protected override void ProcessRecord()
{
var x500Values = new List <string>();
if (!string.IsNullOrWhiteSpace(CommonName))
{
x500Values.Add($"CN={CommonName}");
}
if (!string.IsNullOrWhiteSpace(Country))
{
x500Values.Add($"C={Country}");
}
if (!string.IsNullOrWhiteSpace(State))
{
x500Values.Add($"S={State}");
}
if (!string.IsNullOrWhiteSpace(Locality))
{
x500Values.Add($"L={Locality}");
}
if (!string.IsNullOrWhiteSpace(Organization))
{
x500Values.Add($"O={Organization}");
}
if (!string.IsNullOrWhiteSpace(OrganizationUnit))
{
x500Values.Add($"OU={OrganizationUnit}");
}
string x500 = string.Join("; ", x500Values);
if (ValidYears < 1 || ValidYears > 30)
{
ValidYears = 10;
}
DateTime validFrom = DateTime.Today;
DateTime validTo = validFrom.AddYears(ValidYears);
byte[] certificateBytes = CertificateHelper.CreateSelfSignCertificatePfx(x500, validFrom, validTo, CertificatePassword);
var certificate = new X509Certificate2(certificateBytes, CertificatePassword, X509KeyStorageFlags.Exportable);
#pragma warning disable CS0618 // Type or member is obsolete
if (!string.IsNullOrWhiteSpace(Out))
{
OutPfx = Out;
#pragma warning restore CS0618 // Type or member is obsolete
}
if (!string.IsNullOrWhiteSpace(OutPfx))
{
if (!Path.IsPathRooted(OutPfx))
{
OutPfx = Path.Combine(SessionState.Path.CurrentFileSystemLocation.Path, OutPfx);
}
byte[] certData = certificate.Export(X509ContentType.Pfx, CertificatePassword);
File.WriteAllBytes(OutPfx, certData);
}
if (!string.IsNullOrWhiteSpace(OutCert))
{
if (!Path.IsPathRooted(OutCert))
{
OutCert = Path.Combine(SessionState.Path.CurrentFileSystemLocation.Path, OutCert);
}
byte[] certData = certificate.Export(X509ContentType.Cert);
File.WriteAllBytes(OutCert, certData);
}
var rawCert = certificate.GetRawCertData();
var base64Cert = Convert.ToBase64String(rawCert);
var rawCertHash = certificate.GetCertHash();
var base64CertHash = Convert.ToBase64String(rawCertHash);
var keyId = Guid.NewGuid();
var template = @"
{{
""customKeyIdentifier"": ""{0}"",
""keyId"": ""{1}"",
""type"": ""AsymmetricX509Cert"",
""usage"": ""Verify"",
""value"": ""{2}""
}}
";
var manifestEntry = string.Format(template, base64CertHash, keyId, base64Cert);
var record = new PSObject();
record.Properties.Add(new PSVariableProperty(new PSVariable("Subject", certificate.Subject)));
record.Properties.Add(new PSVariableProperty(new PSVariable("ValidFrom", certificate.NotBefore)));
record.Properties.Add(new PSVariableProperty(new PSVariable("ValidTo", certificate.NotAfter)));
record.Properties.Add(new PSVariableProperty(new PSVariable("Thumbprint", certificate.Thumbprint)));
record.Properties.Add(new PSVariableProperty(new PSVariable("KeyCredentials", manifestEntry)));
record.Properties.Add(new PSVariableProperty(new PSVariable("Certificate", CertificateHelper.CertificateToBase64(certificate))));
record.Properties.Add(new PSVariableProperty(new PSVariable("PrivateKey", CertificateHelper.PrivateKeyToBase64(certificate))));
WriteObject(record);
}
protected override void ProcessRecord()
{
if (!System.IO.Path.IsPathRooted(Path))
{
Path = System.IO.Path.Combine(SessionState.Path.CurrentFileSystemLocation.Path, Path);
}
if (System.IO.File.Exists(Path))
{
var certificate = new X509Certificate2(Path, Password, X509KeyStorageFlags.Exportable | X509KeyStorageFlags.MachineKeySet);
var rawCert = certificate.GetRawCertData();
var base64Cert = Convert.ToBase64String(rawCert);
var rawCertHash = certificate.GetCertHash();
var base64CertHash = Convert.ToBase64String(rawCertHash);
var keyId = Guid.NewGuid();
var template = @"
{{
""customKeyIdentifier"": ""{0}"",
""keyId"": ""{1}"",
""type"": ""AsymmetricX509Cert"",
""usage"": ""Verify"",
""value"": ""{2}""
}}
";
var manifestEntry = string.Format(template, base64CertHash, keyId, base64Cert);
var record = new PSObject();
record.Properties.Add(new PSVariableProperty(new PSVariable("Subject", certificate.Subject)));
record.Properties.Add(new PSVariableProperty(new PSVariable("ValidFrom", certificate.NotBefore)));
record.Properties.Add(new PSVariableProperty(new PSVariable("ValidTo", certificate.NotAfter)));
record.Properties.Add(new PSVariableProperty(new PSVariable("Thumbprint", certificate.Thumbprint)));
record.Properties.Add(new PSVariableProperty(new PSVariable("KeyCredentials", manifestEntry)));
