(Swift 2) SFTP Authentication using X.509 Certificates

See more SFTP Examples

Demonstrates how to authenticate with an SSH/SFTP server using an certificate's private key.

Note: See X.509v3 Certificates for SSH Authentication for more information.

Chilkat Downloads for the Swift Programming Language MAC OS X (Cocoa) Objective-C/Swift Libs iOS Objective-C/Swift Libs

func chilkatTest() {
    // This example assumes the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    let sftp = CkoSFtp()

    var hostname: String? = "sftp.example.com"
    var port: Int = 22
    var success: Bool = sftp.Connect(hostname, port: port)
    if success != true {
        print("\(sftp.LastErrorText)")
        return
    }

    // Load the cert + private key from a .pfx.
    // Note: Chilkat provides methods for loading certs and private keys from many sources, including smart cards and USB tokens (HSM's)
    let cert = CkoCert()
    success = cert.LoadPfxFile("qa_data/pfx/example.pfx", password: "pfx_password")
    if success != true {
        print("\(cert.LastErrorText)")
        return
    }

    // Get the cert's private key (as PEM) to be used for SSH authentication.
    // (The public key is installed on the server.)
    var privKeyPem: String? = cert.GetPrivateKeyPem()
    if cert.LastMethodSuccess == false {
        print("\(cert.LastErrorText)")
        return
    }

    let key = CkoSshKey()

    // Load a private key from a PEM string:
    success = key.FromOpenSshPrivateKey(privKeyPem)
    if success != true {
        print("\(key.LastErrorText)")
        return
    }

    // Authenticate with the SSH server.
    success = sftp.AuthenticatePk("myLogin", privateKey: key)
    if success != true {
        print("\(sftp.LastErrorText)")
        return
    }

    print("Public-Key Authentication Successful!")

}