Signing document with Digital Certificate.

0
0

Hello,

I’m working on a project, which asks user to select an X509 certificate on client computer for digital signing a document on server.

Is that possible that browser can read from the Certificate store on client machine, like ClientClipboard and ClientFileSystem extensions do?

My current workaround is building a signing module running on client desktop, and push documents needed to sign to the signing module using  Rabbitmq.

 

 

— Edited by Alaa —

Share
  • Huỳnh Tấn Phát
    Chào TÙNG. Bạn người Việt nam hử? Mình cũng đang tìm giải pháp Ký số PDF file trên Server. USB Token cắm trên máy khách hàng “Client”. Bạn đã tìm được giải pháp chưa? Chia sẻ mình với!!
  • Tung Ngo
    Dùng SignalR hoặc Firebase RealTime Database hoặc RabbitMQ đẩy file cần ký về desktop. rồi ký bình thường từ đó thôi Phát.
  • Huỳnh Tấn Phát
    Tùng có Demo .NET gửi giúp vào Mail mình với: ngoisaoviet.online@gmail.com. Cám ơn bạn nhiều.
  • Huỳnh Tấn Phát
    Tùng có số zalo ko cho mình xin với?
  • You must to post comments
Filter
Sort by: Recently Active
0
0

Hi Levie,

Unfortunately, this is not what I’m looking for. I know how to manage Certificate and sign document in my Desktop App. In order to sign a document you need a key pair (public key and private key). Normally people use X509 certificate to keep their key pairs and the key owner’s info.

X509 certificate can be read from a file (1), from User Certificate Store (2) or from HSM server (3). In desktop application, there is no problem at all to retrieve a certificate, where ever they are stored.

But from web browser, only (1) and (3) is easy. (2) is difficult may be due to security reason.

I forgot that I asked this question 4 years ago on this forum in this ticket. Tiago and Frank suggested with some idea, which I currently use in production.

There is one issue that I always want to improve : Current solution requires users to download a small desktop module for signing. This module listen on a RabbitMQ server for any needed to sign document sent from browser.

So, my question is: after 4 years, is there any improvement in Browser API, which allows user to select a Certificate from User Certificate Store on the client machine directly.  4 years ago I though reading clipboard on client machine and send to server is impossible, and now it is easy with Wisej.

 

 

 

 

TRANSLATE with
COPY THE URL BELOW
Back

EMBED THE SNIPPET BELOW IN YOUR SITE
Enable collaborative features and customize widget: Bing Webmaster Portal

// <![CDATA[
var intervalId = setInterval(function () { if (MtPopUpList) { LanguageMenu = new MtPopUpList(); var langMenu = document.getElementById(LanguageMenu_popupid); var origLangDiv = document.createElement("div"); origLangDiv.id = "OriginalLanguageDiv"; origLangDiv.innerHTML = "ORIGINAL: “; langMenu.appendChild(origLangDiv); LanguageMenu.Init(‘LanguageMenu’, LanguageMenu_keys, LanguageMenu_values, LanguageMenu_callback, LanguageMenu_popupid); window[“LanguageMenu”] = LanguageMenu; clearInterval(intervalId); } }, 1);
// ]]>

  • Levie (ITG)
    Hi Tung, unfortunately I don’t think it’s possible at this time. Keep monitoring https://developer.mozilla.org/en-US/docs/Web/API for any changes! I see how this could be a useful extension and if it would become available we will certainly add it! Best, Levie
  • You must to post comments
0
0

Hi Tung,

Is this what you’re looking for? https://stackoverflow.com/questions/35898908/sign-a-file-with-a-x509certificate2-and-private-key. You can use the Upload control or the ClientFileSystem extension to retrieve the X509 certificate from the client.

HTH,

Levie

  • You must to post comments
Showing 2 results
Your Answer

Please first to submit.