Verify Java Signature

Demonstrates how to verify a digital signature produced by Java.
The Java code that produces a digital signature that can be verified with
this Chilkat example is found at: http://www.cknotes.com/?p=283

Download 32-bit Chilkat RSA ActiveX (.msi)

Download All 32-bit Chilkat ActiveX Components (.zip)

Download All 64-bit Chilkat ActiveX Components (.zip)

<?php


$pubKey = new COM("Chilkat.PublicKey");

//  Load an RSA public key from an ASN.1 DER file
$success = $pubKey->LoadRsaDerFile('pubKey.der');

if ($success != true) {
    print $pubKey->lastErrorText() . "\n";
    exit;
}

//  Get the public key in XML format:
$pkeyXml = $pubKey->getXml();

$rsa = new COM("Chilkat.Rsa");

//  Any string argument automatically begins the 30-day trial.
$success = $rsa->UnlockComponent('30-day trial');
if ($success != true) {
    print $rsa->lastErrorText() . "\n";
    exit;
}

//  Import the public key into the RSA component:
$success = $rsa->ImportPublicKey($pkeyXml);
if ($success != true) {
    print $rsa->lastErrorText() . "\n";
    exit;
}

$rsa->EncodingMode = 'base64';

$strData = 'The quick brown fox jumps over the lazy dog';

//  IMPORTANT:  This Base64 signature will have to be updated
//  with the digital signature produced by the Java code at:
//  http://www.cknotes.com/?p=283
$base64Sig = 'VGV5A+bodHBpBwwJZdf17Bv+lkBTm/gteOf8iCgEEfNzBosZLaAB8X55BIZIkE2zKRXoMcJT+iCxsj+1hnlwJeKZ+Gya58lrHw6NWm2N0O/KyfnuEzADOM86X0xrkgdFT6SYpbZ9dWPC59NiHeEdVyjOXNJ3fBpUSQ5/5pvVWm0=';

//  Verify the signature produced by the Java code at:
//  http://www.cknotes.com/?p=283
//  The VerifyStringENC method hashes the input data and verifies
//  the hash against the signature.
$success = $rsa->VerifyStringENC($strData,'sha-1',$base64Sig);
//  Is the signature verified?
if ($success == true) {
    print 'Signature Verified!' . "\n";
}
else {
    print 'Signature not verified!' . "\n";
}


?>