|
Chilkat • HOME • ASP • Visual Basic • VB.NET • C# • Visual C++ • C • MFC • Delphi • FoxPro • Java • Perl • PHP • Python • Ruby • SQL Server • VBScript
Using WS_FTP Self-signed Certificate file (.crt) and Private Key File. (.key)Demonstrates how to use a self-signed certificate created by WS_FTP with Chilkat FTP2. Note: It is usually not necessary for the FTP client to use a client-side certificate. Most FTP servers using SSL and TLS connections (explicit or implicit) do not require client-side certs. In addition, some high-security FTP servers require "real" certificates -- meaning certificates issued by a real certificate authority with a chain of authentication that leads to a trusted root certificate. The certificates created by WS_FTP are self-signed and untrusted.
// Needs #include <CkFtp2.h> // Needs #include <CkCertStore.h> // Needs #include <CkCert.h> CkString strOut; // Important: Before running this program, convert your // .crt and .key files to a .p12 using OpenSSL: // The command is this: // openssl pkcs12 -export -in test.crt -inkey test.key -out test.p12 // CkFtp2 ftp; bool success; // Any string unlocks the component for the 1st 30-days. success = ftp.UnlockComponent("Anything for 30-day trial"); if (success != true) { strOut.append(ftp.lastErrorText()); strOut.append("\r\n"); SetDlgItemText(IDC_EDIT1,strOut.getUnicode()); return; } // You may use this account for testing. // This account allows for directory listings and files // to be downloaded. However, file uploads are not allowed. ftp.put_Hostname("ftp.secureftp-test.com"); ftp.put_Username("test"); ftp.put_Password("test"); // Automatically establish an AUTH TLS secure channel // after connecting on the standard FTP port 21. ftp.put_AuthTls(true); // The Ssl property is for establishing an implicit SSL connection // on port 990. Do not set it. ftp.put_Ssl(false); // Create an instance of a certificate store object, load a .p12 file, // locate the certificate we need, and use it for signing. // (a P12/PFX file may contain more than one certificate.) CkCertStore certStore; // The 1st argument is the filename, the 2nd arg is the // .p12 file's password. (OpenSSL will prompty you to set a password // when converting the .crt and .key into a .p12). success = certStore.LoadPfxFile("test.p12","secret"); if (success != true) { strOut.append(certStore.lastErrorText()); strOut.append("\r\n"); SetDlgItemText(IDC_EDIT1,strOut.getUnicode()); return; } CkCert *cert = 0; cert = certStore.FindCertBySubjectCN("Your cert's common name"); if (cert == 0 ) { strOut.append(certStore.lastErrorText()); strOut.append("\r\n"); SetDlgItemText(IDC_EDIT1,strOut.getUnicode()); return; } ftp.SetSslClientCert(*cert); delete cert; // Connect and login to the FTP server. success = ftp.Connect(); if (success != true) { strOut.append(ftp.lastErrorText()); strOut.append("\r\n"); SetDlgItemText(IDC_EDIT1,strOut.getUnicode()); return; } else { // LastErrorText contains information even when // successful. This allows you to visually verify // that the secure connection actually occurred. strOut.append(ftp.lastErrorText()); strOut.append("\r\n"); } strOut.append("Secure FTP Channel Established!\r\n"); strOut.append(ftp.lastErrorText()); strOut.append("\r\n"); // Do whatever you're doing to do ... // upload files, download files, etc... ftp.Disconnect(); SetDlgItemText(IDC_EDIT1,strOut.getUnicode()); |
Need a specific example? Send a request to support@chilkatsoft.com
© 2000-2008 Chilkat Software, Inc. All Rights Reserved.
