public bool Logout(authTokenType token)
{
xmCryptoService client = new xmCryptoService();
try
{
logout log = new logout();
log.AuthToken = token;
client.logout(log);
return(true);
}
catch (Exception ex)
{
Log.Error("Error al intentar realizar logout: " + ex);
return(false);
}
finally
{
client.Dispose();
//if (client.State == CommunicationState.Faulted)
// client.Abort();
//else
// client.Close();
}
}
public bool CreateSectretKey(ref authTokenType token, string keyAlias)
{
LunaXml.xmCryptoService client = new xmCryptoService();
try
{
generateSecretKey sec = new generateSecretKey();
sec.AuthToken = token;
sec.KeyAlgorithm = KeyAlgorithmType.DES3;
sec.KeyAlias = keyAlias;
sec.KeySize = "1024";
sec.ReturnKeyInfo = true;
generateSecretKeyResponse res = client.generateSecretKey(sec);
token = res.AuthToken;
if (res.Result.ResultMajor != null && res.Result.ResultMajor == "urn:oasis:names:tc:dss:resultmajor:Success")
{
return(true);
}
else
{
Log.Error((res.Result.ResultMessage != null ? res.Result.ResultMessage.Value: ""));
return(false);
}
}
catch (Exception ex)
{
Log.Error("Error al crear la llave privada " + ex);
return(false);
}
finally
{
client.Dispose();
}
}
public bool GenerarPardeLlaves(ref authTokenType token, int tamaño, string alias, KeyAlgorithmType algoritmo)
{
xmCryptoService client = new xmCryptoService();
try
{
generateKeyPair keyPair = new generateKeyPair();
generateKeyPairResponse res = new generateKeyPairResponse();
keyPair.KeyAlgorithm = KeyAlgorithmType.RSA;
keyPair.KeySize = tamaño.ToString();
keyPair.AuthToken = token;
keyPair.KeyAlias = alias;
res = client.generateKeyPair(keyPair);
token = res.AuthToken;
if (res.Result.ResultMajor != null && res.Result.ResultMajor == "urn:oasis:names:tc:dss:resultmajor:Success")
{
return(true);
}
else
{
Log.Error((res.Result.ResultMessage != null ? res.Result.ResultMessage.Value : ""));
return(false);
}
}
catch (Exception ex)
{
Log.Error("Error al intentar generar par de llaves: " + ex);
return(false);
}
}
public string Firmar(ref authTokenType token, string texto, string alias, SignatureModeType tipodefirma)
{
LunaXml.xmCryptoService client = new xmCryptoService();
try
{
sign textoafirmar = new sign();
textoafirmar.AuthToken = token;
textoafirmar.SignatureModeSpecified = true;
textoafirmar.DataToSign = Convert.ToBase64String(Encoding.UTF8.GetBytes(texto));
textoafirmar.SignatureMode = tipodefirma;
textoafirmar.SigningKeyAlias = alias;
signResponse respuesta = client.sign(textoafirmar);
token = respuesta.AuthToken;
if (respuesta.Result.ResultMajor != null && respuesta.Result.ResultMajor == "urn:oasis:names:tc:dss:resultmajor:Success")
{
return(respuesta.Signature);
}
else
{
Log.Error((respuesta.Result.ResultMessage != null ? respuesta.Result.ResultMessage.Value : ""));
return(null);
}
}
catch (Exception ex)
{
Log.Error("Error al intentar firmar: " + ex);
return(null);
}
finally
{
client.Dispose();
}
}
public bool BorrarObjeto(ref authTokenType token, string alias)
{
LunaXml.xmCryptoService client = new xmCryptoService();
try
{
deleteObject del = new deleteObject();
del.AuthToken = token;
del.ObjectAlias = alias;
deleteObjectResponse res = client.deleteObject(del);
token = res.AuthToken;
if (res.Result.ResultMajor != null && res.Result.ResultMajor == "urn:oasis:names:tc:dss:resultmajor:Success")
{
return(true);
}
else
{
return(false);
}
}
catch (Exception ex)
{
Log.Error("Error al crear la llave privada " + ex);
return(false);
}
finally
{
client.Dispose();
}
}
public bool GenerarCsr(ref authTokenType token, string privateKeyalias, string publicKeyAlias, string subject, string fileName, string challenge)
{
LunaXml.xmCryptoService client = new xmCryptoService();
try
{
byte[] modulus = new byte[] {};
byte [] exponent = new byte[] {};
this.Extraer(ref token, publicKeyAlias, ref modulus, ref exponent);
RsaKeyParameters param = new RsaKeyParameters(false, new BigInteger(modulus), new BigInteger(exponent));
DerSet derset = null;
if (challenge != null)
{
ChallengePassword chpass = new ChallengePassword(challenge);
derset = new DerSet(chpass);
//IList oid = new ArrayList();
//IList values = new ArrayList();
//oid.Add(PkcsObjectIdentifiers.Pkcs9AtChallengePassword);
//var pass = new DerPrintableString(challenge);
////Asn1OctetString oct = pass.ToAsn1Object(); //new DerOctetString(pass);//Encoding.ASCII.GetBytes(Convert.ToBase64String(Encoding.UTF8.GetBytes("AABBccc22"))));
//X509Extension ext = new X509Extension(false,new DerOctetString(pass.GetEncoded()));
//values.Add(pass);
//X509Extensions extensions = new X509Extensions(oid, values);
//derset = new DerSet(extensions.ToAsn1Object());
}
else
{
derset = new DerSet();
}
//string sub =
//"2.5.4.45=SAT970701NN3 / GATF730321GG5, SERIALNUMBER= / GATF730321HJCRRR01, O=SERVICIO DE ADMINISTRACION TRIBUTARIA, OU=PACNLC091211KC657202";
