Sample code for 30+ languages & platforms
Unicode C

Using WS_FTP Self-signed Certificate file (.crt) and Private Key File. (.key)

See more FTP Examples

Demonstrates how to use a self-signed certificate created by WS_FTP with Chilkat FTP2.

Note: It is usually not necessary for the FTP client to use a client-side certificate. Most FTP servers using SSL and TLS connections (explicit or implicit) do not require client-side certs. In addition, some high-security FTP servers require "real" certificates -- meaning certificates issued by a real certificate authority with a chain of authentication that leads to a trusted root certificate. The certificates created by WS_FTP are self-signed and untrusted.

Chilkat Unicode C Downloads

Unicode C
#include <C_CkFtp2W.h>
#include <C_CkCertStoreW.h>
#include <C_CkJsonObjectW.h>
#include <C_CkCertW.h>

void ChilkatSample(void)
    {
    BOOL success;
    HCkFtp2W ftp;
    HCkCertStoreW certStore;
    HCkJsonObjectW jsonCN;
    HCkCertW cert;

    success = FALSE;

    // This example requires the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    // Important:  Before running this program, convert your
    // .crt and .key files to a .p12 using OpenSSL:
    // The command is this:
    // openssl pkcs12 -export -in test.crt -inkey test.key -out test.p12
    // 

    ftp = CkFtp2W_Create();

    CkFtp2W_putHostname(ftp,L"ftp.example.com");
    CkFtp2W_putPort(ftp,21);
    CkFtp2W_putUsername(ftp,L"testLogin");
    CkFtp2W_putPassword(ftp,L"testPassword");

    // This example will use explict TLS/SSL.
    // Establish an explicit secure channel after connection
    // on the standard FTP port 21.
    CkFtp2W_putAuthTls(ftp,TRUE);

    // The Ssl property is for establishing an implicit SSL connection
    // on port 990.  Because this example uses explicit SSL, it 
    // should remain FALSE.
    CkFtp2W_putSsl(ftp,FALSE);

    // Create an instance of a certificate store object, load a .p12 file,
    // locate the certificate we need, and use it for signing.
    // (a P12/PFX file may contain more than one certificate.)
    certStore = CkCertStoreW_Create();
    // The 1st argument is the filename, the 2nd arg is the 
    // .p12 file's password.  (OpenSSL will prompty you to set a password
    // when converting the .crt and .key into a .p12).
    success = CkCertStoreW_LoadPfxFile(certStore,L"test.p12",L"secret");
    if (success != TRUE) {
        wprintf(L"%s\n",CkCertStoreW_lastErrorText(certStore));
        CkFtp2W_Dispose(ftp);
        CkCertStoreW_Dispose(certStore);
        return;
    }

    jsonCN = CkJsonObjectW_Create();
    CkJsonObjectW_UpdateString(jsonCN,L"CN",L"cert common name");

    cert = CkCertW_Create();
    success = CkCertStoreW_FindCert(certStore,jsonCN,cert);
    if (success == FALSE) {
        wprintf(L"%s\n",CkCertStoreW_lastErrorText(certStore));
        CkFtp2W_Dispose(ftp);
        CkCertStoreW_Dispose(certStore);
        CkJsonObjectW_Dispose(jsonCN);
        CkCertW_Dispose(cert);
        return;
    }

    success = CkFtp2W_SetSslClientCert(ftp,cert);

    // Connect and login to the FTP server.
    success = CkFtp2W_Connect(ftp);
    if (success != TRUE) {
        wprintf(L"%s\n",CkFtp2W_lastErrorText(ftp));
        CkFtp2W_Dispose(ftp);
        CkCertStoreW_Dispose(certStore);
        CkJsonObjectW_Dispose(jsonCN);
        CkCertW_Dispose(cert);
        return;
    }
    else {
        // LastErrorText contains information even when
        // successful. This allows you to visually verify
        // that the secure connection actually occurred.
        wprintf(L"%s\n",CkFtp2W_lastErrorText(ftp));
    }

    wprintf(L"Secure FTP Channel Established!\n");
    wprintf(L"%s\n",CkFtp2W_lastErrorText(ftp));

    // Do whatever you're doing to do ...
    // upload files, download files, etc...

    // ...
    // ...

    success = CkFtp2W_Disconnect(ftp);


    CkFtp2W_Dispose(ftp);
    CkCertStoreW_Dispose(certStore);
    CkJsonObjectW_Dispose(jsonCN);
    CkCertW_Dispose(cert);

    }