CertificateRequest (String function): Difference between revisions
m (→Syntax terms: typos) |
m (fix example) |
||
| Line 90: | Line 90: | ||
</Sequence> | </Sequence> | ||
<BitString bits="576"> | <BitString bits="576"> | ||
3046024100A0277685A6EA06E94CF8B ... 0C9E9B07B24FF3D1BB5BBA6F30A9FCF0F- | |||
8F3D80AB2A09EFD020103 | 8F3D80AB2A09EFD020103 | ||
</BitString> | </BitString> | ||
| Line 101: | Line 101: | ||
</Sequence> | </Sequence> | ||
<BitString bits="512"> | <BitString bits="512"> | ||
0B8774C79100F621F6E794BDEBD47BE ... 4C410892A5573F24D25AC32374A571F633 | |||
</BitString> | </BitString> | ||
</Sequence> | </Sequence> | ||
Revision as of 23:02, 30 March 2016
Create a certificate request from a private key (String class)
[Requires Janus Network Security]
This method generates a string that contains an SSL client certificate request from an object string that contains a private key.
Syntax
%certRequest = string:CertificateRequest[( [Country= string], - [State= string], [City= string], - [Organization= string], - [OrganizationalUnit= string], - [CommonName= string], - [SignatureAlgorithm= digestAlgorithm])] Throws PKCSError
Syntax terms
| %certRequest | A String or Longstring to contain the generated signed certificate. |
|---|---|
| string | A String or Longstring that contains an RSA-generated private key. This value must be less than or equal to 2048 bits. |
| Country | This optional, name required, string argument inserts a country value into the generated certificate request. |
| State | This optional, name required, string argument inserts a state/province value into the generated certificate request. |
| City | This optional, name required, string argument inserts a locality value into the generated certificate request. |
| Organization | This optional, name required, string argument inserts an organization value into the generated certificate request. |
| OrganizationalUnit | This optional, name required, string argument inserts an organization unit (OU) value into the generated certificate request. |
| CommonName | This optional, name required, string argument inserts a common-name (CN) value into the generated certificate request. |
| SignatureAlgorithm | This optional, name required, argument is a DigestAlgorithm enumeration value. Valid options are: MD5, SHA1, SHA256.
Note: Although supported and currently the default, most modern browsers are deprecating SHA1. |
Example
The following request prints a certificate request created from an input private key that is produced by the System method GeneratedPrivateKey:
b %ls is longstring %cr is longstring %ls = %(System):GeneratedPrivateKey(Length=512) %cr = %ls:CertificateRequest(Country='USA',state='MA', city='Waltham', Organization='Rocket') %cr:derToXmlDoc:print end
The result is:
<Sequence> <Sequence> <Integer>0</Integer> <Sequence> <Set> <Sequence> <ObjectIdentifier>2.5.4.6</ObjectIdentifier> <PrintableString>USA</PrintableString> </Sequence> </Set> <Set> <Sequence> <ObjectIdentifier>2.5.4.8</ObjectIdentifier> <PrintableString>MA</PrintableString> </Sequence> </Set> <Set> <Sequence> <ObjectIdentifier>2.5.4.7</ObjectIdentifier> <PrintableString>Waltham</PrintableString> </Sequence> </Set> <Set> <Sequence> <ObjectIdentifier>2.5.4.10</ObjectIdentifier> <PrintableString>Rocket</PrintableString> </Sequence> </Set> </Sequence> <Sequence> <Sequence> <ObjectIdentifier>1.2.840.113549.1.1.1</ObjectIdentifier> <Null/> </Sequence> <BitString bits="576"> 3046024100A0277685A6EA06E94CF8B ... 0C9E9B07B24FF3D1BB5BBA6F30A9FCF0F- 8F3D80AB2A09EFD020103 </BitString> </Sequence> <ContextSpecific tag="0"/> </Sequence> <Sequence> <ObjectIdentifier>1.2.840.113549.1.1.5</ObjectIdentifier> <Null/> </Sequence> <BitString bits="512"> 0B8774C79100F621F6E794BDEBD47BE ... 4C410892A5573F24D25AC32374A571F633 </BitString> </Sequence>
See also
String methods:
- CertificateRequest
- SignedCertificate
- DerToXmlDoc
- RSAPrivateKeyToXmlDoc
- X509CertificateToXmlDoc
- X509CrlToXmlDoc
- Multiple cryptographic cipher methods
Stringlist methods:
- AppendCertificateInfo
- AppendCertificateRequest
- AppendCertificateRequestInfo
- AppendClientCertificateRequest
- AppendEncryptedSecurityData
- AppendGeneratedPrivateKey
- AppendPemData
- AppendPrivateKeyInfo
- AppendSignedCertificate
- AppendSignedClientCertificate
- CheckCertificate
- CheckCertificateRequest
- PemToString
System methods:
Socket methods: