C
C
SFTP use Cert's Private Key from PFX (.pfx/.p12)
See more SFTP Examples
Demonstrates how to use the private key associated with a certificate from a .pfx/.p12 file.Chilkat C Downloads
#include <C_CkCert.h>
#include <C_CkPrivateKey.h>
#include <C_CkSshKey.h>
#include <C_CkSFtp.h>
void ChilkatSample(void)
{
BOOL success;
HCkCert cert;
const char *pfxFilepath;
const char *pfxPassword;
HCkPrivateKey privKey;
const char *privKeyPem;
HCkSshKey sshKey;
HCkSFtp sftp;
success = FALSE;
// This example assumes the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
cert = CkCert_Create();
pfxFilepath = "qa_data/pfx/my.pfx";
pfxPassword = "secret";
// A PFX typically contains certificates in the chain of authentication.
// The Chilkat cert object will choose the certificate w/
// private key farthest from the root authority cert.
// To access all the certificates in a PFX, use the
// Chilkat certificate store object instead.
success = CkCert_LoadPfxFile(cert,pfxFilepath,pfxPassword);
if (success == FALSE) {
printf("%s\n",CkCert_lastErrorText(cert));
CkCert_Dispose(cert);
return;
}
// Get the private key.
privKey = CkPrivateKey_Create();
success = CkCert_GetPrivateKey(cert,privKey);
if (success == FALSE) {
printf("%s\n",CkCert_lastErrorText(cert));
CkCert_Dispose(cert);
CkPrivateKey_Dispose(privKey);
return;
}
privKeyPem = CkPrivateKey_getPkcs8Pem(privKey);
if (CkPrivateKey_getLastMethodSuccess(privKey) == FALSE) {
printf("%s\n",CkPrivateKey_lastErrorText(privKey));
CkCert_Dispose(cert);
CkPrivateKey_Dispose(privKey);
return;
}
sshKey = CkSshKey_Create();
success = CkSshKey_FromOpenSshPrivateKey(sshKey,privKeyPem);
if (success == FALSE) {
printf("%s\n",CkSshKey_lastErrorText(sshKey));
CkCert_Dispose(cert);
CkPrivateKey_Dispose(privKey);
CkSshKey_Dispose(sshKey);
return;
}
// Connect to an SSH/SFTP server
sftp = CkSFtp_Create();
success = CkSFtp_Connect(sftp,"sftp.example.com",22);
if (success == FALSE) {
printf("%s\n",CkSFtp_lastErrorText(sftp));
CkCert_Dispose(cert);
CkPrivateKey_Dispose(privKey);
CkSshKey_Dispose(sshKey);
CkSFtp_Dispose(sftp);
return;
}
// Authenticate with the SSH server using a username + private key.
// (The private key serves as the password. The username identifies
// the SSH user account on the server.)
success = CkSFtp_AuthenticatePk(sftp,"mySshLogin",sshKey);
if (success == FALSE) {
printf("%s\n",CkSFtp_lastErrorText(sftp));
CkCert_Dispose(cert);
CkPrivateKey_Dispose(privKey);
CkSshKey_Dispose(sshKey);
CkSFtp_Dispose(sftp);
return;
}
printf("OK, the connection and authentication with the SSH server is completed.\n");
// This example is only to show the connection + authentication using a private key associated with a certificate in the Windows certificate store...
CkCert_Dispose(cert);
CkPrivateKey_Dispose(privKey);
CkSshKey_Dispose(sshKey);
CkSFtp_Dispose(sftp);
}