Unicode C
Unicode C
SFTP Authentication using X.509 Certificates
See more SFTP Examples
Demonstrates how to authenticate with an SSH/SFTP server using an certificate's private key.Note: See X.509v3 Certificates for SSH Authentication for more information.
Chilkat Unicode C Downloads
#include <C_CkSFtpW.h>
#include <C_CkCertW.h>
#include <C_CkSshKeyW.h>
void ChilkatSample(void)
{
BOOL success;
HCkSFtpW sftp;
const wchar_t *hostname;
int port;
HCkCertW cert;
const wchar_t *privKeyPem;
HCkSshKeyW key;
success = FALSE;
// This example assumes the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
sftp = CkSFtpW_Create();
hostname = L"sftp.example.com";
port = 22;
success = CkSFtpW_Connect(sftp,hostname,port);
if (success != TRUE) {
wprintf(L"%s\n",CkSFtpW_lastErrorText(sftp));
CkSFtpW_Dispose(sftp);
return;
}
// Load the cert + private key from a .pfx.
// Note: Chilkat provides methods for loading certs and private keys from many sources, including smart cards and USB tokens (HSM's)
cert = CkCertW_Create();
success = CkCertW_LoadPfxFile(cert,L"qa_data/pfx/example.pfx",L"pfx_password");
if (success != TRUE) {
wprintf(L"%s\n",CkCertW_lastErrorText(cert));
CkSFtpW_Dispose(sftp);
CkCertW_Dispose(cert);
return;
}
// Get the cert's private key (as PEM) to be used for SSH authentication.
// (The public key is installed on the server.)
privKeyPem = CkCertW_getPrivateKeyPem(cert);
if (CkCertW_getLastMethodSuccess(cert) == FALSE) {
wprintf(L"%s\n",CkCertW_lastErrorText(cert));
CkSFtpW_Dispose(sftp);
CkCertW_Dispose(cert);
return;
}
key = CkSshKeyW_Create();
// Load a private key from a PEM string:
success = CkSshKeyW_FromOpenSshPrivateKey(key,privKeyPem);
if (success != TRUE) {
wprintf(L"%s\n",CkSshKeyW_lastErrorText(key));
CkSFtpW_Dispose(sftp);
CkCertW_Dispose(cert);
CkSshKeyW_Dispose(key);
return;
}
// Authenticate with the SSH server.
success = CkSFtpW_AuthenticatePk(sftp,L"myLogin",key);
if (success != TRUE) {
wprintf(L"%s\n",CkSFtpW_lastErrorText(sftp));
CkSFtpW_Dispose(sftp);
CkCertW_Dispose(cert);
CkSshKeyW_Dispose(key);
return;
}
wprintf(L"Public-Key Authentication Successful!\n");
CkSFtpW_Dispose(sftp);
CkCertW_Dispose(cert);
CkSshKeyW_Dispose(key);
}