Until PAdES B-LTA is integrated in JSignPDF (if ever) these at least does something to help to achieve true LTV. Say: is a root certificate, and wont use OCSP/ CRLīut: will use OCSP/ CRL because is not using the root certificate to sign. Of course, if the timestamp certificate is root it won't have any OCSP/ CRL to check.
JSIGNPDF CANNOT SEE VISIBLE SIGNATURE PDF
Is it possible to add a option to force the JSignPDF to download and incorporate to the final PDF the OCSP response or CRL (if OCSP not available) of the timestamp, so that in the future even after the expiring date is possible to verify that the timestamp was valid at the time of the signature.Ĭurrently I can only do that if I chose the option "Not certified" and then open "Adobe Acrobat Reader DC" and force "Add verification information" and then "Save has." to incorporate the answer into the PDF file permanently. I already have PDF's signed where the timestamp is no longer valid because the OCSP/ CRL response was not included in the PDF. : class .pkcs11.JSignPKCS11 (in unnamed module cannot access class (in module java.base) because module java.base does not export to unnamed module .pkcs11.JSignPKCS11.(JSignPKCS11.java:63)Īt java.base/0(Native Method)Īt java.base/(Class.java:375)Īt net.sf.11Provider(PKCS11Utils.java:108)Īt net.sf.(PKCS11Utils.java:67)
: class net.sf.11Utils cannot access class 11 (in module ) because module does not export 11 to unnamed module java.base/.newIllegalAccessException(Reflection.java:392)Īt java.base/.checkAccess(AccessibleObject.java:674)Īt java.base/.newInstanceWithCaller(Constructor.java:489)Īt java.base/.newInstance(Constructor.java:480)Īt net.sf.11Provider(PKCS11Utils.java:112)Īt net.sf.(PKCS11Utils.java:66)Īt net.sf.(Signer.java:104) SEVERE Unable to register SunPKCS11 security provider. usr/lib/jvm/java-17-openjdk-amd64/bin/java -jar JSignPdf.jarįINE Registering SunPKCS11 provider from configuration in conf/pkcs11.cfg Also, I have tried with java 17 with similar result: WARNING: All illegal access operations will be denied in a future release WARNING: Use -illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: Please consider reporting this to the maintainers of net.sf.11Utils WARNING: Illegal reflective access by net.sf.11Utils. WARNING: An illegal reflective access operation has occurred Library=/usr/lib/pkcs11/libIDPrimePKCS11.so It is working with firefox and another pdf programs. I use the safenetauthenticationclient package that contains libraries to access to the card. I have a certificate in a card and a reader in the keyboard. Using the second one, aparently the same, it does the verification with OCSP and LTV is enabled in the document. Well, when I sign a document using the first one, it doesn't verify the OCSP, but it exists in the signature. out-suffix _firmado -ocsp -ocsp-server-url -llx 5 -lly 80 -urx 300 -ury 30 -V -fs 8 -pg 10000
SailsBE_dev/JSignPdf/sign.p12 -keystore-type PKCS12 -keystore-password '' -tsa-server-url -tsa-hash-algorithm SHA512 -out-directory. SailsBE_dev/JSignPdf/jsignpdf-1.6.4/JSignPdf.jar 1_test.pdf -cl CERTIFIED_NO_CHANGES_ALLOWED -disable-acrobat6-layer-mode -disable-assembly -disable-copy -disable-fill -disable-modify-annotations -disable-modify-content -hash-algorithm SHA512 -keystore-file. Another it's obtained directly from an Authorithy. One is obtained using DNIe (National Document Identity Electronic). Mode).259.1Ĭ am trying to sign pdf with LTV and yes, it's posible.
JSIGNPDF CANNOT SEE VISIBLE SIGNATURE WINDOWS
Language.24Ĩ.2.1 Change language when running through Windows EXE Keystore.6Ģ.2.1 Exporting PKCS12 certificates from InternetĮxplorer.62.2.2 Digital signatures for your PDF documentsversion 1.5.1
0 kommentar(er)
