Sample code for 30+ languages & platforms
Tcl

Set the Decryption Certificate for MailMan

See more POP3 Examples

Demonstrates the Chilkat MailMan.SetDecryptCert method, which explicitly specifies the certificate to use when decrypting encrypted email. The certificate must correspond to the recipient certificate used to encrypt the message and must have access to its private key. This example loads the certificate from a PFX, registers it, and fetches a message that Chilkat can then decrypt.

Background: Decrypting S/MIME mail requires the recipient's private key, so the certificate you supply must carry it — which is why a PFX (certificate + private key in one password-protected file) is used here. Chilkat can find installed certificates automatically on Windows and macOS; SetDecryptCert is how you point it at a specific one instead. If the certificate and key live in separate files, use SetDecryptCert2.

Chilkat Tcl Downloads

Tcl

load ./chilkat.dll

set success 0

#  Demonstrates the MailMan.SetDecryptCert method, which explicitly specifies the certificate
#  to use when decrypting encrypted email.  The certificate must correspond to the recipient
#  certificate used to encrypt the message, and must have access to its private key.

set mailman [new_CkMailMan]

#  Configure the POP3 server connection.
CkMailMan_put_MailHost $mailman "pop.example.com"
CkMailMan_put_MailPort $mailman 995
CkMailMan_put_PopSsl $mailman 1
CkMailMan_put_PopUsername $mailman "user@example.com"
CkMailMan_put_PopPassword $mailman "myPassword"

#  Load the certificate together with its private key from a PFX file.
set cert [new_CkCert]

set success [CkCert_LoadPfxFile $cert "qa_data/certs/decryption.pfx" "pfx_password"]
if {$success == 0} then {
    puts [CkCert_lastErrorText $cert]
    delete_CkMailMan $mailman
    delete_CkCert $cert
    exit
}

#  Specify the certificate to use when decrypting downloaded email.
set success [CkMailMan_SetDecryptCert $mailman $cert]
if {$success == 0} then {
    puts [CkMailMan_lastErrorText $mailman]
    delete_CkMailMan $mailman
    delete_CkCert $cert
    exit
}

#  Fetch a message; if it is encrypted, Chilkat decrypts it using this certificate.
set email [new_CkEmail]

set success [CkMailMan_FetchOne $mailman 0 0 1 $email]
if {$success == 0} then {
    puts [CkMailMan_lastErrorText $mailman]
    delete_CkMailMan $mailman
    delete_CkCert $cert
    delete_CkEmail $email
    exit
}

puts "ReceivedEncrypted = [CkEmail_get_ReceivedEncrypted $email]"
puts "Decrypted = [CkEmail_get_Decrypted $email]"

#  Note: The path "qa_data/certs/decryption.pfx" is a relative local filesystem path,
#  relative to the current working directory of the running application.

#  Note: Explicitly connecting/authenticating is optional.  Chilkat MailMan automatically
#  connects and authenticates -- using the property settings above -- whenever a server
#  operation requires it.  Calling the explicit connect/authenticate methods can still be
#  helpful to determine whether a failure occurs while connecting or while authenticating.

delete_CkMailMan $mailman
delete_CkCert $cert
delete_CkEmail $email