Sample code for 30+ languages & platforms
C#

Add EncapsulatedTimestamp to Already-Signed XML

See more XML Digital Signatures Examples

Demonstrates how to add an EncapsulatedTimestamp to an existing XML signature.

Note: This example requires Chilkat v9.5.0.90 or greater.

Chilkat C# Downloads

C#
bool success = false;

// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

// Note: We cannot load the already-signed XML into a Chilkat XML object because it would re-format the XML when re-emitted.
// (i.e. indentation and whitespace could change, and it would invalidate the existing signature.)
// We must use a StringBuilder.
Chilkat.StringBuilder sbXml = new Chilkat.StringBuilder();
success = sbXml.LoadFile("qa_data/xml_dsig_valid_samples/encapsulatedTimestamp_not_yet_added.xml","utf-8");
if (success == false) {
    Debug.WriteLine("Failed to load the XML file.");
    return;
}

Chilkat.XmlDSig dsig = new Chilkat.XmlDSig();
success = dsig.LoadSignatureSb(sbXml);
if (success == false) {
    Debug.WriteLine(dsig.LastErrorText);
    return;
}

if (dsig.HasEncapsulatedTimeStamp() == true) {
    Debug.WriteLine("This signed XML already has an EncapsulatedTimeStamp");
    return;
}

// Specify the timestamping authority URL
Chilkat.JsonObject json = new Chilkat.JsonObject();
json.UpdateString("timestampToken.tsaUrl","http://timestamp.digicert.com");
json.UpdateBool("timestampToken.requestTsaCert",true);

// Call AddEncapsulatedTimeStamp to add the EncapsulatedTimeStamp to the signature.
// Note: If the signed XML contains multiple signatures, the signature modified is the one 
// indicated by the dsig.Selector property.
Chilkat.StringBuilder sbOut = new Chilkat.StringBuilder();
success = dsig.AddEncapsulatedTimeStamp(json,sbOut);
if (success == false) {
    Debug.WriteLine(dsig.LastErrorText);
    return;
}

sbOut.WriteFile("qa_output/addedEncapsulatedTimeStamp.xml","utf-8",false);

// The EncapsulatedTimeStamp can be validated when validating the signature by adding the VerifyEncapsulatedTimeStamp
// keyword to UncommonOptions.  See here:

// ----------------------------------------
// Verify the signatures we just produced...
Chilkat.XmlDSig verifier = new Chilkat.XmlDSig();
success = verifier.LoadSignatureSb(sbOut);
if (success != true) {
    Debug.WriteLine(verifier.LastErrorText);
    return;
}

// Add "VerifyEncapsulatedTimeStamp" to the UncommonOptions to also verify any EncapsulatedTimeStamps
verifier.UncommonOptions = "VerifyEncapsulatedTimeStamp";

int numSigs = verifier.NumSignatures;
int verifyIdx = 0;
while (verifyIdx < numSigs) {
    verifier.Selector = verifyIdx;
    bool verified = verifier.VerifySignature(true);
    if (verified != true) {
        Debug.WriteLine(verifier.LastErrorText);
        return;
    }

    verifyIdx = verifyIdx + 1;
}

Debug.WriteLine("All signatures were successfully verified.");