @i = @i + 1
      END

    --  We could also get the complete certificate chain of each signer cert,
    --  assuming the certs in the chain of authentication to the trusted root
    --  are available on the system, or provided to Chilkat by some other means
    --  (such as via the XmlCertVault class, the TrustedRoots class, etc.)
    SELECT @i = 0
    WHILE @i < @numCerts
      BEGIN
        DECLARE @certChain int
        EXEC sp_OAMethod @crypt, 'GetSignerCertChain', @certChain OUT, @i
        --  You can examine the various properties and methods for certChain in the online
        --  reference documentation...
        EXEC @hr = sp_OADestroy @certChain

        SELECT @i = @i + 1
      END

    EXEC @hr = sp_OADestroy @crypt
    EXEC @hr = sp_OADestroy @binData


END
GO

 

© 2000-2019 Chilkat Software, Inc. All Rights Reserved.