record.Properties.Add(new PSVariableProperty(new PSVariable("Certificate", CertificateHelper.CertificateToBase64(certificate))));
record.Properties.Add(new PSVariableProperty(new PSVariable("PrivateKey", CertificateHelper.PrivateKeyToBase64(certificate))));
WriteObject(record);
}
else
{
throw new PSArgumentException("Certificate file does not exist");
}
}
protected override void ProcessRecord()
{
if (MyInvocation.BoundParameters.ContainsKey(nameof(Store)) && !Utilities.OperatingSystem.IsWindows())
{
throw new PSArgumentException("The Store parameter is only supported on Microsoft Windows");
}
if (ValidYears < 1 || ValidYears > 30)
{
ValidYears = 10;
}
DateTime validFrom = DateTime.Today;
DateTime validTo = validFrom.AddYears(ValidYears);
#if NETFRAMEWORK
var x500Values = new List <string>();
if (!string.IsNullOrWhiteSpace(CommonName))
{
x500Values.Add($"CN={CommonName}");
}
if (!string.IsNullOrWhiteSpace(Country))
{
x500Values.Add($"C={Country}");
}
if (!string.IsNullOrWhiteSpace(State))
{
x500Values.Add($"S={State}");
}
if (!string.IsNullOrWhiteSpace(Locality))
{
x500Values.Add($"L={Locality}");
}
if (!string.IsNullOrWhiteSpace(Organization))
{
x500Values.Add($"O={Organization}");
}
if (!string.IsNullOrWhiteSpace(OrganizationUnit))
{
x500Values.Add($"OU={OrganizationUnit}");
}
string x500 = string.Join("; ", x500Values);
byte[] certificateBytes = CertificateHelper.CreateSelfSignCertificatePfx(x500, validFrom, validTo, CertificatePassword);
X509Certificate2 certificate = new X509Certificate2(certificateBytes, CertificatePassword, X509KeyStorageFlags.Exportable | X509KeyStorageFlags.MachineKeySet | X509KeyStorageFlags.PersistKeySet);
#else
X509Certificate2 certificate = CertificateHelper.CreateSelfSignedCertificate(CommonName, Country, State, Locality, Organization, OrganizationUnit, CertificatePassword, CommonName, validFrom, validTo);
#endif
if (!string.IsNullOrWhiteSpace(OutPfx))
{
if (!Path.IsPathRooted(OutPfx))
{
OutPfx = Path.Combine(SessionState.Path.CurrentFileSystemLocation.Path, OutPfx);
}
byte[] certData = certificate.Export(X509ContentType.Pfx, CertificatePassword);
File.WriteAllBytes(OutPfx, certData);
}
if (!string.IsNullOrWhiteSpace(OutCert))
{
if (!Path.IsPathRooted(OutCert))
{
OutCert = Path.Combine(SessionState.Path.CurrentFileSystemLocation.Path, OutCert);
}
byte[] certData = certificate.Export(X509ContentType.Cert);
File.WriteAllBytes(OutCert, certData);
}
if (Utilities.OperatingSystem.IsWindows() && MyInvocation.BoundParameters.ContainsKey(nameof(Store)))
{
using (var store = new X509Store("My", Store))
{
store.Open(OpenFlags.ReadWrite);
store.Add(certificate);
store.Close();
}
Host.UI.WriteLine(ConsoleColor.Yellow, Host.UI.RawUI.BackgroundColor, "Certificate added to store");
}
var rawCert = certificate.GetRawCertData();
var base64Cert = Convert.ToBase64String(rawCert);
var rawCertHash = certificate.GetCertHash();
var base64CertHash = Convert.ToBase64String(rawCertHash);
var keyId = Guid.NewGuid();
var template = @"
{{
""customKeyIdentifier"": ""{0}"",
""keyId"": ""{1}"",
""type"": ""AsymmetricX509Cert"",
""usage"": ""Verify"",
""value"": ""{2}""
}}
";
var manifestEntry = string.Format(template, base64CertHash, keyId, base64Cert);
var record = new PSObject();
record.Properties.Add(new PSVariableProperty(new PSVariable("Subject", certificate.Subject)));
record.Properties.Add(new PSVariableProperty(new PSVariable("ValidFrom", certificate.NotBefore)));
record.Properties.Add(new PSVariableProperty(new PSVariable("ValidTo", certificate.NotAfter)));
record.Properties.Add(new PSVariableProperty(new PSVariable("Thumbprint", certificate.Thumbprint)));
var pfxBytes = certificate.Export(X509ContentType.Pfx, CertificatePassword);
var base64string = Convert.ToBase64String(pfxBytes);
record.Properties.Add(new PSVariableProperty(new PSVariable("PfxBase64", base64string)));
record.Properties.Add(new PSVariableProperty(new PSVariable("KeyCredentials", manifestEntry)));
record.Properties.Add(new PSVariableProperty(new PSVariable("Certificate", CertificateHelper.CertificateToBase64(certificate))));
record.Properties.Add(new PSVariableProperty(new PSVariable("PrivateKey", CertificateHelper.PrivateKeyToBase64(certificate))));
WriteObject(record);
}
