Sample code for 30+ languages & platforms
AutoIt

Create JPK_VAT XaDES-BES Signed XML

See more XAdES Examples

Demonstrates how to sign XML for JPK_VAT.

Chilkat AutoIt Downloads

AutoIt
Local $bSuccess = False

; This example requires the Chilkat API to have been previously unlocked.
; See Global Unlock Sample for sample code.

; This example will sign the following XML document:

; <?xml version="1.0" encoding="utf-8"?>
; <InitUpload xmlns="http://e-dokumenty.mf.gov.pl">
;     <DocumentType>JPK</DocumentType>
;     <Version>01.02.01.20160617</Version>
;     <EncryptionKey algorithm="RSA" encoding="Base64" mode="ECB" padding="PKCS#1">...</EncryptionKey>
;     <DocumentList>
;         <Document>
;             <FormCode schemaVersion="1-1" systemCode="JPK_VAT (3)">JPK_VAT</FormCode>
;             <FileName>JPK_VAT_3_v1-1_20181208.xml</FileName>
;             <ContentLength>8736</ContentLength>
;             <HashValue algorithm="SHA-256" encoding="Base64">JEEI1pItwh6dj/Xe1uts/x61qnjZ4DLHpkRMhmf1oQQ=</HashValue>
;             <FileSignatureList filesNumber="1">
;                 <Packaging>
;                     <SplitZip mode="zip" type="split"/>
;                 </Packaging>
;                 <Encryption>
;                     <AES block="16" mode="CBC" padding="PKCS#7" size="256">
;                         <IV bytes="16" encoding="Base64">FFsCRAPYJD3J6cRvd44UDA==</IV>
;                     </AES>
;                 </Encryption>
;                 <FileSignature>
;                     <OrdinalNumber>1</OrdinalNumber>
;                     <FileName>JPK_VAT_3_v1-1_20181208-000.xml.zip.aes</FileName>
;                     <ContentLength>16</ContentLength>
;                     <HashValue algorithm="MD5" encoding="Base64">BX2DTD3ASC/zF6aq/012Cg==</HashValue>
;                 </FileSignature>
;             </FileSignatureList>
;         </Document>
;     </DocumentList>
; </InitUpload>

; First we build the XML to be signed.
; 
; Use this online tool to generate the code from sample XML: 
; Generate Code to Create XML

