Classic ASP
Classic ASP
Verify Opaque Signature and Retrieve Signing Certificates
See more Digital Signatures Examples
Demonstrates how to verify a PCKS7 opaque digital signature (signed data), extract the original file/data, and then extract the certificate(s) that were used to sign.Chilkat Classic ASP Downloads
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
</head>
<body>
<%
success = 0
' This example assumes the Chilkat API to have been previously unlocked.
' See Global Unlock Sample for sample code.
set crypt = Server.CreateObject("Chilkat.Crypt2")
' Verify a PKCS7 signed-data (opaque signature) file and extract the original content to a file.
success = crypt.VerifyP7M("qa_data/p7m/opaqueSig.p7","qa_output/originalData.dat")
If (success = 0) Then
Response.Write "<pre>" & Server.HTMLEncode( crypt.LastErrorText) & "</pre>"
Response.End
End If
' Alternatively, we can do it in memory...
set binData = Server.CreateObject("Chilkat.BinData")
success = binData.LoadFile("qa_data/p7m/opaqueSig.p7")
' Your app should check for success, but we'll skip the check for brevity..
' If verified, the signature is unwrapped and binData is replaced with the original data that was signed.
success = crypt.OpaqueVerifyBd(binData)
If (success = 0) Then
Response.Write "<pre>" & Server.HTMLEncode( crypt.LastErrorText) & "</pre>"
Response.End
End If
' For our testing, we signed some text, so we can get it from the binData..
Response.Write "<pre>" & Server.HTMLEncode( "Original Data:") & "</pre>"
Response.Write "<pre>" & Server.HTMLEncode( binData.GetString("utf-8")) & "</pre>"
' After any method call that verifies a signature, the crypt object will contain the certificate(s)
' that were used for signing (assuming the X.509 certs were available in the signature, which is typically the case).
' Get each signing certificate, and build the certificate chain for each.
set cert = Server.CreateObject("Chilkat.Cert")
set certChain = Server.CreateObject("Chilkat.CertChain")
numCerts = crypt.NumSignerCerts
i = 0
Do While i < numCerts
success = crypt.LastSignerCert(i,cert)
Response.Write "<pre>" & Server.HTMLEncode( cert.SubjectDN) & "</pre>"
success = cert.BuildCertChain(certChain)
If (success = 0) Then
Response.Write "<pre>" & Server.HTMLEncode( cert.LastErrorText) & "</pre>"
Response.End
End If
i = i + 1
Loop
%>
</body>
</html>