Sample code for 30+ languages & platforms
PureBasic

ScMinidriver - Import a Certificate to IDPrime MD T=0 Smart Card

See more ScMinidriver Examples

Demonstrates how to import a certificate and its private key to a key container on an ID Prime MD T=0 smartcard.

Note: Requires Chilkat v9.5.0.88 or later. This example only runs on Windows because ScMinidriver is a Windows-only class.

Chilkat PureBasic Downloads

PureBasic
IncludeFile "CkCert.pb"
IncludeFile "CkScMinidriver.pb"

Procedure ChilkatExample()

    success.i = 0

    ; This example requires the Chilkat API to have been previously unlocked.
    ; See Global Unlock Sample for sample code.

    scmd.i = CkScMinidriver::ckCreate()
    If scmd.i = 0
        Debug "Failed to create object."
        ProcedureReturn
    EndIf

    ; Reader names (smart card readers or USB tokens) can be discovered
    ; via List Readers or Find Smart Cards
    readerName.s = "SCM Microsystems Inc. SCR33x USB Smart Card Reader 0"
    success = CkScMinidriver::ckAcquireContext(scmd,readerName)
    If success = 0
        Debug CkScMinidriver::ckLastErrorText(scmd)
        CkScMinidriver::ckDispose(scmd)
        ProcedureReturn
    EndIf

    ; If successful, the name of the currently inserted smart card is available:
    Debug "Card name: " + CkScMinidriver::ckCardName(scmd)

    ; The IDPRime MD smart card has 4 different PIN roles:
    ; "user" -- Primary Card PIN
    ; "admin" -- Administrator PIN
    ; "3" -- Digital Signature PIN
    ; "4" -- Unblock only PIN (PUK)
    ; To import a certificate to the "IDPrime MD T=0" smart card, we must first PIN authenticate using "user", and then also PIN authenticate using "3" (the Digital Signature PIN)
    pinId.s = "user"
    ; (Of course, use your PIN which may be different than "0000")
    retval.i = CkScMinidriver::ckPinAuthenticate(scmd,pinId,"0000")
    If retval <> 0
        Debug "PIN Authentication failed."
        CkScMinidriver::ckDeleteContext(scmd)
        CkScMinidriver::ckDispose(scmd)
        ProcedureReturn
    EndIf

    cert.i = CkCert::ckCreate()
    If cert.i = 0
        Debug "Failed to create object."
        ProcedureReturn
    EndIf

    ; Load the cert + private key from a .p12/.pfx
    ; We got this .p12 from https://badssl.com/download/
    password.s = "badssl.com"
    success = CkCert::ckLoadPfxFile(cert,"qa_data/pfx/badssl.com-client.p12",password)
    If success = 0
        Debug CkCert::ckLastErrorText(cert)
        CkScMinidriver::ckDeleteContext(scmd)
        CkScMinidriver::ckDispose(scmd)
        CkCert::ckDispose(cert)
        ProcedureReturn
    EndIf

    ; Also authenticate using "3", the digital signature PIN.
    ; (Of course, use your PIN which may be different than "12345678")
    retval = CkScMinidriver::ckPinAuthenticate(scmd,"3","12345678")
    If retval <> 0
        Debug "PIN Authentication failed."
        CkScMinidriver::ckDeleteContext(scmd)
        CkScMinidriver::ckDispose(scmd)
        CkCert::ckDispose(cert)
        ProcedureReturn
    EndIf

    ; Let's import this certificate as the "signature" key/cert in key container #6.
    containerIndex.i = 6
    keySpec.s = "sig"
    ; Note the last argument (the pin ID) is "3".  This is the required PIN ID for the IDPrime MD T=0 smart card.
    success = CkScMinidriver::ckImportCert(scmd,cert,containerIndex,keySpec,"3")
    If success = 0
        Debug CkScMinidriver::ckLastErrorText(scmd)
    Else
        Debug "Successfully imported the cert + private key onto the smart card."
    EndIf

    ; Delete the context when finished with the card.
    success = CkScMinidriver::ckDeleteContext(scmd)
    If success = 0
        Debug CkScMinidriver::ckLastErrorText(scmd)
    EndIf



    CkScMinidriver::ckDispose(scmd)
    CkCert::ckDispose(cert)


    ProcedureReturn
EndProcedure