Sample code for 30+ languages & platforms
Swift

Create Egypt ITIDA CAdES-BES .p7s Signature (with strings in-memory)

See more Egypt ITIDA Examples

Demonstrates how to create a .p7s signature that fits Egypt's ITIDA requirements.

Note: This example requires Chilkat v9.5.0.75 or greater.

Chilkat Swift Downloads

Swift

func chilkatTest() {
    var success: Bool = false

    // This example assumes the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    let crypt = CkoCrypt2()!

    let cert = CkoCert()!

    // There are many ways to load the certificate.  
    // This example was created for a customer using an ePass2003 USB token.
    // Assuming the USB token is the only source of a hardware-based private key..
    success = cert.load(fromSmartcard: "")
    if success != true {
        print("\(cert.lastErrorText!)")
        return
    }

    // Tell the crypt component to use this cert.
    success = crypt.setSigningCert(cert: cert)
    if success != true {
        print("\(crypt.lastErrorText!)")
        return
    }

    let cmsOptions = CkoJsonObject()!
    // Setting "DigestData" causes OID 1.2.840.113549.1.7.5 (digestData) to be used.
    cmsOptions.updateBool(jsonPath: "DigestData", value: true)
    cmsOptions.updateBool(jsonPath: "OmitAlgorithmIdNull", value: true)
    crypt.cmsOptions = cmsOptions.emit()

    // The CadesEnabled property applies to all methods that create CMS/PKCS7 signatures. 
    // To create a CAdES-BES signature, set this property equal to true. 
    crypt.cadesEnabled = true

    crypt.hashAlgorithm = "sha256"

    let jsonSigningAttrs = CkoJsonObject()!
    jsonSigningAttrs.updateInt(jsonPath: "contentType", value: 1)
    jsonSigningAttrs.updateInt(jsonPath: "signingTime", value: 1)
    jsonSigningAttrs.updateInt(jsonPath: "messageDigest", value: 1)
    jsonSigningAttrs.updateInt(jsonPath: "signingCertificateV2", value: 1)
    crypt.signingAttributes = jsonSigningAttrs.emit()

    // By default, all the certs in the chain of authentication are included in the signature.
    // If desired, we can choose to only include the signing certificate:
    crypt.includeCertChain = false

    // Make sure we sign the utf-8 byte representation of the JSON string
    crypt.charset = "utf-8"

    // Create the CAdES-BES signature.
    var textToSign: String? = "\"issuer\"\"address\"\"branchID\"\"0\"\"country\"\"EG\"\"regionCity..."

    crypt.encodingMode = "base64"
    var sigBase64: String? = crypt.signStringENC(str: textToSign)
    if crypt.lastMethodSuccess == false {
        print("\(crypt.lastErrorText!)")
        return
    }

    print("Base64 signature:")
    print("\(sigBase64!)")

}