Chilkat HOME .NET Core C# Android™ AutoIt C C# C++ Chilkat2-Python CkPython Classic ASP DataFlex Delphi ActiveX Delphi DLL Go Java Lianja Mono C# Node.js Objective-C PHP ActiveX PHP Extension Perl PowerBuilder PowerShell PureBasic Ruby SQL Server Swift 2 Swift 3,4,5... Tcl Unicode C Unicode C++ VB.NET VBScript Visual Basic 6.0 Visual FoxPro Xojo Plugin
(SQL Server) PKCS11 Find Certificate with Key Usage on Smart Card or USB TokenSee more PKCS11 ExamplesDemonstrates how to find and return the 1st certificate on a smart card or USB token with a desired intended key usage. Note: This example requires Chilkat v9.5.0.91 or later.
// Important: See this note about string length limitations for strings returned by sp_OAMethod calls. // CREATE PROCEDURE ChilkatSample AS BEGIN DECLARE @hr int DECLARE @iTmp0 int DECLARE @sTmp0 nvarchar(4000) -- This example requires the Chilkat API to have been previously unlocked. -- See Global Unlock Sample for sample code. -- Note: Chilkat's PKCS11 implementation runs on Windows, Linux, Mac OS X, and other supported operating systems. DECLARE @pkcs11 int EXEC @hr = sp_OACreate 'Chilkat_9_5_0.Pkcs11', @pkcs11 OUT IF @hr <> 0 BEGIN PRINT 'Failed to create ActiveX component' RETURN END EXEC sp_OASetProperty @pkcs11, 'SharedLibPath', 'aetpkss1.dll' DECLARE @success int EXEC sp_OAMethod @pkcs11, 'Initialize', @success OUT IF @success = 0 BEGIN EXEC sp_OAGetProperty @pkcs11, 'LastErrorText', @sTmp0 OUT PRINT @sTmp0 EXEC @hr = sp_OADestroy @pkcs11 RETURN END -- We need to call Discover to get the slot ID. -- (A slot is a smart card reader or USB token.) DECLARE @onlyTokensPresent int SELECT @onlyTokensPresent = 1 DECLARE @json int EXEC @hr = sp_OACreate 'Chilkat_9_5_0.JsonObject', @json OUT EXEC sp_OAMethod @pkcs11, 'Discover', @success OUT, @onlyTokensPresent, @json IF @success = 0 BEGIN EXEC sp_OAGetProperty @pkcs11, 'LastErrorText', @sTmp0 OUT PRINT @sTmp0 EXEC @hr = sp_OADestroy @pkcs11 EXEC @hr = sp_OADestroy @json RETURN END -- Make sure we have at least one slot. EXEC sp_OAMethod @json, 'SizeOfArray', @iTmp0 OUT, 'slot' IF @iTmp0 <= 0 BEGIN PRINT 'No occuplied slots.' EXEC @hr = sp_OADestroy @pkcs11 EXEC @hr = sp_OADestroy @json RETURN END -- Get the ID of the 1st slot DECLARE @slotID int EXEC sp_OAMethod @json, 'IntOf', @slotID OUT, 'slot[0].id' -- Open a session. DECLARE @readWrite int SELECT @readWrite = 1 EXEC sp_OAMethod @pkcs11, 'OpenSession', @success OUT, @slotID, @readWrite IF @success = 0 BEGIN EXEC sp_OAGetProperty @pkcs11, 'LastErrorText', @sTmp0 OUT PRINT @sTmp0 EXEC @hr = sp_OADestroy @pkcs11 EXEC @hr = sp_OADestroy @json RETURN END -- Make it an authenticated session by calling Login. -- -- If we don't authenticate, then we won't be able to see the private keys, and thus -- we won't know which certificates have an associated private key stored on the smart card. -- The smart card PIN is passed to the Login method. -- userType 1 indicates a "Normal User". DECLARE @userType int SELECT @userType = 1 DECLARE @pin nvarchar(4000) SELECT @pin = '0000' EXEC sp_OAMethod @pkcs11, 'Login', @success OUT, @userType, @pin IF @success = 0 BEGIN EXEC sp_OAGetProperty @pkcs11, 'LastErrorText', @sTmp0 OUT PRINT @sTmp0 EXEC sp_OAMethod @pkcs11, 'CloseSession', @success OUT EXEC @hr = sp_OADestroy @pkcs11 EXEC @hr = sp_OADestroy @json RETURN END -- -------------------------------------------------------------------------- DECLARE @cert int EXEC @hr = sp_OACreate 'Chilkat_9_5_0.Cert', @cert OUT -- Find a certificate with an intended key usage. -- Possible key usages to find are: -- -- DigitalSignature -- NonRepudiation -- KeyEncipherment -- DataEncipherment -- CertificateSigning -- CrlSigning -- -- To find a cert having any one of several usages, pass a comma-separated list of usages: EXEC sp_OAMethod @pkcs11, 'FindCert', @success OUT, 'keyUsage', 'NonRepudiation,DigitalSignature', @cert IF @success = 1 BEGIN EXEC sp_OAGetProperty @cert, 'SubjectCN', @sTmp0 OUT PRINT 'Cert with private key: ' + @sTmp0 END ELSE BEGIN PRINT 'No certificates having the intended key usage were found.' END -- -------------------------------------------------------------------------- -- Revert to an unauthenticated session by calling Logout. EXEC sp_OAMethod @pkcs11, 'Logout', @success OUT IF @success = 0 BEGIN EXEC sp_OAGetProperty @pkcs11, 'LastErrorText', @sTmp0 OUT PRINT @sTmp0 EXEC sp_OAMethod @pkcs11, 'CloseSession', @success OUT EXEC @hr = sp_OADestroy @pkcs11 EXEC @hr = sp_OADestroy @json EXEC @hr = sp_OADestroy @cert RETURN END -- When finished, close the session. -- It is important to close the session (memory leaks will occur if the session is not properly closed). EXEC sp_OAMethod @pkcs11, 'CloseSession', @success OUT IF @success = 0 BEGIN EXEC sp_OAGetProperty @pkcs11, 'LastErrorText', @sTmp0 OUT PRINT @sTmp0 EXEC @hr = sp_OADestroy @pkcs11 EXEC @hr = sp_OADestroy @json EXEC @hr = sp_OADestroy @cert RETURN END PRINT 'Success.' EXEC @hr = sp_OADestroy @pkcs11 EXEC @hr = sp_OADestroy @json EXEC @hr = sp_OADestroy @cert END GO |
© 2000-2023 Chilkat Software, Inc. All Rights Reserved.