Activity for Markus Kilås

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Joe, I registered https://jira.primekey.se/browse/DSS-1540 for a possible future implementation. Looking at the available (server-side) worker properties for the PDF Signer, what properties would you like to be able to configure from the client-side as request meta data properties?: https://www.signserver.org/doc/current/manual/plugins.html#PDF_Signer Please comment if you have any comments or ideas on how it would look like. Cheers, Markus PrimeKey Solutions

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Bogdan, Sorry, no. All SignServer developers I know about uses NetBeans IDE. With NetBeans you don't have to start the application server from within the IDE (unless you want to). The only thing to do is to make sure WildFly runs with "-agentlib:jdwp=transport=dt_socket,address=8787,server=y,suspend=n" (configurable in bin/standalone.conf) and then in the IDE just click Attach Debugger and use port "8787". Maybe somebody else has here has tried something similar with Eclipse? Also note that all-though...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Joe, That is expected as supplying the VISIBLE_SIGNATURE_RECTANGLE as request metadata is currently not supported. In fact for the PDF signer everything is configured on the server-side. The only request metadata accepted is "pdfPassword" for opening the PDF. There has been some discussion on making a more generic way of specifying which worker properties are allowed to be overridden by properties provided in the request metadata. Some old comments are in this ticket: https://jira.primekey.se/browse/DSS-457...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Petr, 1) Accuracy: This is a way to "represents the time deviation around the UTC" that the TSA is guaranteeing. See RFC#3161 page 9 for more description. 2) TSA: "MUST correspond to one of the subject names included in the certificate that is to be used to verify the token.". So unless you use from TSA_FROM_CERT which handles this for you, you need to check in the certificate what subject DN you have. Something like "CN=Time-stamp Signer 1,O=My organization,C=SE" 3) The client includes a flag...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Andre, Note that the SignClient time-stamp command is mostly for testing purposes or for time-stamping arbitrary data. It does not modify input file. Especially it does not implement time-stamping of a signature within a PDF. The command simply sends a time-stamp request for the hash of the entire input file specified and outputs the results. You can also specify that you want to store the time-stamp response in a file and save that as a proof that the input file existed at the time the time-stamp...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Tran, It is better to start a new thread for new questions. Anyway, I am not sure if it is a typo in your question or that is the issue, but for HTTPS you would typically not use port 8080 but 8442 or 8443. If you followed our installation guide you could use: https://localhost:8442/signserver/ClientWSService/ClientWS?wsdl Regards, Markus PrimeKey Solutions Save time and money with an Enterprise support subscription. Please see www.primekey.se for more information. https://www.primekey.com/products/software/...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Iulian, You can use different keys and certificates by using multiple workers each configured to use a specific key/certificate. An other alternative is to configure the worker with an AliasSelector [1] which can be used to for instance use a different key based on the user name. SignServer will still be using the private key though, either directly for soft keystores or using a hardware security module. [1] https://www.signserver.org/doc/current/manual/plugins.html#Alias_Selectors Regards, Markus...

  • Markus Kilås Markus Kilås posted a comment on discussion Open Discussion

    Hi Oleg, You can for instance capture a time-stamp response like this: $ bin/signclient timestamp -url http://localhost:8080/signserver/tsa?workerName=TimeStampSigner -outrep /tmp/reply.tsr ^C Then dump it in ASN.1 format: $ dumpasn1 /tmp/reply.tsr 0 869: SEQUENCE { 4 21: SEQUENCE { 6 1: INTEGER 0 9 16: SEQUENCE { 11 14: UTF8String 'Operation Okay' : } : } 27 842: SEQUENCE { 31 9: OBJECT IDENTIFIER signedData (1 2 840 113549 1 7 2) 42 827: [0] { 46 823: SEQUENCE { 50 1: INTEGER 3 53 11: SET { 55...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Oleg, "You must set APPSRV_HOME before running SignServer CLI" Make sure you have pointed out your application server, i.e. like this: $ export APPSRV_HOME=opt/glassfish3/glassfish/ "Could not read Maintenance File." It seems you have configured your conf/signserver_deploy.properties with the option of having a maintenance file, i.e. the healthcheck.maintenancefile property. Simply creating this file should resolve that issue: $ echo "DOWN_FOR_MAINTENANCE=false" > /opt/glassfish3/glassfish/domains/domain1/config/maintenance.properties...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    The last line of the server.log shows that the application did not deploy on the...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Aziz, Thank you for sharing! 1) That is interesting. I checked with mine EAP 6...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Tran, Microsoft SQL Server is not listed on https://www.signserver.org/doc/current/manual/installguide.html#a1._Check_prerequisites...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Roman, Sounds interesting, feel free to provide a patch and we can discuss if/how...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Roman, You are right, as we are using CESeCore underneath the HSM password can...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Ayaz, Great that the problem was solved. Generally it is a good idea to start...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Ayaz, You can use a key and certificate from the dss10_signer2.p12 keystore as...

