Objective-C
Objective-C
Load Particular CA Certs into a Java KeyStore
See more Java KeyStore (JKS) Examples
Opens a PEM file containing many CA root certificates, and creates a Java keystore containing a subset of the certificates.Chilkat Objective-C Downloads
#import <CkoJavaKeyStore.h>
#import <CkoTrustedRoots.h>
#import <CkoStringBuilder.h>
#import <CkoCert.h>
BOOL success = NO;
// This requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
CkoJavaKeyStore *jks = [[CkoJavaKeyStore alloc] init];
CkoTrustedRoots *troots = [[CkoTrustedRoots alloc] init];
// Load certificates from a file.
success = [troots LoadCaCertsPem: @"qa_data/curl_cacert.pem"];
if (success != YES) {
NSLog(@"%@",troots.LastErrorText);
return;
}
CkoStringBuilder *sbDn = [[CkoStringBuilder alloc] init];
CkoStringBuilder *sbAlias = [[CkoStringBuilder alloc] init];
BOOL caseSensitive = NO;
int i = 0;
int numCerts = [troots.NumCerts intValue];
int numAdded = 0;
while ((i < numCerts)) {
CkoCert *cacert = [troots GetCert: [NSNumber numberWithInt: i]];
[sbDn Clear];
[sbDn Append: cacert.SubjectDN];
if ([sbDn Contains: @"Entrust.net" caseSensitive: caseSensitive] == YES) {
NSLog(@"%@",cacert.SubjectDN);
// The alias is an arbitrary unique string for each cert in the JKS.
[sbAlias Clear];
[sbAlias Append: @"cacert_"];
[sbAlias AppendInt: [NSNumber numberWithInt: (i + 1)]];
[jks AddTrustedCert: cacert alias: [sbAlias GetAsString]];
numAdded = numAdded + 1;
}
i = i + 1;
}
// Verify the number of certs in the JKS equals the number we added.
int numJksCerts = [jks.NumTrustedCerts intValue];
NSLog(@"%@%d",@"NumTrustedCerts = ",numJksCerts);
if (numJksCerts != numAdded) {
NSLog(@"%@",@"Something is amiss!");
return;
}
// Save the JKS.
success = [jks ToFile: @"myPassword" path: @"qa_data/jks/entrust_caCerts.jks"];
if (success != YES) {
NSLog(@"%@",jks.LastErrorText);
return;
}
NSLog(@"%@",@"Success.");
// The output of this program when tested was:
// C=US, O=Entrust.net, OU=www.entrust.net/CPS incorp. by ref. (limits liab.), OU=(c) 1999 Entrust.net Limited, CN=Entrust.net Secure Server Certification Authority
// O=Entrust.net, OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.), OU=(c) 1999 Entrust.net Limited, CN=Entrust.net Certification Authority (2048)
// C=US, O="Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, OU="(c) 2006 Entrust, Inc.", CN=Entrust Root Certification Authority
// NumTrustedCerts = 3
// Success.