(JavaScript) PKCS11 Export Public Key from HSM
Demonstrates how to export a public key from a smartcard or token.Note: This example requires Chilkat v11.0.0 or greater.
var success = false;
// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
// Note: Chilkat's PKCS11 implementation runs on Windows, Linux, Mac OS X, and other supported operating systems.
var pkcs11 = new CkPkcs11();
// Use the PKCS11 driver (.dll, .so, .dylib) for your particular HSM.
// (The format of the path will change with the operating system. Obviously, "C:/" is not used on non-Windows systems.
pkcs11.SharedLibPath = "C:/Program Files (x86)/Gemalto/IDGo 800 PKCS#11/IDPrimePKCS1164.dll";
// Establish a logged-on session. (We can typically skip the login by passing an empty PIN if only working with public keys)
// Use your actual PIN here, or an empty string to skip login.
var pin = "0000";
var userType = 1;
success = pkcs11.QuickSession(userType,pin);
if (success == false) {
console.log(pkcs11.LastErrorText);
return;
}
// Get the handle of the public key we wish to export.
// You can find public keys in many different ways.
// This example will search for a public key by label.
// Provide a template to find a PKCS11 object.
var jsonTemplate = new CkJsonObject();
// Find the public key with the label "Belgium eHealth".
jsonTemplate.UpdateString("class","public_key");
jsonTemplate.UpdateString("label","Belgium eHealth");
var pubKeyHandle = pkcs11.FindObject(jsonTemplate);
if (pubKeyHandle == 0) {
console.log(pkcs11.LastErrorText);
return;
}
// Export to a Chilkat public key object.
var pubKey = new CkPublicKey();
success = pkcs11.ExportPublicKey(pubKeyHandle,pubKey);
if (success == false) {
console.log(pkcs11.LastErrorText);
return;
}
// Get the public key as PKCS8 PEM.
console.log(pubKey.GetPem(false));
pkcs11.Logout();
pkcs11.CloseSession();
|
