Chilkat HOME .NET Core C# Android™ AutoIt C C# C++ Chilkat2-Python CkPython Classic ASP DataFlex Delphi ActiveX Delphi DLL Go Java Lianja Mono C# Node.js Objective-C PHP ActiveX PHP Extension Perl PowerBuilder PowerShell PureBasic Ruby SQL Server Swift 2 Swift 3,4,5... Tcl Unicode C Unicode C++ VB.NET VBScript Visual Basic 6.0 Visual FoxPro Xojo Plugin
(Unicode C) Sign PDF with Long-Term Validation (LTV Enabled)See more PDF Signatures ExamplesThis example demonstrates how to a sign a PDF with long-term validation (LTV) enabled. Note: This example requires Chilkat v9.5.0.85 or greater.
#include <C_CkPdfW.h> #include <C_CkJsonObjectW.h> #include <C_CkCertW.h> void ChilkatSample(void) { HCkPdfW pdf; BOOL success; HCkJsonObjectW json; HCkCertW cert; // This example requires the Chilkat API to have been previously unlocked. // See Global Unlock Sample for sample code. pdf = CkPdfW_Create(); // Load a PDF to be signed. // The "hello.pdf" is available at https://chilkatsoft.com/hello.pdf success = CkPdfW_LoadFile(pdf,L"qa_data/pdf/hello.pdf"); if (success == FALSE) { wprintf(L"%s\n",CkPdfW_lastErrorText(pdf)); CkPdfW_Dispose(pdf); return; } // Options for signing are specified in JSON. json = CkJsonObjectW_Create(); // In most cases, the signingCertificateV2 and signingTime attributes are required. CkJsonObjectW_UpdateInt(json,L"signingCertificateV2",1); CkJsonObjectW_UpdateInt(json,L"signingTime",1); // Add the "ltvOcsp" instruction to the JSON passed to SignPdf. // This is what causes Chilkat to create an LTV-enabled signature. // // If we are signing a PDF that already has signatures, then the existing signatures // are automatically verified, and Chilkat will do OCSP certificate status checking (if possible) // for those certs in existing signatures (including certs in the certificate chains) // that do not yet have a valid OCSP response in the DSS (Document Security Store). // Chilkat will add the OCSP responses to the /OCSPs in the Document Security Store (/DSS). // Also, and certificates from existing signatures not yet in the DSS are added to the /Certs // in the DSS. // // Also, the "ltvOcsp" causes Chilkat to add the pdfRevocationInfoArchival authenticated attribute // to the CMS signature. The pdfRevocationInfoArchival attribute (1.2.840.113583.1.1.8) // contains OCSP responses and the CRL for the issuer of the signing certificate. // Therefore, Chilkat will send an OCSP request to the signing certificate's OCSP URl (if one exists) // and will download the CRL from the issuer certificate's CRL Distribution Point (if one exists). CkJsonObjectW_UpdateBool(json,L"ltvOcsp",TRUE); // ----------------------------------------------------------------------------------- // Note: If Chilkat produces a signed PDF, but the signature is not LTV-enabled, // the cause might be related to a failure to download CRL's or OCSP requests. // See Possible Solution for Failure to Produce LTV-enabled PDF Signature // ----------------------------------------------------------------------------------- // You can add the following to UncommonOptions to get detailed information about the CRL and OCSP requests // You shouldn't set the following logging options unless there is a need, because it adds a large amount of information to the LastErrorText. CkPdfW_putUncommonOptions(pdf,L"LOG_OCSP_HTTP,LOG_CRL_HTTP"); // Define the appearance of the signature. CkJsonObjectW_UpdateInt(json,L"page",1); CkJsonObjectW_UpdateString(json,L"appearance.y",L"top"); CkJsonObjectW_UpdateString(json,L"appearance.x",L"left"); CkJsonObjectW_UpdateString(json,L"appearance.fontScale",L"10.0"); CkJsonObjectW_UpdateString(json,L"appearance.text[0]",L"Digitally signed by: cert_cn"); CkJsonObjectW_UpdateString(json,L"appearance.text[1]",L"current_dt"); CkJsonObjectW_UpdateString(json,L"appearance.text[2]",L"This is an LTV-enabled signature."); // Load the signing certificate. (Use your own certificate.) cert = CkCertW_Create(); success = CkCertW_LoadPfxFile(cert,L"qa_data/pfx/myPdfSigningCert.pfx",L"pfxPassword"); if (success == FALSE) { wprintf(L"%s\n",CkCertW_lastErrorText(cert)); CkPdfW_Dispose(pdf); CkJsonObjectW_Dispose(json); CkCertW_Dispose(cert); return; } // Tell the pdf object to use the certificate for signing. success = CkPdfW_SetSigningCert(pdf,cert); if (success == FALSE) { wprintf(L"%s\n",CkPdfW_lastErrorText(pdf)); CkPdfW_Dispose(pdf); CkJsonObjectW_Dispose(json); CkCertW_Dispose(cert); return; } success = CkPdfW_SignPdf(pdf,json,L"qa_output/hello_ltv_signed.pdf"); if (success == FALSE) { wprintf(L"%s\n",CkPdfW_lastErrorText(pdf)); CkPdfW_Dispose(pdf); CkJsonObjectW_Dispose(json); CkCertW_Dispose(cert); return; } wprintf(L"The PDF has been successfully cryptographically signed with long-term validation.\n"); // If you open the Signature Panel in Adobe Acrobat, it will indicate that the signature is LTV enabled // as shown here: CkPdfW_Dispose(pdf); CkJsonObjectW_Dispose(json); CkCertW_Dispose(cert); } |
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.