AppendClientCertificateRequest (Stringlist function): Difference between revisions
| m →See also:  add template for SL crypto methods | m add links | ||
| Line 1: | Line 1: | ||
| {{Template:Stringlist:AppendClientCertificateRequest subtitle}} | {{Template:Stringlist:AppendClientCertificateRequest subtitle}} | ||
| This [[Notation conventions for methods#Callable functions|callable]] method generates an SSL client certificate request from a given client public key, and it adds the request lines to the end of a <var>Stringlist</var>. | This [[Notation conventions for methods#Callable functions|callable]] method generates an SSL client-certificate request from a given client public key, and it adds the request lines to the end of a <var>Stringlist</var>. | ||
| For some background information concerning certificates, see [https://en.wikipedia.org/wiki/Public-key_cryptography Public-key cryptography] and [https://en.wikipedia.org/wiki/Certificate_signing_request Certificate signing request]. | |||
| ==Syntax== | ==Syntax== | ||
| Line 8: | Line 10: | ||
| <table class="syntaxTable"> | <table class="syntaxTable"> | ||
| <tr><th>%rc</th> | <tr><th>%rc</th> | ||
| <td>An, optional, numeric variable that is set to zero if the function is a success. The possible return codes are described elsewhere in [[#Return codes| | <td>An, optional, numeric variable that is set to zero if the function is a success. The possible return codes are described elsewhere in [[#Return codes|Return codes]].</td></tr> | ||
| <tr><th>sl</th> | <tr><th>sl</th> | ||
| <td>Stringlist object</td></tr> | <td>A <var>Stringlist</var> object to contain the certificate request that is produced.</td></tr> | ||
| <tr><th><var>PublicKey</var></th> | <tr><th><var>PublicKey</var></th> | ||
| <td>This [[Notation conventions for methods#Named parameters|name allowed]] parameter is a <var>Stringlist</var> object that contains an RSA-generated client public key.</td></tr> | <td>This [[Notation conventions for methods#Named parameters|name allowed]] parameter is a string or <var>Stringlist</var> object that contains an RSA-generated client public key.</td></tr> | ||
| <tr><th><var>Country</var></th> | <tr><th><var>Country</var></th> | ||
| <td>This name allowed, optional, string argument inserts a country value into the generated certificate request. </td></tr> | <td>This name allowed, optional, string argument inserts a country value into the generated certificate request. </td></tr> | ||
| Line 33: | Line 37: | ||
| <tr><th><var>Challenge</var></th> | <tr><th><var>Challenge</var></th> | ||
| <td>This name allowed, optional, string argument inserts the expected authentication challenge data/password. You might need to identify the type of authentication, for example, certificate-based authentication.</td></tr> | <td>This name allowed, optional, string argument inserts the expected authentication challenge data/password. You might need to identify the type of authentication, for example, certificate-based authentication.</td></tr> | ||
| </table> | |||
| <tr><th><var>SignatureAlgorithm</var></th> | |||
| <td>This optional, [[Notation conventions for methods#Named parameters|name required]], argument is a <var>[[DigestAlgorithm enumeration|DigestAlgorithm]]</var> enumeration value.  Valid options are: <var>MD5</var>, <var>SHA1</var>, <var>SHA256</var>. The default value is <var>SHA256</var> as of Model 204 7.7 (and zap maintenance for versions 7.6 and 7.5). | |||
| <p class="note"><b>Note:</b> Although supported and formerly the default, most modern browsers are deprecating <var>SHA1</var>.</p></td></tr></table> | |||
| ===Return codes=== | ===Return codes=== | ||
| <table> | <table class="thJustBold"> | ||
| <tr><th>0</th><td>All is well.</td></tr> | <tr><th>0</th><td>All is well.</td></tr> | ||
| <tr><th>3</th><td>Out of CCATEMP.</td></tr> | <tr><th>3</th><td>Out of CCATEMP.</td></tr> | ||
| Line 50: | Line 57: | ||
| ==Examples== | ==Examples== | ||
| For a closely related example, see the <var>AppendCertificateRequest</var> [[AppendCertificateRequest (Stringlist function)#Examples| | For a closely related example, see the <var>AppendCertificateRequest</var> [[AppendCertificateRequest (Stringlist function)#Examples|Examples]] section. | ||
| ==See also== | ==See also== | ||
Revision as of 19:18, 31 March 2016
Add client certificate request to a Stringlist (Stringlist class)
[Requires Janus Network Security]
This callable method generates an SSL client-certificate request from a given client public key, and it adds the request lines to the end of a Stringlist.
