Swift
Swift
Load Java KeyStore and Access Contents
See more Java KeyStore (JKS) Examples
Loads a Java keystore file and iterates over the contents. A Java keystore (.jks) file can contain one or more trusted root certificate entries and/or one or more private key entries. Each private key entry includes an associated certificate chain.Chilkat Swift Downloads
func chilkatTest() {
var success: Bool = false
// This requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
let jks = CkoJavaKeyStore()!
// Load the Java keystore from a file. The JKS file password is used
// to verify the keyed digest that is found at the very end of the keystore.
// It verifies there has been no tampering with the file.
success = jks.loadFile(password: "jksFilePassword", path: "/someDir/keyStore.jks")
if success == false {
print("\(jks.lastErrorText!)")
return
}
// Find out how many of each type of entry:
var numTrustedCerts: Int = jks.numTrustedCerts.intValue
var numPrivateKeys: Int = jks.numPrivateKeys.intValue
let cert = CkoCert()!
var alias: String?
// For each trusted certificate, access it by getting
// it as a cert object. Also get the alias associated with the certificate.
print("Trusted Certs:")
var i: Int = 0
while i < numTrustedCerts {
success = jks.trustedCert(at: i, cert: cert)
print("\(jks.getTrustedCertAlias(index: i)!): \(cert.subjectDN!)")
i = i + 1
}
let privKey = CkoPrivateKey()!
let certChain = CkoCertChain()!
// For each private key entry, get the private key and
// the associated certificate chain.
// Each private key is password protected. Usually it is the same
// password as used for the keyed digest of the entire JKS.
// However, this does not have to be. The password is passed
// here to handle the possibility of each private key requiring
// a different password.
print("Private Keys:")
i = 0
while i < numPrivateKeys {
jks.privateKey(at: "jksFilePassword", index: i, privKey: privKey)
print("\(jks.getPrivateKeyAlias(index: i)!)")
jks.certChain(at: i, certChain: certChain)
// The 1st certificate in the chain is the one associated with the private key.
certChain.cert(at: 0, cert: cert)
print("\(cert.subjectDN!)")
i = i + 1
}
}