$bSuccess = True
$oXmlToSign = ObjCreate("Chilkat.Xml")
$oXmlToSign.Tag = "InitUpload"
$oXmlToSign.AddAttribute("xmlns","http://e-dokumenty.mf.gov.pl")
$oXmlToSign.UpdateChildContent "DocumentType","JPK"
$oXmlToSign.UpdateChildContent "Version","01.02.01.20160617"
$oXmlToSign.UpdateAttrAt("EncryptionKey",True,"algorithm","RSA")
$oXmlToSign.UpdateAttrAt("EncryptionKey",True,"encoding","Base64")
$oXmlToSign.UpdateAttrAt("EncryptionKey",True,"mode","ECB")
$oXmlToSign.UpdateAttrAt("EncryptionKey",True,"padding","PKCS#1")
$oXmlToSign.UpdateChildContent "EncryptionKey","..."
$oXmlToSign.UpdateAttrAt("DocumentList|Document|FormCode",True,"schemaVersion","1-1")
$oXmlToSign.UpdateAttrAt("DocumentList|Document|FormCode",True,"systemCode","JPK_VAT (3)")
$oXmlToSign.UpdateChildContent "DocumentList|Document|FormCode","JPK_VAT"
$oXmlToSign.UpdateChildContent "DocumentList|Document|FileName","JPK_VAT_3_v1-1_20181208.xml"
$oXmlToSign.UpdateChildContent "DocumentList|Document|ContentLength","8736"
$oXmlToSign.UpdateAttrAt("DocumentList|Document|HashValue",True,"algorithm","SHA-256")
$oXmlToSign.UpdateAttrAt("DocumentList|Document|HashValue",True,"encoding","Base64")
$oXmlToSign.UpdateChildContent "DocumentList|Document|HashValue","JEEI1pItwh6dj/Xe1uts/x61qnjZ4DLHpkRMhmf1oQQ="
$oXmlToSign.UpdateAttrAt("DocumentList|Document|FileSignatureList",True,"filesNumber","1")
$oXmlToSign.UpdateAttrAt("DocumentList|Document|FileSignatureList|Packaging|SplitZip",True,"mode","zip")
$oXmlToSign.UpdateAttrAt("DocumentList|Document|FileSignatureList|Packaging|SplitZip",True,"type","split")
$oXmlToSign.UpdateAttrAt("DocumentList|Document|FileSignatureList|Encryption|AES",True,"block","16")
$oXmlToSign.UpdateAttrAt("DocumentList|Document|FileSignatureList|Encryption|AES",True,"mode","CBC")
$oXmlToSign.UpdateAttrAt("DocumentList|Document|FileSignatureList|Encryption|AES",True,"padding","PKCS#7")
$oXmlToSign.UpdateAttrAt("DocumentList|Document|FileSignatureList|Encryption|AES",True,"size","256")
$oXmlToSign.UpdateAttrAt("DocumentList|Document|FileSignatureList|Encryption|AES|IV",True,"bytes","16")
$oXmlToSign.UpdateAttrAt("DocumentList|Document|FileSignatureList|Encryption|AES|IV",True,"encoding","Base64")
$oXmlToSign.UpdateChildContent "DocumentList|Document|FileSignatureList|Encryption|AES|IV","FFsCRAPYJD3J6cRvd44UDA=="
$oXmlToSign.UpdateChildContent "DocumentList|Document|FileSignatureList|FileSignature|OrdinalNumber","1"
$oXmlToSign.UpdateChildContent "DocumentList|Document|FileSignatureList|FileSignature|FileName","JPK_VAT_3_v1-1_20181208-000.xml.zip.aes"
$oXmlToSign.UpdateChildContent "DocumentList|Document|FileSignatureList|FileSignature|ContentLength","16"
$oXmlToSign.UpdateAttrAt("DocumentList|Document|FileSignatureList|FileSignature|HashValue",True,"algorithm","MD5")
$oXmlToSign.UpdateAttrAt("DocumentList|Document|FileSignatureList|FileSignature|HashValue",True,"encoding","Base64")
$oXmlToSign.UpdateChildContent "DocumentList|Document|FileSignatureList|FileSignature|HashValue","BX2DTD3ASC/zF6aq/012Cg=="

; Also see the online tool to generate the code from sample already-signed XML: 
; Generate XML Signature Creation Code from an Already-Signed XML Sample

$oGen = ObjCreate("Chilkat.XmlDSigGen")

$oGen.SigLocation = "InitUpload"
$oGen.SigId = "id-1234"
$oGen.SigNamespacePrefix = "ds"
$oGen.SigNamespaceUri = "http://www.w3.org/2000/09/xmldsig#"
$oGen.SignedInfoCanonAlg = "EXCL_C14N"
$oGen.SignedInfoDigestMethod = "sha256"

