Sample code for 30+ languages & platforms
Swift

Load Particular CA Certs into a Java KeyStore

See more Java KeyStore (JKS) Examples

Opens a PEM file containing many CA root certificates, and creates a Java keystore containing a subset of the certificates.

Chilkat Swift Downloads

Swift

func chilkatTest() {
    var success: Bool = false

    // This requires the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    let jks = CkoJavaKeyStore()!

    let troots = CkoTrustedRoots()!

    // Load certificates from a file.
    success = troots.loadCaCertsPem(path: "qa_data/curl_cacert.pem")
    if success != true {
        print("\(troots.lastErrorText!)")
        return
    }

    let sbDn = CkoStringBuilder()!
    let sbAlias = CkoStringBuilder()!
    var caseSensitive: Bool = false

    var i: Int = 0
    var numCerts: Int = troots.numCerts.intValue
    var numAdded: Int = 0
    while (i < numCerts) {
        var cacert: CkoCert? = troots.getCert(index: i)
        sbDn.clear()
        sbDn.append(value: cacert!.subjectDN)
        if sbDn.contains(str: "Entrust.net", caseSensitive: caseSensitive) == true {
            print("\(cacert!.subjectDN!)")

            // The alias is an arbitrary unique string for each cert in the JKS.
            sbAlias.clear()
            sbAlias.append(value: "cacert_")
            sbAlias.appendInt(value: i + 1)
            jks.addTrustedCert(cert: cacert, alias: sbAlias.getAsString())
            numAdded = numAdded + 1
        }

        cacert = nil
        i = i + 1
    }

    // Verify the number of certs in the JKS equals the number we added.
    var numJksCerts: Int = jks.numTrustedCerts.intValue
    print("NumTrustedCerts = \(numJksCerts)")
    if numJksCerts != numAdded {
        print("Something is amiss!")
        return
    }

    // Save the JKS.
    success = jks.toFile(password: "myPassword", path: "qa_data/jks/entrust_caCerts.jks")
    if success != true {
        print("\(jks.lastErrorText!)")
        return
    }

    print("Success.")

    // The output of this program when tested was:

    // C=US, O=Entrust.net, OU=www.entrust.net/CPS incorp. by ref. (limits liab.), OU=(c) 1999 Entrust.net Limited, CN=Entrust.net Secure Server Certification Authority
    // O=Entrust.net, OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.), OU=(c) 1999 Entrust.net Limited, CN=Entrust.net Certification Authority (2048)
    // C=US, O="Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, OU="(c) 2006 Entrust, Inc.", CN=Entrust Root Certification Authority
    // NumTrustedCerts = 3
    // Success.

}