AYUDA EN LÍNEA
 WINDEVWEBDEV Y WINDEV MOBILE
Este contenido se ha traducido automáticamente.  Haga clic aquí  para ver la versión en inglés.
Ayuda / WLanguage / Funciones WLanguage / Funciones estándar / Funciones de certificados
  • Validity of certificate (syntax 1)
WINDEV
WindowsLinuxJavaReportes y ConsultasCódigo de Usuario (UMC)
WEBDEV
WindowsLinuxPHPWEBDEV - Código Navegador
WINDEV Mobile
AndroidWidget Android iPhone/iPadIOS WidgetApple WatchMac Catalyst
Otros
Procedimientos almacenados
Creates the signature of a character string.
Ejemplo
WINDEVCódigo de Usuario (UMC) 
// String signature according to a certificate installed on the computer 
// Warning: this syntax uses a variable of type Certificate. 
// This syntax is not compatible with the compliance 
// of accounting software (NF525 standard).
// The example corresponding to the NF525 standard is available in 
// the additional examples

MyCertificate is Certificate

// Open the certificate picker of Windows
MyCertificate = CertificateSelect()
// Cancellation or error
IF MyCertificate.Name = "" THEN
	RETURN
END

// Checks the certificate validity for the signature
IF MyCertificate.ValidForSignature = False THEN
	Info("The selected certificate cannot be used to generate a signature.")
	RETURN
END

// Retrieve the buffer containing the signature
bufSignature is Buffer
bufSignature = CertificateSignString("Character string to sign", MyCertificate)

// Retrieve the certificate found in the signature buffer
MyExtractedCertificate is Certificate
MyExtractedCertificate = CertificateExtract(buffSignature)

// Manage the errors
IF MyExtractedCertificate = Null THEN
	RETURN
END

// Open the window for certificate properties
CertificateOpenProperties(MyExtractedCertificate)
Sintaxis
WINDEVCódigo de Usuario (UMC)

Signing a string via a Certificate variable Ocultar los detalles

<Result> = CertificateSignString(<String to Sign> , <Certificate>)
<Result>: Buffer
Signature of string (in PKCS7 format (DER)). This buffer can be used later by CertificateCheckString to check the correspondence between the signature and the string.
<String to Sign>: Ansi or Unicode character string or Buffer
Character string to sign.
<Certificate>: Certificate variable
Name of the Certificate variable containing the certificate that will be used to sign the string.

Signing a string via a numeric signature Ocultar los detalles

<Result> = CertificateSignString(<String to Sign> , <Certificate file> , <Password> , <Option>)
<Result>: Buffer
Signature of string (in requested format). This buffer can be used later by CertificateCheckString to check the correspondence between the signature and the string.
<String to Sign>: Ansi or Unicode character string or Buffer
Character string to sign.
<Certificate file>: Character string or Buffer
  • Full path to a PKCS12 file (.p12/.pfx) containing the private key and the certificates. This file can be included in the application library (WDL file).
  • Buffer containing the private key and certificates.
    If the certSignatureOnly constant is used, this buffer can contain only the private key.
<Password>: Character string or Secret string
Password that will be used to decrypt the certificate file if this one is password-protected.
Novedad versión 2025
Cadenas secretas: Si utiliza el almacén de cadenas secretas, el tipo de cadena secreta utilizado para este parámetro debe ser "ANSI o Unicode string".
Para obtener más información sobre las cadenas secretas y el almacén, consulte Almacén de cadenas secretas.
<Option>: Integer constant (or combination of constants)
Allows you to specify:
  • the hashing algorithm used (optional for a signature in PKCS7 format):
    certMD5MD5 algorithm.
    Not recommended because unreliable. This type of algorithm is not allowed with the "elliptic curve" signatures.
    certSHA160SHA1 algorithm.
    certSHA256SHA2 algorithm. A 256-bit result is produced.
    certSHA384SHA-384 algorithm. A 384-bit result is produced.
    This type of algorithm is not supported by the "DSA" signatures.
    certSHA512SHA-512 algorithm. A 512-bit result is produced.
    This type of algorithm is not supported by the "DSA" signatures.
  • the signature format:
    certPKCS7EnvelopedContainer in PKCS7 format (DER) containing the signature, the string of certificates and the signed data.
    Note: if this constant is used, the hash algorithm is optional. If it is not specified, an appropriate algorithm will be automatically chosen.
    certPKCS7Enveloped + certPKCS7PEMContainer in PKCS7 format (PEM) containing the signature, the string of certificates and the signed data.
    Note: if this constant is used, the hash algorithm is optional. If it is not specified, an appropriate algorithm will be automatically chosen.
    certPKCS7WithCertificateContainer in PKCS7 format (DER) containing the signature and the string of certificates.
    Note: if this constant is used, the hash algorithm is optional. If it is not specified, an appropriate algorithm will be automatically chosen.
    certPKCS7WithCertificate + certPKCS7PEMContainer in PKCS7 format (PEM) containing the signature and the string of certificates.
    Note: if this constant is used, the hash algorithm is optional. If it is not specified, an appropriate algorithm will be automatically chosen.
    certPKCS7WithoutCertificateContainer in PKCS7 format (DER) containing the signature.
    Note: if this constant is used, the hash algorithm is optional. If it is not specified, an appropriate algorithm will be automatically chosen.
    certPKCS7WithoutCertificate + certPKCS7PEMContainer in PKCS7 format (PEM) containing the signature.
    Note: if this constant is used, the hash algorithm is optional. If it is not specified, an appropriate algorithm will be automatically chosen.
    certSignatureOnlyThe output contains only the raw signature, without any container.
    This options is required for the compliance of accountancy software (NF525 standard). With this option, only the key section of PFX file will be used (the certificate section containing the date will not be used).
    Caution: if this constant is used, the hash algorithm must be specified.
Note: The signature algorithm is determined by the private key (RSA, DSA, Elliptic curve)..
Observaciones

Validity of certificate (syntax 1)

Before signing a string, it is recommended to check the validity of the certificate (ValidForSignature property of the Certificate variable). This property is used to find out whether the certificate owns a private key as well as all the characteristics required to perform a signature. CertificateSignString returns an error if this property is set to False.
Clasificación Lógica de negocio / UI: Lógica de negocio
Componente: wd300std.dll
Ver también
Versión mínima requerida
  • Versión 16
Esta página también está disponible para…
Comentarios
Haga clic en [Agregar] para publicar un comentario

Última modificación: 16/05/2025

Señalar un error o enviar una sugerencia | Ayuda local