For some background information concerning certificates, see Public-key cryptography and Certificate signing request.
Syntax
[%rc =] sl:AppendClientCertificateRequest( [PublicKey=] string, - [[Country=] string], - [[State=] string], - [[City=] string], - [[Organization=] string], - [[OrganizationalUnit=] string], - [[CommonName=] string], - [[Challenge=] string], - [SignatureAlgorithm= digestAlgorithm])
Syntax terms
| %rc | An, optional, numeric variable that is set to zero if the function is a success. The possible return codes are described elsewhere in Return codes. | 
|---|---|
| sl | A Stringlist object to contain the certificate request that is produced. | 
| PublicKey | This name allowed parameter is a string or Stringlist object that contains an RSA-generated client public key. | 
| Country | This name allowed, optional, string argument inserts a country value into the generated certificate request. | 
| State | This name allowed, optional, string argument inserts a state/province value into the generated certificate request. | 
| City | This name allowed, optional, string argument inserts a locality value into the generated certificate request. | 
| Organization | This name allowed, optional, string argument inserts an organization value (for example, a company name) into the generated certificate request. | 
| OrganizationalUnit | This name allowed, optional, string argument inserts an organization unit (OU) value into the generated certificate request. For example, a department within a company. | 
| CommonName | This name allowed, optional, string argument inserts a common-name (CN) value into the generated certificate request. For example, a host name like "www.sirius-software.com". | 
| Challenge | This name allowed, optional, string argument inserts the expected authentication challenge data/password. You might need to identify the type of authentication, for example, certificate-based authentication. | 
| SignatureAlgorithm | This optional, name required, argument is a DigestAlgorithm enumeration value.  Valid options are: MD5, SHA1, SHA256. The default value is SHA256 as of Model 204 7.7 (and zap maintenance for versions 7.6 and 7.5). Note: Although supported and formerly the default, most modern browsers are deprecating SHA1. | 
Return codes
| 0 | All is well. | 
|---|---|
| 3 | Out of CCATEMP. | 
| 5 | Stringlist identifier missing. | 
| 6 | Invalid Stringlist identifier. | 
| 7 | Insufficient storage. | 
| 10 | Public key Stringlist identifier missing. | 
| 11 | Invalid public key Stringlist identifier. | 
| 12 | Invalid public key. | 
| 13 | Challenge data mismatch. | 
| 14 | Bad public key/challenge signature. | 
Examples
For a closely related example, see the AppendCertificateRequest Examples section.
See also
Stringlist methods:
- AppendCertificateInfo
- AppendCertificateRequest
- AppendCertificateRequestInfo
- AppendClientCertificateRequest
- AppendEncryptedSecurityData
- AppendGeneratedPrivateKey
- AppendPemData
- AppendPrivateKeyInfo
- AppendSignedCertificate
- AppendSignedClientCertificate
- CheckCertificate
- CheckCertificateRequest
- PemToString
String methods:
- CertificateRequest
- SignedCertificate
- DerToXmlDoc
- RSAPrivateKeyToXmlDoc
- X509CertificateToXmlDoc
- X509CrlToXmlDoc
- Multiple cryptographic cipher methods
System methods:
Socket methods: