Capicom Java wrapper for Microsoft capicom library
Official doc: http://msdn.microsoft.com/en-US/en-en/library/windows/desktop/aa382434(v=vs.85).aspx
On 32-bit platform:
- Download CAPICOM – http://www.microsoft.com/en-us/download/details.aspx?id=25281
- Open an administrative command prompt
- Execute regsvr32.exe capicom.dll
On 64-bit platform:
- Download CAPICOM – http://www.microsoft.com/en-us/download/details.aspx?id=25281
- Open an administrative command prompt
- cd to "C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2 SDK\Lib\X86"
- copy CAPICOM.DLL %windir%\syswow64
- %windir%\syswow64\regsvr32.exe %windir%\syswow64\capicom.dll
Add in your project:
Repository:
<repository>
<id>capicom-wrapper-mvn-repo</id>
<url>https://raw.github.com/creepid/capicom-wrapper/mvn-repo/</url>
<snapshots>
<enabled>true</enabled>
<updatePolicy>always</updatePolicy>
</snapshots>
</repository>And dependency:
<dependency>
<groupId>by.creepid</groupId>
<artifactId>capicom-wrapper</artifactId>
<version>0.2</version>
</dependency>Or just download the Jar-file.
All the examples may be found here: https://github.com/creepid/capicom-wrapper-examples
Getting certificates from windows store:
//2 - storeLocation
//"My" - storeName
//2 - openMode
CapicomStore store = new CapicomStore(2, "My", 2);
CapicomCertificate[] certs = store.getCertificates().getAll();
for (CapicomCertificate capicomCertificate : certs) {
//TO DO SMTH
}Encryption:
CapicomEncrypted capicomEncrypted = new CapicomEncrypted();
capicomEncrypted.setAlgoritmName();
capicomEncrypted.setContent("test");
capicomEncrypted.setSecret("test");
String encrypt = capicomEncrypted.encrypt();
System.out.println("Encrypted: " + encrypt);
CapicomEncrypted capicomDecrypted = new CapicomEncrypted();
capicomDecrypted.setAlgoritmName();
capicomDecrypted.setSecret("test");
capicomDecrypted.decrypt(encrypt);
String decrypt = capicomDecrypted.getContent();
System.out.println("Decrypted: " + decrypt);Sign operation:
//2 - storeLocation
//"My" - storeName
//2 - openMode
CapicomStore store = new CapicomStore(2, "My", 2);
//1 - certificate number in windows store
CapicomCertificate cert = store.getCertificates().getAll()[1];
CapicomSigner signer = new CapicomSigner();
signer.setCertificate(cert);
CapicomSignedData signedData = new CapicomSignedData();
//"test" - signing string
signedData.setContent("test");
CapicomAttribute signingTime = new CapicomAttribute();
//Add signing time attribute, see CapicomAttributeEnum
signingTime.setName(CapicomAttributeEnum.CAPICOM_AUTHENTICATED_ATTRIBUTE_SIGNING_TIME);
signingTime.setValue(new Date());
signer.getAuthenticatedAttributes().add(signingTime);
//return signature, throws InvalidCertificate otherwice
String signature = signedData.sign(signer, true);Verify operation:
String signature = "..."; //signature in base64
boolean isDetached = true;
CapicomSignedData signedData = new CapicomSignedData();
signedData.setContent("test");
try {
signedData.verify(signature, isDetached);
} catch (InvalidSignature ex) {
//in wrong signature case
}
//get certificate information
CapicomCertificate cert = signedData.getCertificates().getAll()[0];
cert.display();
//get subject
String subject = signedData.getCertificates().getAll()[0].getSubjectName();
CapicomSigner signer = signedData.getSigners()[0];
CapicomAttribute attr = signer.getAuthenticatedAttributes().getAll()[0];
//sign date...
Date date = attr.getValue().getDateContent();Getting Java java.security.cert.X509Certificate:
CapicomCertificate[] certs = ...;
for (CapicomCertificate capicomCertificate : certs) {
X509Certificate x509Cert = capicomCertificate.getX509Certificate();
//...
}