(Swift) Sign Manifest File to Generate a Passbook .pkpass in Memory

Demonstrates how to create a Passbook .pkpass archive by creating a signature of a manifest file and then zipping to a .pkpass archive in memory

Chilkat Downloads for the Swift Programming Language MAC OS X (Cocoa) Objective-C/Swift Libs iOS Objective-C/Swift Libs

func chilkatTest() {
    // This requires the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    // ---------------------------------------------------------------------------------------------
    // This example is the same as Sign Manifest File to Generate a Passbook .pkpass file
    // except everything happens in memory (no input files, no output files)
    // ---------------------------------------------------------------------------------------------

    // First create the manifest.json
    var success: Bool
    let manifest = CkoJsonObject()!
    let crypt = CkoCrypt2()!

    let zip = CkoZip()!
    zip.newZip("notUsedAndNeverCreated.zip")

    crypt.hashAlgorithm = "sha1"
    // Return hashes as lowercase hex.
    crypt.encodingMode = "hexlower"

    var digestStr: String?

    let pngData = CkoBinData()!
    // Assume we load the pngData with bytes for "icon.png" from somewhere, such as a byte array in memory.
    var entry: CkoZipEntry? = zip.appendBd("icon.png", byteData: pngData)
    entry = nil
    digestStr = crypt.hashBdENC(pngData)
    manifest.update("\"icon.png\"", value: digestStr)

    pngData.clear()
    // Assume we load the pngData with bytes for "icon@2x.png" from somewhere...
    entry = zip.appendBd("icon@2x.png", byteData: pngData)
    entry = nil
    digestStr = crypt.hashBdENC(pngData)
    manifest.update("\"icon@2x.png\"", value: digestStr)

    pngData.clear()
    // Assume we load the pngData with bytes for "logo.png" from somewhere...
    entry = zip.appendBd("logo.png", byteData: pngData)
    entry = nil
    digestStr = crypt.hashBdENC(pngData)
    manifest.update("\"logo.png\"", value: digestStr)

    pngData.clear()
    // Assume we load the pngData with bytes for "logo@2x.png" from somewhere...
    entry = zip.appendBd("logo@2x.png", byteData: pngData)
    entry = nil
    digestStr = crypt.hashBdENC(pngData)
    manifest.update("\"logo@2x.png\"", value: digestStr)

    var passJson: String? = "{ .... }"    //  Contains the contents of pass.json
    entry = zip.append("pass.json", str: passJson)
    entry = nil
    digestStr = crypt.hashStringENC(passJson)
    manifest.update("\"pass.json\"", value: digestStr)

    entry = zip.append("manifest.json", str: manifest.emit())
    entry = nil

    // Make sure we have the Apple WWDR intermediate certificate available for 
    // the cert chain in the signature.
    let certVault = CkoXmlCertVault()!
    let appleWwdrCert = CkoCert()!
    success = appleWwdrCert.load(byCommonName: "Apple Worldwide Developer Relations Certification Authority")
    if success != true {
        print("The Apple WWDR intermediate certificate is not installed.")
        print("It is available at https://developer.apple.com/certificationauthority/AppleWWDRCA.cer")
        print("You may alternatively load the .cer like this...")
        success = appleWwdrCert.load(fromFile: "qa_data/certs/AppleWWDRCA.cer")
        if success != true {
            print("\(appleWwdrCert.lastErrorText!)")
            return
        }

    }

    certVault.add(appleWwdrCert)
    crypt.use(certVault)

    // Use a digital certificate and private key from a PFX
    let bdPfx = CkoBinData()!
    // Assume we loaded a PFX into bdPfx....
    var pfxPassword: String? = "test123"

    let cert = CkoCert()!
    success = cert.loadPfxBd(bdPfx, password: pfxPassword)
    if success != true {
        print("\(cert.lastErrorText!)")
        return
    }

    // Provide the signing cert (with associated private key).
    success = crypt.setSigning(cert)
    if success != true {
        print("\(crypt.lastErrorText!)")
        return
    }

    // Specify the signed attributes to be included.
    // (These attributes appear to not be necessary, but we're including
    // them just in case they become necessary in the future.)
    let jsonSignedAttrs = CkoJsonObject()!
    jsonSignedAttrs.updateInt("contentType", value: 1)
    jsonSignedAttrs.updateInt("signingTime", value: 1)
    crypt.signingAttributes = jsonSignedAttrs.emit()

    // Sign the manifest JSON to produce a signature
    crypt.encodingMode = "base64"
    var sig: String? = crypt.signStringENC(manifest.emit())
    let bdSig = CkoBinData()!
    bdSig.appendEncoded(sig, encoding: "base64")
    entry = zip.appendBd("signature", byteData: bdSig)
    entry = nil

    // ---------------------------------------------------------------------------------------------
    // Note: Chilkat also has the capability to do everything in-memory (no files would be involved).  
    // If this is of interest, please send email to support@chilkatsoft.com
    // ---------------------------------------------------------------------------------------------

    // Create the .pkipass archive (which is a .zip archive containing the required files).
    // the .zip is written to bdZip
    let bdZip = CkoBinData()!
    success = zip.writeBd(bdZip)
    if success != true {
        print("\(zip.lastErrorText!)")
        return
    }

    print("Success.")

}