(Perl) Verify the Timestamp Server Token (if any) while Validating a CMS Signature
Demonstrates how to also validate the timestamp server token (if any) while validating a CMS signature.
use chilkat();
$crypt = chilkat::CkCrypt2->new();
# Tell Chilkat to also validate the timestamp token if a timestamp exists in the CMS message's unauthenticated attributes.
$cmsOptions = chilkat::CkJsonObject->new();
$cmsOptions->UpdateBool("ValidateTimestampTokens",1);
$crypt->put_CmsOptions($cmsOptions->emit());
$outputFile = "qa_output/original.xml";
$inFile = "qa_data/p7m/fattura_signature.xml.p7m";
# Verify the signature and extract the contained file, which in this case is XML.
$success = $crypt->VerifyP7M($inFile,$outputFile);
if ($success == 0) {
print $crypt->lastErrorText() . "\r\n";
exit;
}
print "Signature validated." . "\r\n";
|
