|
Chilkat • HOME • Android™ • AutoIt • C • C# • C++ • Chilkat2-Python • CkPython • Classic ASP • DataFlex • Delphi DLL • Go • Java • Node.js • Objective-C • PHP Extension • Perl • PowerBuilder • PowerShell • PureBasic • Ruby • SQL Server • Swift • Tcl • Unicode C • Unicode C++ • VB.NET • VBScript • Visual Basic 6.0 • Visual FoxPro • Xojo Plugin
(Tcl) Sign JSON to Create CAdES P7S BytesDemonstrates how to sign JSON using a certificate + private key from a .p12/.pfx to create a CAdES P7S byte array.
load ./chilkat.dll # This example assumes the Chilkat API to have been previously unlocked. # See Global Unlock Sample for sample code. set crypt [new_CkCrypt2] set cert [new_CkCert] set success [CkCert_LoadPfxFile $cert "qa_data/pfx/cert_test123.pfx" "test123"] if {$success != 1} then { puts [CkCert_lastErrorText $cert] delete_CkCrypt2 $crypt delete_CkCert $cert exit } # Tell the crypt component to use this cert. set success [CkCrypt2_SetSigningCert $crypt $cert] if {$success != 1} then { puts [CkCrypt2_lastErrorText $crypt] delete_CkCrypt2 $crypt delete_CkCert $cert exit } # The CadesEnabled property applies to all methods that create PKCS7 signatures. # To create a CAdES-BES signature, set this property equal to true. CkCrypt2_put_CadesEnabled $crypt 1 CkCrypt2_put_HashAlgorithm $crypt "sha256" set jsonSigningAttrs [new_CkJsonObject] CkJsonObject_UpdateInt $jsonSigningAttrs "contentType" 1 CkJsonObject_UpdateInt $jsonSigningAttrs "signingTime" 1 CkJsonObject_UpdateInt $jsonSigningAttrs "messageDigest" 1 CkJsonObject_UpdateInt $jsonSigningAttrs "signingCertificateV2" 1 CkCrypt2_put_SigningAttributes $crypt [CkJsonObject_emit $jsonSigningAttrs] # By default, all the certs in the chain of authentication are included in the signature. # If desired, we can choose to only include the signing certificate: CkCrypt2_put_IncludeCertChain $crypt 0 # Create the CAdES-BES attached signature, which contains the original data. CkCrypt2_put_Charset $crypt "utf-8" set cadesP7s [new_CkByteData] set success [CkCrypt2_OpaqueSignString $crypt "{ \"abc\": 123}" $cadesP7s] if {[CkCrypt2_get_LastMethodSuccess $crypt] == 0} then { puts [CkCrypt2_lastErrorText $crypt] delete_CkCrypt2 $crypt delete_CkCert $cert delete_CkJsonObject $jsonSigningAttrs delete_CkByteData $cadesP7s exit } # Verify the signature and extract the original JSON: set originalJson [CkCrypt2_opaqueVerifyString $crypt $cadesP7s] if {[CkCrypt2_get_LastMethodSuccess $crypt] == 0} then { puts [CkCrypt2_lastErrorText $crypt] delete_CkCrypt2 $crypt delete_CkCert $cert delete_CkJsonObject $jsonSigningAttrs delete_CkByteData $cadesP7s exit } puts "Original JSON: $originalJson" puts "Success!" delete_CkCrypt2 $crypt delete_CkCert $cert delete_CkJsonObject $jsonSigningAttrs delete_CkByteData $cadesP7s |
||||
© 2000-2025 Chilkat Software, Inc. All Rights Reserved.