; Create an Object to be added to the Signature.
$oObject1 = ObjCreate("Chilkat.Xml")
$oObject1.Tag = "xades:QualifyingProperties"
$oObject1.AddAttribute("Target","#id-1234")
$oObject1.AddAttribute("xmlns:xades","http://uri.etsi.org/01903/v1.3.2#")
$oObject1.UpdateAttrAt("xades:SignedProperties",True,"Id","xades-id-1234")
$oObject1.UpdateChildContent "xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningTime","TO BE GENERATED BY CHILKAT"
$oObject1.UpdateAttrAt("xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningCertificateV2|xades:Cert|xades:CertDigest|ds:DigestMethod",True,"Algorithm","http://www.w3.org/2001/04/xmlenc#sha256")
$oObject1.UpdateChildContent "xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningCertificateV2|xades:Cert|xades:CertDigest|ds:DigestValue","TO BE GENERATED BY CHILKAT"
$oObject1.UpdateChildContent "xades:SignedProperties|xades:SignedSignatureProperties|xades:SigningCertificateV2|xades:Cert|xades:IssuerSerialV2","TO BE GENERATED BY CHILKAT"
$oObject1.UpdateAttrAt("xades:SignedProperties|xades:SignedDataObjectProperties|xades:DataObjectFormat",True,"ObjectReference","#r-id-1")
$oObject1.UpdateChildContent "xades:SignedProperties|xades:SignedDataObjectProperties|xades:DataObjectFormat|xades:MimeType","text/xml"

$oGen.AddObject("",$oObject1.GetXml(),"","")

; -------- Reference 1 --------
$oXml1 = ObjCreate("Chilkat.Xml")
$oXml1.Tag = "ds:Transforms"
$oXml1.UpdateAttrAt("ds:Transform",True,"Algorithm","http://www.w3.org/TR/1999/REC-xpath-19991116")
$oXml1.UpdateChildContent "ds:Transform|ds:XPath","not(ancestor-or-self::ds:Signature)"
$oXml1.UpdateAttrAt("ds:Transform[1]",True,"Algorithm","http://www.w3.org/2001/10/xml-exc-c14n#")

$oGen.AddSameDocRef2("","sha256",$oXml1,"")
$oGen.SetRefIdAttr("","r-id-1")

; -------- Reference 2 --------
$oXml2 = ObjCreate("Chilkat.Xml")
$oXml2.Tag = "ds:Transforms"
$oXml2.UpdateAttrAt("ds:Transform",True,"Algorithm","http://www.w3.org/2001/10/xml-exc-c14n#")

$oGen.AddObjectRef2("xades-id-1234","sha256",$oXml2,"http://uri.etsi.org/01903#SignedProperties")

; Provide a certificate + private key. (PFX password is test123)
; See Load Certificate on Smartcard for an example showing how to load the cert from a smartcard..
$oCert = ObjCreate("Chilkat.Cert")
$bSuccess = $oCert.LoadPfxFile("qa_data/pfx/cert_test123.pfx","test123")
If ($bSuccess <> True) Then
    ConsoleWrite($oCert.LastErrorText & @CRLF)
    Exit
EndIf

$oGen.SetX509Cert($oCert,True)

$oGen.KeyInfoType = "X509Data"
$oGen.X509Type = "Certificate"

; Load XML to be signed...
$oSbXml = ObjCreate("Chilkat.StringBuilder")
$oXmlToSign.GetXmlSb($oSbXml)

$oGen.Behaviors = "IndentedSignature,TransformSignatureXPath,IssuerSerialHex"

; Sign the XML...
$bSuccess = $oGen.CreateXmlDSigSb($oSbXml)
If ($bSuccess <> True) Then
    ConsoleWrite($oGen.LastErrorText & @CRLF)
    Exit
EndIf

; Save the signed XMl to a file.
$bSuccess = $oSbXml.WriteFile("qa_output/signedXml.xml","utf-8",False)

ConsoleWrite($oSbXml.GetAsString() & @CRLF)

; ----------------------------------------
; Verify the signature we just produced...
$oVerifier = ObjCreate("Chilkat.XmlDSig")
$bSuccess = $oVerifier.LoadSignatureSb($oSbXml)
If ($bSuccess <> True) Then
    ConsoleWrite($oVerifier.LastErrorText & @CRLF)
    Exit
EndIf

Local $bVerified = $oVerifier.VerifySignature(True)
If ($bVerified <> True) Then
    ConsoleWrite($oVerifier.LastErrorText & @CRLF)
    Exit
EndIf

ConsoleWrite("This signature was successfully verified." & @CRLF)