//+ ", 1.2.840.113549.1.9.7= NtLink2012"
X509Name sub = new X509Name(subject, new ConverterSidetec());
Pkcs10CertificationRequestDelaySigned ds = new Pkcs10CertificationRequestDelaySigned("SHA1WITHRSA", sub, param, derset);
string pafirmar = Convert.ToBase64String(ds.GetDataToSign());
string firmados = Firmar(ref token, pafirmar, privateKeyalias, SignatureModeType.SHA1withRSA);
byte[] bytes = Convert.FromBase64String(firmados);
ds.SignRequest(bytes);
File.WriteAllBytes(fileName, ds.GetDerEncoded());
return(true);
}
catch (Exception ex)
{
Log.Error(ex);
return(false);
}
finally
{
client.Dispose();
}
}
public Dictionary <string, string> GetAliasList(ref authTokenType token, string keySpace)
{
xmCryptoService client = new xmCryptoService();
try
{
Dictionary <string, string> dic = new Dictionary <string, string>();
string tipo = string.Empty;
getAliasListResponse respuesta = null;
getAliasList getAliasList = new getAliasList();
getAliasList.AuthToken = token;
getAliasList.KeySpace = keySpace;
respuesta = client.getAliasList(getAliasList);
token = respuesta.AuthToken;
foreach (var alias in respuesta.ObjectAlias)
{
var info = new getObjectInfo {
ObjectAlias = alias, AuthToken = respuesta.AuthToken
};
getObjectInfoResponse resp = client.getObjectInfo(info);
respuesta.AuthToken = resp.AuthToken;
if (resp.KeyInfo != null && resp.KeyInfo.ItemsElementName[0] == ItemsChoiceType1.X509Data)
{
tipo = "Certificado";
}
else
{
tipo = resp.CryptoObject.Policy[1].PolicyValue;
if (tipo == "Private Key")
{
tipo = "Llave Privada";
}
else
{
tipo = "Llave Pública";
}
}
dic.Add(alias, tipo);
}
token = respuesta.AuthToken;
return(dic);
}
catch (Exception ee)
{
Log.Error("Error al intentar realizar login: " + ee);
return(null);
}
}
public authTokenType Login(string usuario, string contraseña)
{
xmCryptoService client = new xmCryptoService();
try
{
var log = new login {
UserID = usuario, password = contraseña, authModel = authModelType.PROP
};
loginResponse response = client.login(log);
return(response.AuthToken);
}
catch (Exception ex)
{
return(null);
}
}
public List <string> GetAliasSimetricas(ref authTokenType token, string keySpace)
{
xmCryptoService client = new xmCryptoService();
try
{
List <string> dic = new List <string>();
string tipo = string.Empty;
getAliasListResponse respuesta = null;
getAliasList getAliasList = new getAliasList();
getAliasList.AuthToken = token;
getAliasList.KeySpace = keySpace;
respuesta = client.getAliasList(getAliasList);
foreach (var alias in respuesta.ObjectAlias)
{
var info = new getObjectInfo {
ObjectAlias = alias, AuthToken = respuesta.AuthToken
};
getObjectInfoResponse resp = client.getObjectInfo(info);
respuesta.AuthToken = resp.AuthToken;
if (resp.CryptoObject.Policy != null && resp.CryptoObject.Policy[1].PolicyValue == "Secret Key")
{
dic.Add(alias);
}
}
token = respuesta.AuthToken;
return(dic);
}
catch (Exception ee)
{
Log.Error("Error al intentar realizar login: " + ee);
return(null);
}
}
public string Cifrar(ref authTokenType token, string texto, string alias)
{
LunaXml.xmCryptoService client = new xmCryptoService();
try
{
encrypt en = new encrypt();
en.DataToEncrypt = texto;
en.AuthToken = token;
en.EncryptionKeyAlias = alias;
en.Mechanism = MechanismType.CBC;
en.Padding = paddingType.PKCS5Padding;
en.Parameter = new[] { new ParameterType()
{
ParameterName = "IV", ParameterValue = "MTIzNDU2Nzg="
} };
encryptResponse res = client.encrypt(en);
token = res.AuthToken;
if (res.Result.ResultMajor != null && res.Result.ResultMajor == "urn:oasis:names:tc:dss:resultmajor:Success")
{
return(res.EncryptedData);
}
else
{
Log.Error((res.Result.ResultMessage != null ? res.Result.ResultMessage.Value : ""));
return(null);
}
}
catch (Exception ex)
{
Log.Error("Error al intentar firmar: " + ex);
return(null);
}
finally
{
client.Dispose();
}
}
private bool Extraer(ref authTokenType token, string alias, ref byte[] modulus, ref byte[] exponent)
{
LunaXml.xmCryptoService client = new xmCryptoService();
try
{
extract ex = new extract();
ex.KeyAlias = alias;
//ex.WrappingOptions = new WrappingOptionsType();
ex.AuthToken = token;
var res = client.extract(ex);
token = res.AuthToken;
if (res.Result.ResultMajor != null && res.Result.ResultMajor == "urn:oasis:names:tc:dss:resultmajor:Success")
{
KeyValueType type = (KeyValueType)res.KeyInfo.Items[0];
RSAKeyValueType rsatype = (RSAKeyValueType)type.Item;
modulus = rsatype.Modulus;
exponent = rsatype.Exponent;
return(true);
}
else
{
Log.Error((res.Result.ResultMessage != null ? res.Result.ResultMessage.Value : ""));
return(false);
}
}
catch (Exception ex)
{
Log.Error("Error al crear la llave privada " + ex);
return(false);
}
finally
{
client.Dispose();
}
}