  • Markus Kilås Markus Kilås posted a comment on discussion Open Discussion

    Hi petr, The AdminWS interface requires TLS client certificate authentication so...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Bharat, It looks like your crypto token called "CryptoTokenP12" does not contain...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi David, The Common Name (CN) is part of the certificate so if every signer/worker...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi David! Did I understand correctly that the final PDF should contain two digital...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Riaz Raza, Multiple signers can share the same key-pair and certificate. Simply...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Your last post still says ".Accounter" while it should be ".ACCOUNTERS". Anyway,...

  • Markus Kilås Markus Kilås modified a comment on discussion Help

    Hi Narges, According to the documentation [1] the worker property name is "ACCOUNTER"...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Narges, According to the documentation [1] the worker property name is "ACCOUTER"...

  • Markus Kilås Markus Kilås created a blog post

    SignServer 4.0.0 released

  • Markus Kilås Markus Kilås modified a comment on discussion Help

    Hi Narges, The first form, i.e. setting the worker property USER.ghelichi with the...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Narges, The first form, i.e. setting the worker property USER.ghelichi with the...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Sandor, JBoss AS 7.1 (or EAP 6) is the latest JBoss version that we have tested...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi zZzergU, The error is "Bad request: Missing field 'data' in request" which does...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi bostjans, o1. It seems the documentation still refers to the old soft-crypto-configuration.properties...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Le Hong Son, The ClientWS interface does not yet support document validation....

  • Markus Kilås Markus Kilås posted a comment on discussion Open Discussion

    Hi Bharat, The "Worker status" being "Offline" means that the worker will not be...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Roman, The username/password authentication is done using HTTP Basic Auth and...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Deyan, Do you have a DEFAULTKEY property specified in your time-stamp signer worker?...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Ok, great that you got it working. Cheers, Markus PrimeKey Solutions PrimeKey will...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    I think you configuration looks correct. I just tested having two crypto workers...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Clio, Yes, the worker property "KEYSTOREPASSWORD" is the right one to set in your...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Daniel, SignServer usually does not work as a proxy. Instead the application sends...

  • Markus Kilås Markus Kilås posted a comment on discussion Open Discussion

    You can get a time-stamp of any data from the time-stamp signer. But as you say only...

  • Markus Kilås Markus Kilås posted a comment on discussion Open Discussion

    Hi Dejan, 1) If the document will be time-stamped or not depends on if the signer...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Petr, Make sure you have followed the steps in the install guide related to fixing...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi petr, One way is to configure your application server to listen for remote socket...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Sounds like the wsimport command is not available, could be some path issue. I have...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Duong, Those classes are used by the AdminGUI to call the SignServerWS web service...

  • Markus Kilås Markus Kilås created a blog post

    SignServer 3.6.2 released

  • Markus Kilås Markus Kilås created a blog post

    SignServer 3.6.1 released

  • Markus Kilås Markus Kilås posted a comment on discussion Open Discussion

    This has now been fixed in trunk. See https://jira.primekey.se/browse/DSS-840 Cheers,...

  • Markus Kilås Markus Kilås created a blog post

    SignServer 3.6.0 released

  • Markus Kilås Markus Kilås modified a comment on discussion Help

    Hello Madan, From the output you sent I can see two issues. There is the "Error parsing...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hello Madan, From the output you sent I can see two issues. There is the "Error parsing...

  • Markus Kilås Markus Kilås posted a comment on discussion Open Discussion

    Hi Hugo, Thank you for the report! I have created https://jira.primekey.se/browse/DSS-840...

  • Markus Kilås Markus Kilås posted a comment on discussion Open Discussion

    Hi Konstantin, We don't have any conrete plans for that in the most near future....

  • Markus Kilås Markus Kilås created a blog post

    SignServer 3.5.2 released

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Why not just use the OpenSSL command to verify the signature and output the signed...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Thank you Konstantin! I have registered https://jira.primekey.se/browse/DSS-833 for...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Ok. Do you know what misconfigured (for future reference)? Cheers, Markus PrimeKey...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Konstantin, Do you have both JDK6 and JDK7 installed? It sounds a bit like https://jira.primekey.se/browse/DSS-796...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Juraj, The "ClassFormatError: Absent Code" when you try to run the Admin CLI would...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Stefan, A document that describes this quite well is ETSI TS 102 023 V1.2.2 (2008-10)...

  • Markus Kilås Markus Kilås posted a comment on discussion Help

    Hi Mietek, The TimeStampSigner can not be invoked from the web page. It uses the...

  • Markus Kilås Markus Kilås created a blog post

    SignServer 3.5.0 released

  • Markus Kilås Markus Kilås posted a comment on discussion Open Discussion

    Hi Enrico, Currently SignServer only uses the signingCertificate attribute (not V2)....

  • