(PHP Extension) RSA Signature with Certificate's Private Key from PFX

See more RSA Examples

Note: This example requires Chilkat v11.0.0 or greater.

Chilkat PHP Downloads PHP Extension for Windows, Linux, MacOS, Alpine Linux

<?php

include("chilkat.php");

$success = false;

// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

// Create an instance of a certificate store object, load a PFX file,
// locate the certificate we need, and use it for signing.
// (a PFX file may contain more than one certificate.)
$certStore = new CkCertStore();

// The 1st argument is the filename, the 2nd arg is the 
// PFX file's password:
$success = $certStore->LoadPfxFile('chilkat.pfx','test');
if ($success == false) {
    print $certStore->lastErrorText() . "\n";
    exit;
}

// Find the certificate by the subject common name:
$jsonCN = new CkJsonObject();
$jsonCN->UpdateString('CN','cert common name');

$cert = new CkCert();
$success = $certStore->FindCert($jsonCN,$cert);
if ($success == false) {
    print $certStore->lastErrorText() . "\n";
    exit;
}

$privKey = new CkPrivateKey();
$success = $cert->GetPrivateKey($privKey);
if ($success == false) {
    print $cert->lastErrorText() . "\n";
    exit;
}

$rsa = new CkRsa();

$success = $rsa->UsePrivateKey($privKey);
if ($success == false) {
    print $rsa->lastErrorText() . "\n";
    exit;
}

// Encode the signature as a hex string
$rsa->put_EncodingMode('hex');

$strData = 'This is the string to be signed.';

// Sign the string using the sha-1 hash algorithm.
// Other valid choices are "sha-256", "md2" and "md5".
$hexSig = $rsa->signStringENC($strData,'sha-1');

print $hexSig . "\n";

print 'Success!' . "\n";

?>