PureBasic
PureBasic
ScMinidriver - Import a Certificate to IDPrime MD T=0 Smart Card
See more ScMinidriver Examples
Demonstrates how to import a certificate and its private key to a key container on an ID Prime MD T=0 smartcard.Note: Requires Chilkat v9.5.0.88 or later. This example only runs on Windows because ScMinidriver is a Windows-only class.
Chilkat PureBasic Downloads
IncludeFile "CkCert.pb"
IncludeFile "CkScMinidriver.pb"
Procedure ChilkatExample()
success.i = 0
; This example requires the Chilkat API to have been previously unlocked.
; See Global Unlock Sample for sample code.
scmd.i = CkScMinidriver::ckCreate()
If scmd.i = 0
Debug "Failed to create object."
ProcedureReturn
EndIf
; Reader names (smart card readers or USB tokens) can be discovered
; via List Readers or Find Smart Cards
readerName.s = "SCM Microsystems Inc. SCR33x USB Smart Card Reader 0"
success = CkScMinidriver::ckAcquireContext(scmd,readerName)
If success = 0
Debug CkScMinidriver::ckLastErrorText(scmd)
CkScMinidriver::ckDispose(scmd)
ProcedureReturn
EndIf
; If successful, the name of the currently inserted smart card is available:
Debug "Card name: " + CkScMinidriver::ckCardName(scmd)
; The IDPRime MD smart card has 4 different PIN roles:
; "user" -- Primary Card PIN
; "admin" -- Administrator PIN
; "3" -- Digital Signature PIN
; "4" -- Unblock only PIN (PUK)
; To import a certificate to the "IDPrime MD T=0" smart card, we must first PIN authenticate using "user", and then also PIN authenticate using "3" (the Digital Signature PIN)
pinId.s = "user"
; (Of course, use your PIN which may be different than "0000")
retval.i = CkScMinidriver::ckPinAuthenticate(scmd,pinId,"0000")
If retval <> 0
Debug "PIN Authentication failed."
CkScMinidriver::ckDeleteContext(scmd)
CkScMinidriver::ckDispose(scmd)
ProcedureReturn
EndIf
cert.i = CkCert::ckCreate()
If cert.i = 0
Debug "Failed to create object."
ProcedureReturn
EndIf
; Load the cert + private key from a .p12/.pfx
; We got this .p12 from https://badssl.com/download/
password.s = "badssl.com"
success = CkCert::ckLoadPfxFile(cert,"qa_data/pfx/badssl.com-client.p12",password)
If success = 0
Debug CkCert::ckLastErrorText(cert)
CkScMinidriver::ckDeleteContext(scmd)
CkScMinidriver::ckDispose(scmd)
CkCert::ckDispose(cert)
ProcedureReturn
EndIf
; Also authenticate using "3", the digital signature PIN.
; (Of course, use your PIN which may be different than "12345678")
retval = CkScMinidriver::ckPinAuthenticate(scmd,"3","12345678")
If retval <> 0
Debug "PIN Authentication failed."
CkScMinidriver::ckDeleteContext(scmd)
CkScMinidriver::ckDispose(scmd)
CkCert::ckDispose(cert)
ProcedureReturn
EndIf
; Let's import this certificate as the "signature" key/cert in key container #6.
containerIndex.i = 6
keySpec.s = "sig"
; Note the last argument (the pin ID) is "3". This is the required PIN ID for the IDPrime MD T=0 smart card.
success = CkScMinidriver::ckImportCert(scmd,cert,containerIndex,keySpec,"3")
If success = 0
Debug CkScMinidriver::ckLastErrorText(scmd)
Else
Debug "Successfully imported the cert + private key onto the smart card."
EndIf
; Delete the context when finished with the card.
success = CkScMinidriver::ckDeleteContext(scmd)
If success = 0
Debug CkScMinidriver::ckLastErrorText(scmd)
EndIf
CkScMinidriver::ckDispose(scmd)
CkCert::ckDispose(cert)
ProcedureReturn
EndProcedure