Sample code for 30+ languages & platforms
Classic ASP

Add EncapsulatedTimestamp to Already-Signed XML

See more XML Digital Signatures Examples

Demonstrates how to add an EncapsulatedTimestamp to an existing XML signature.

Note: This example requires Chilkat v9.5.0.90 or greater.

Chilkat Classic ASP Downloads

Classic ASP
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
</head>
<body>
<%
success = 0

' This example requires the Chilkat API to have been previously unlocked.
' See Global Unlock Sample for sample code.

' Note: We cannot load the already-signed XML into a Chilkat XML object because it would re-format the XML when re-emitted.
' (i.e. indentation and whitespace could change, and it would invalidate the existing signature.)
' We must use a StringBuilder.
set sbXml = Server.CreateObject("Chilkat.StringBuilder")
success = sbXml.LoadFile("qa_data/xml_dsig_valid_samples/encapsulatedTimestamp_not_yet_added.xml","utf-8")
If (success = 0) Then
    Response.Write "<pre>" & Server.HTMLEncode( "Failed to load the XML file.") & "</pre>"
    Response.End
End If

set dsig = Server.CreateObject("Chilkat.XmlDSig")
success = dsig.LoadSignatureSb(sbXml)
If (success = 0) Then
    Response.Write "<pre>" & Server.HTMLEncode( dsig.LastErrorText) & "</pre>"
    Response.End
End If

If (dsig.HasEncapsulatedTimeStamp() = 1) Then
    Response.Write "<pre>" & Server.HTMLEncode( "This signed XML already has an EncapsulatedTimeStamp") & "</pre>"
    Response.End
End If

' Specify the timestamping authority URL
set json = Server.CreateObject("Chilkat.JsonObject")
success = json.UpdateString("timestampToken.tsaUrl","http://timestamp.digicert.com")
success = json.UpdateBool("timestampToken.requestTsaCert",1)

' Call AddEncapsulatedTimeStamp to add the EncapsulatedTimeStamp to the signature.
' Note: If the signed XML contains multiple signatures, the signature modified is the one 
' indicated by the dsig.Selector property.
set sbOut = Server.CreateObject("Chilkat.StringBuilder")
success = dsig.AddEncapsulatedTimeStamp(json,sbOut)
If (success = 0) Then
    Response.Write "<pre>" & Server.HTMLEncode( dsig.LastErrorText) & "</pre>"
    Response.End
End If

success = sbOut.WriteFile("qa_output/addedEncapsulatedTimeStamp.xml","utf-8",0)

' The EncapsulatedTimeStamp can be validated when validating the signature by adding the VerifyEncapsulatedTimeStamp
' keyword to UncommonOptions.  See here:

' ----------------------------------------
' Verify the signatures we just produced...
set verifier = Server.CreateObject("Chilkat.XmlDSig")
success = verifier.LoadSignatureSb(sbOut)
If (success <> 1) Then
    Response.Write "<pre>" & Server.HTMLEncode( verifier.LastErrorText) & "</pre>"
    Response.End
End If

' Add "VerifyEncapsulatedTimeStamp" to the UncommonOptions to also verify any EncapsulatedTimeStamps
verifier.UncommonOptions = "VerifyEncapsulatedTimeStamp"

numSigs = verifier.NumSignatures
verifyIdx = 0
Do While verifyIdx < numSigs
    verifier.Selector = verifyIdx
    verified = verifier.VerifySignature(1)
    If (verified <> 1) Then
        Response.Write "<pre>" & Server.HTMLEncode( verifier.LastErrorText) & "</pre>"
        Response.End
    End If

    verifyIdx = verifyIdx + 1
Loop
Response.Write "<pre>" & Server.HTMLEncode( "All signatures were successfully verified.") & "</pre>"

%>
</body>
</html>