Sample code for 30+ languages & platforms
Java

Get Certificates within XML Signature

See more XML Digital Signatures Examples

Demonstrates how to get the certificates contained within an XML signature.

Chilkat Java Downloads

Java
import com.chilkatsoft.*;

public class ChilkatExample {

  static {
    try {
        System.loadLibrary("chilkat");
    } catch (UnsatisfiedLinkError e) {
      System.err.println("Native code library failed to load.\n" + e);
      System.exit(1);
    }
  }

  public static void main(String argv[])
  {
    boolean success = false;

    // This example requires the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    CkStringBuilder sbXml = new CkStringBuilder();

    // Load XML containing one or more signatures.
    success = sbXml.LoadFile("qa_data/xml_dsig_valid_samples/multipleSigners/sp.pdf.XAdES.xml","utf-8");
    if (success == false) {
        System.out.println("Failed to load the XML file..");
        return;
        }

    CkXmlDSig dsig = new CkXmlDSig();

    // First load the XML containing the signatures to be verified.
    // Note that this particular Signature already contains the RSA public key that will be used
    // for verification.
    success = dsig.LoadSignatureSb(sbXml);
    if (success != true) {
        System.out.println(dsig.lastErrorText());
        return;
        }

    // For each signature, verify and also get the certificate(s) contained within each Signature.
    int i = 0;
    CkStringArray saCerts = new CkStringArray();
    CkCert cert = new CkCert();

    System.out.println("numSignatures = " + dsig.get_NumSignatures());

    while (i < dsig.get_NumSignatures()) {
        // Select the Nth signature by setting the Selector property.
        dsig.put_Selector(i);

        boolean bVerifyReferenceDigests = true;
        boolean bVerified = dsig.VerifySignature(bVerifyReferenceDigests);
        System.out.println("Signature " + (i+1) + " verified = " + bVerified);

        // Get the certificates embedded in this signature.
        saCerts.Clear();
        success = dsig.GetCerts(saCerts);
        if (success == true) {
            int j = 0;
            while (j < saCerts.get_Count()) {
                success = cert.LoadFromBase64(saCerts.getString(j));
                if (success == true) {
                    System.out.println("    " + cert.subjectDN());
                    }

                j = j+1;
                }

            }

        i = i+1;
        }
  }
}