Sample code for 30+ languages & platforms
SQL Server

PKCS7 Encrypt using Multiple Certificates

See more MIME Examples

Encrypts MIME using multiple digital certificates. Calls AddEncryptCert once per certificate, followed by a call to EncryptN. The MIME may be decrypted by any owner of one of the certificates + its associated private key.

Chilkat SQL Server Downloads

SQL Server
-- Important: See this note about string length limitations for strings returned by sp_OAMethod calls.
--
CREATE PROCEDURE ChilkatSample
AS
BEGIN
    DECLARE @hr int
    -- Important: Do not use nvarchar(max).  See the warning about using nvarchar(max).
    DECLARE @sTmp0 nvarchar(4000)
    DECLARE @success int
    SELECT @success = 0

    -- This example requires the Chilkat API to have been previously unlocked.
    -- See Global Unlock Sample for sample code.

    DECLARE @mime int
    EXEC @hr = sp_OACreate 'Chilkat.Mime', @mime OUT
    IF @hr <> 0
    BEGIN
        PRINT 'Failed to create ActiveX component'
        RETURN
    END

    -- Build a simple MIME message to be encrypted:
    EXEC sp_OAMethod @mime, 'AddHeaderField', @success OUT, 'Content-Type', 'text/plain'
    EXEC sp_OAMethod @mime, 'AddHeaderField', @success OUT, 'abc', '123'
    EXEC sp_OAMethod @mime, 'SetBody', NULL, 'This is a test'

    -- A digital certificate is required to create PKCS7 encrypted MIME.
    -- It can come from a variety of sources: .cer file, .pfx file, PEM files,
    -- an in-memory representation, or directly from a Windows
    -- registry-based certificate store.

    -- Load one cert from a .cer file:
    DECLARE @cert1 int
    EXEC @hr = sp_OACreate 'Chilkat.Cert', @cert1 OUT

    EXEC sp_OAMethod @cert1, 'LoadFromFile', @success OUT, 'myCert.cer'
    IF @success = 0
      BEGIN
        EXEC sp_OAGetProperty @cert1, 'LastErrorText', @sTmp0 OUT
        PRINT @sTmp0
        EXEC @hr = sp_OADestroy @mime
        EXEC @hr = sp_OADestroy @cert1
        RETURN
      END

    -- Load another cert ...
    DECLARE @cert2 int
    EXEC @hr = sp_OACreate 'Chilkat.Cert', @cert2 OUT

    EXEC sp_OAMethod @cert2, 'LoadFromFile', @success OUT, 'anotherCert.cer'
    IF @success = 0
      BEGIN
        EXEC sp_OAGetProperty @cert2, 'LastErrorText', @sTmp0 OUT
        PRINT @sTmp0
        EXEC @hr = sp_OADestroy @mime
        EXEC @hr = sp_OADestroy @cert1
        EXEC @hr = sp_OADestroy @cert2
        RETURN
      END

    -- Tell the MIME object to use these certs for encrypting:
    -- (AddEncryptCert shouldn't fail if we already know it contains
    -- a valid certificate..)
    EXEC sp_OAMethod @mime, 'AddEncryptCert', @success OUT, @cert1
    EXEC sp_OAMethod @mime, 'AddEncryptCert', @success OUT, @cert2

    -- Encrypt the MIME:
    EXEC sp_OAMethod @mime, 'EncryptN', @success OUT
    IF @success = 0
      BEGIN
        EXEC sp_OAGetProperty @mime, 'LastErrorText', @sTmp0 OUT
        PRINT @sTmp0
        EXEC @hr = sp_OADestroy @mime
        EXEC @hr = sp_OADestroy @cert1
        EXEC @hr = sp_OADestroy @cert2
        RETURN
      END

    -- Display the MIME:
    EXEC sp_OAMethod @mime, 'GetMime', @sTmp0 OUT
    PRINT @sTmp0

    -- The resulting S/MIME looks something like this:

    -- abc: 123
    -- Content-Disposition: attachment; filename="smime.p7m"
    -- Content-Transfer-Encoding: base64
    -- Content-Type: application/x-pkcs7-mime;
    --  name="smime.p7m"
    -- 
    -- MIID4QYJKoZIhvcNAQcDoIID0jCCA84CAQAxggNlMIIBgQIBADBpMFUxCzAJBgNVBAYTAlpBMSUw
    -- IwYDVQQKExxUaGF3dGUgQ29uc3VsdGluZyAoUHR5KSBMdGQuMR8wHQYDVQQDExZUaGF3dGUgQ29k
    -- ZSBTaWduaW5nIENBAhB4ouTcAmLszrGi170k1deSMA0GCSqGSIb3DQEBAQUABIIBAKnOPgmISrNH
    -- Hd+zESvH5dl5TvBLCxLuIuH6cuZdowHzCqAUzaYFdn1rp88Vvu2x3s6WOvzje/+dE1x0YjEpeqxd
    -- ufehlb6Jl9ucxSMWARWMxWGxu0eZGJVt+SBBrVddqdtrIU9lVt5rBxkU67P8PxgbwdNCX3qJENRO
    -- P/rvp5ngoCkpIxeGqSkPvWv+CA3IXS8FPs8Sl4HNPiAj3e9RBm2MxI1u4cn1HvgGg8yHgHLMG5JF
    -- LzGsmotSQaqEwq2JtOlkjfOwEI+ZhbWQupj6gen2aGc5sW3J26H1usxtV2TQ7WRRxqnZGmlh20dW
    -- 4lo3kITYI+iapGlJXmrlDYh2CjkwggHcAgEAMIHDMIGuMQswCQYDVQQGEwJVUzELMAkGA1UECBMC
    -- VVQxFzAVBgNVBAcTDlNhbHQgTGFrZSBDaXR5MR4wHAYDVQQKExVUaGUgVVNFUlRSVVNUIE5ldHdv
    -- cmsxITAfBgNVBAsTGGh0dHA6Ly93d3cudXNlcnRydXN0LmNvbTE2MDQGA1UEAxMtVVROLVVTRVJG
    -- aXJzdC1DbGllbnQgQXV0aGVudGljYXRpb24gYW5kIEVtYWlsAhAj50QEWUPwA+jXOiL8sMwXMA0G
    -- CSqGSIb3DQEBAQUABIIBAFQ1cydWC4M9tdgAlCN03kP8eyuXajwT+5ByhOcJhjuCABg7U8w4Rx28
    -- braGqV+TCBxjyMsqD0KcW49VT6ZHMpQ1yN8R72qDsidmfm9w3u0jVgsaaBkTJXMy4COY/3cZWmYG
    -- dL3Qty8uFeQYddytt6UPJpGJZYsrdFG2doe6qHiRtAxxPrd0GmQRcGvxyDdsojkoBlTMbfwaXOI3
    -- xepR/oh60x/3npUCsl2VpNPfo6oZoej6YZGEuz2MvuWvXVhvuqoTqXGwGDgYMxwTbPwklqZiJtsK
    -- r5Ep3NlWAQX8MGWL0H+NC22cqJuqUCL05yqyAv+JMCpZGAwOVb/wiVNjpAIwYAYJKoZIhvcNAQcB
    -- MBkGCCqGSIb3DQMCMA0CAToECA5NAJY12cU+gDgZFUc+nsQUUbiR1GH8iBVLI+XWlja9TXEe1Hzt
    -- NlsOylRVBDzjNxUtX/zC0YR7bs+2Cf4JbyuMOA==

    EXEC @hr = sp_OADestroy @mime
    EXEC @hr = sp_OADestroy @cert1
    EXEC @hr = sp_OADestroy @cert2


END
GO