Visual FoxPro
Visual FoxPro
Sign String to create a CAdES-T Signature
See more CAdES Examples
This example will sign a string to create a CAdEST-T signature.Note: This example requires Chilkat v9.5.0.78 or greater.
Chilkat Visual FoxPro Downloads
LOCAL lnSuccess
LOCAL loCrypt
LOCAL loCert
LOCAL loAttrs
LOCAL lcStrToSign
LOCAL loBd
lnSuccess = 0
* This example requires the Chilkat API to have been previously unlocked.
* See Global Unlock Sample for sample code.
loCrypt = CreateObject('Chilkat.Crypt2')
* This example will use the certificate + private key currently inserted into a smartcard reader.
loCert = CreateObject('Chilkat.Cert')
* If we wish to provide the smartcard PIN (otherwise the user will be prompted by the operating system).
loCert.SmartCardPin = "000000"
lnSuccess = loCert.LoadFromSmartcard("")
IF (lnSuccess <> 1) THEN
? loCert.LastErrorText
RELEASE loCrypt
RELEASE loCert
CANCEL
ENDIF
* Note: It is also possible to use certs from .pfx/.p12, .pem, or other sources such as
* pre-installed Windows certificates.
lnSuccess = loCrypt.SetSigningCert(loCert)
* Use SHA-256 rather than the default of SHA-1
loCrypt.HashAlgorithm = "sha256"
* Create JSON that tells Chilkat what signing attributes to include:
loAttrs = CreateObject('Chilkat.JsonObject')
loAttrs.UpdateBool("contentType",1)
loAttrs.UpdateBool("signingTime",1)
loAttrs.UpdateBool("messageDigest",1)
loAttrs.UpdateBool("signingCertificateV2",1)
* A CAdES-T signature is one that includes a timestampToken created by an online TSA (time stamping authority).
* We must include the TSA's URL, as well as a few options to indicate what is desired.
* Except for the TSA URL, the options shown here are typically what you would need.
loAttrs.UpdateBool("timestampToken.enabled",1)
loAttrs.UpdateString("timestampToken.tsaUrl","https://freetsa.org/tsr")
loAttrs.UpdateBool("timestampToken.addNonce",0)
loAttrs.UpdateBool("timestampToken.requestTsaCert",1)
loAttrs.UpdateString("timestampToken.hashAlg","sha256")
loCrypt.SigningAttributes = loAttrs.Emit()
lcStrToSign = "THIS IS MY ID"
loBd = CreateObject('Chilkat.BinData')
loBd.AppendString(lcStrToSign,"utf-8")
* This creates the CAdES-T signature. During the signature creation, it
* communicates with the TSA to get a timestampToken.
* The contents of bd are signed and replaced with the CAdES-T signature (which embeds the original content).
lnSuccess = loCrypt.OpaqueSignBd(loBd)
IF (lnSuccess <> 1) THEN
? loCrypt.LastErrorText
RELEASE loCrypt
RELEASE loCert
RELEASE loAttrs
RELEASE loBd
CANCEL
ENDIF
* Get the signature in base64 format:
? loBd.GetEncoded("base64_mime")
* Or save the signature to a file.
loBd.WriteFile("qa_output/cades-t_sample.p7m")
? "Success."
RELEASE loCrypt
RELEASE loCert
RELEASE loAttrs
RELEASE loBd