Sample code for 30+ languages & platforms
Node.js

Load Particular CA Certs into a Java KeyStore

See more Java KeyStore (JKS) Examples

Opens a PEM file containing many CA root certificates, and creates a Java keystore containing a subset of the certificates.

Chilkat Node.js Downloads

Node.js
NODEJS_PRELUDE

function chilkatExample() {

    var success = false;

    // This requires the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    var jks = new chilkat.JavaKeyStore();

    var troots = new chilkat.TrustedRoots();

    // Load certificates from a file.
    success = troots.LoadCaCertsPem("qa_data/curl_cacert.pem");
    if (success !== true) {
        console.log(troots.LastErrorText);
        return;
    }

    var sbDn = new chilkat.StringBuilder();
    var sbAlias = new chilkat.StringBuilder();
    var caseSensitive = false;

    var i = 0;
    var numCerts = troots.NumCerts;
    var numAdded = 0;
    while ((i < numCerts)) {
        // cacert: Cert
        var cacert = troots.GetCert(i);
        sbDn.Clear();
        sbDn.Append(cacert.SubjectDN);
        if (sbDn.Contains("Entrust.net",caseSensitive) == true) {
            console.log(cacert.SubjectDN);

            // The alias is an arbitrary unique string for each cert in the JKS.
            sbAlias.Clear();
            sbAlias.Append("cacert_");
            sbAlias.AppendInt(i+1);
            jks.AddTrustedCert(cacert,sbAlias.GetAsString());
            numAdded = numAdded+1;
        }

        i = i+1;
    }

    // Verify the number of certs in the JKS equals the number we added.
    var numJksCerts = jks.NumTrustedCerts;
    console.log("NumTrustedCerts = " + numJksCerts);
    if (numJksCerts !== numAdded) {
        console.log("Something is amiss!");
        return;
    }

    // Save the JKS.
    success = jks.ToFile("myPassword","qa_data/jks/entrust_caCerts.jks");
    if (success !== true) {
        console.log(jks.LastErrorText);
        return;
    }

    console.log("Success.");

    // The output of this program when tested was:

    // C=US, O=Entrust.net, OU=www.entrust.net/CPS incorp. by ref. (limits liab.), OU=(c) 1999 Entrust.net Limited, CN=Entrust.net Secure Server Certification Authority
    // O=Entrust.net, OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.), OU=(c) 1999 Entrust.net Limited, CN=Entrust.net Certification Authority (2048)
    // C=US, O="Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, OU="(c) 2006 Entrust, Inc.", CN=Entrust Root Certification Authority
    // NumTrustedCerts = 3
    // Success.

}

chilkatExample();