Sample code for 30+ languages & platforms
CkPython

POP3 Read S/MIME Encrypted Email

Read S/MIME encrypted email.

Chilkat CkPython Downloads

CkPython
import sys
import chilkat

success = False

# This example assumes the Chilkat API to have been previously unlocked.
# See Global Unlock Sample for sample code.

# The mailman object is used for receiving (POP3) 
# and sending (SMTP) email.
mailman = chilkat.CkMailMan()

# Set the POP3 server's hostname
mailman.put_MailHost("pop.example.com")

# Set the POP3 login/password.
mailman.put_PopUsername("myLogin")
mailman.put_PopPassword("myPassword")

# If running on Microsoft Windows, the Chilkat mailman
# will automatically search the registry-based certificate stores
# for matching certificates and private keys required for
# decryption.  However, on Linux, MAX OS X, and other
# operating systems, no such thing exists.  Therefore, you'll 
# need to specify one or more PFX (.p12 / .pfx) files as
# sources for locating the certs required for decyrption.
success = mailman.AddPfxSourceFile("/pfxFiles/certs_and_keys_1.pfx","pfxPassword1")
if (success == False):
    print(mailman.lastErrorText())
    sys.exit()

success = mailman.AddPfxSourceFile("/pfxFiles/certs_and_keys_2.pfx","pfxPassword2")
if (success == False):
    print(mailman.lastErrorText())
    sys.exit()

# ...
# Note: On MS Windows, it is not required to provide PFX sources
# if the needed certs and private keys are already installed
# on the system (in the registry-based certificate stores).

# Copy the all email from the user's POP3 mailbox 
# into a bundle object.  The email remains on the server.
bundle = chilkat.CkEmailBundle()
keepOnServer = True
headersOnly = False
# Irrelevent because we are NOT downloading headers-only
numBodyLines = 0
success = mailman.FetchAll(keepOnServer,headersOnly,numBodyLines,bundle)
if (success == False):
    print(mailman.lastErrorText())
    sys.exit()

# S/MIME security envelopes are automatically "unwrapped" 
# when a message is retrieved from the server. Signed emails are automatically verified, and 
# encrypted emails are automatically decrypted, restoring the email to the original state before 
# signing and/or encrypting. Information about the signing and encrypting certificates can be 
# retrieved from the Email object (methods: GetSignedByCert, GetEncryptedByCert; 
# properties: SignedBy, EncryptedBy, SignaturesValid, Decrypted, ReceivedSigned, 
# ReceivedEncrypted).

# Loop over the bundle
email = chilkat.CkEmail()
i = 0
while i < bundle.get_MessageCount() :

    bundle.EmailAt(i,email)

    print(email.ck_from())
    print(email.subject())

    # At this point, if the email was signed and/or encrypted, it is already "unwrapped", i.e.
    # the email is already decrypted and in a state as if it were never signed or encrypted.
    # You may check to see if the email was received encrypted or signed, and if so,
    # whether it was successfully unwrapped and who signed or encrypted it:
    if (email.get_ReceivedEncrypted() == True):

        print("This email was encrypted when received.")
        if (email.get_Decrypted() == True):
            print("This email was successfully decrypted.  It was encrypted by:")
            print(email.encryptedBy())
        else:
            print("This email was not decrypted.")

    if (email.get_ReceivedSigned() == True):

        print("This email was signed when received.")
        if (email.get_SignaturesValid() == True):
            print("The signature was verified.  It was signed by:")
            print(email.signedBy())
        else:
            print("The signature verification failed.")

    # The email's body, HTML body, attachments, etc.
    # are decrypted and available just like any non-encrypted email.

    print("--")

    i = i + 1