Verify Signature API

Call this function to verify the PKCS#7 signature.

Below is the URL to access the API functions:

PUT /CentagateWS/webresources/validator/verifySignature

Parameters

No	Parameter	Occurrence	Descriptions
1	Username	Required	The user's username
2	signature	Required	The PKCS#7 attached signature encoded in Base64
3	Algorithm	Required	The Algorithm Used During The Signing. Valid Values Are: - 0: SHA-1 - 1: SHA-256 - 2: SHA-384 - 3: SHA-512
4	plainText	Required	The plain text of the signed string encoded in Base64

Sample Code

As in below there are some examples of source code of access the API functions:

Java

public static void main(String[] args) {

	ClientConfig config = new DefaultClientConfig ();
	Client client = Client.create ( config );
	WebResource service = client.resource ("https://<domain_name>/CentagateWS/webresources");
			
	Gson gson = new Gson();

	HashMap<String, String> map = new HashMap<String, String>();
	map.put("username", "username");
	map.put("signature", "signature");
	map.put("algorithm", "algorithm");
	map.put("plainText", "plainText");	

	ClientResponse response = service.path("validator").path("verifySignature").accept(MediaType.APPLICATION_JSON).put(ClientResponse.class, gson.toJson(map));
				
	String retJson = response.getEntity(String.class);

	HashMap<String, Object> returnData = (HashMap<String, Object>) gson.fromJson(retJson, HashMap.class);

	String code = returnData.get("code").toString();
	String message = returnData.get("message").toString();
	String object = returnData.get("object").toString();
}

public static String convertHmacSha256(String secretKey, String params) throws NoSuchAlgorithmException, 
            InvalidKeyException,IllegalStateException, SignatureException, NoSuchProviderException, Exception
{
	try
	{
		final SecretKeySpec secret_key = new SecretKeySpec ( StringUtils.getBytesUtf8 ( secretKey ) , "HmacSHA256" );
		final Mac mac = Mac.getInstance ( "HmacSHA256" );
		mac.init ( secret_key );
		final byte[] bytes = mac.doFinal ( StringUtils.getBytesUtf8 ( params ) );
		return Hex.encodeHexString ( bytes );
	}
	catch ( NoSuchAlgorithmException e )
	{
		throw new NoSuchAlgorithmException ( e );
	}
	catch ( InvalidKeyException e )
	{
		throw new InvalidKeyException ( e );
	}
	catch ( IllegalStateException e )
	{
		throw new IllegalStateException ( e );
	}
	catch ( Exception e )
	{
		throw new Exception ( e );
	}
}

Node Js

const https = require('https')

var crypto = require('crypto');
var username = "<username>";
var signature = "<signature>";
var algorithm = "<algorithm>";
var plainText = "<plainText>";   

const data = JSON.stringify({
	username: username,
	signature: signature,
	algorithm: algorithm,
	plainText: plainText
})

const options = {
	hostname: "<domain_name>",
	port: 443,
	path:'/CentagateWS/webresources/validator/verifySignature',
	method: 'PUT',
	headers: {
		'Accept': 'application/json',
		'Content-Type': 'application/json',
	}
}

const req = https.request(options, res =>{
	console.log(`HTTP Status Code: ${res.statusCode}`)
	var body = '';
	res.on('data', function(d){
		
	body += d;
	var parsed = JSON.parse(body);
	
	if (parsed.code == 0){
	   console.log('Authentication Succeed');
	   console.log('Response:');
	   console.log(body);
	}
	else {
	  console.log('Authentication Fail, ' +'Message:' + parsed.message);
	  console.log('Code:' + parsed.code); 
	}
		
	})
})

req.on('ERROR', error => {
	console.error(error)
})

req.write(data)
req.end()

PHP

<?php

    $url = 'https://<domain_name>/CentagateWS/webresources/validator/verifySignature';
    
    $ch = curl_init($url);
    
    $username = "<username>";
    $signature = "<signature>";
    $algorithm = "<algorithm>";
    $plainText = "<plainText>";
    
    $jsonData = array (
    	'username'=> $username,
    	'signature'=> $signature,
    	'algorithm'=> $algorithm,
    	'plainText'=> $plainText
    	
    );
    
    $jsonDataEncoded = json_encode($jsonData);
    
    curl_setopt($ch, CURLOPT_CUSTOMREQUEST, 'PUT');
    curl_setopt($ch, CURLOPT_POSTFIELDS, $jsonDataEncoded);
    curl_setopt($ch, CURLOPT_HTTPHEADER, array('Content-Type: application/json'));
    curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
    
    $result = curl_exec($ch);
    
    
    $obj = json_decode($result); 
    if ($obj->{'code'} != 0){
    	print "Authentication fail";
    	print "Message: ".$obj->{'message'}; 
    	echo " <br>"; 
    	print "Code: ".$obj->{'code'};
    }
    else {
    	print "Authentication succeed";
    	echo " <br>"; 
    	print "Message: ".$obj->{'message'}; 
    	echo " <br>"; 
    	print "Code: ".$obj->{'code'}; 
    	echo " <br>"; 
    	print "Result:" ;
    	echo " <br>"; 
    	print $result;
    }
    
    curl_close($ch);

?>

Error Code

Return Code	Details
0	Success
10001	Permission not allowed
10002	Invalid Input
10003	DB protection error
10004	DB error
10011	Crypto error
22002	User not found
26010	Certificate is not owned by the user
26011	Certificate revoked
55000	Invalid signature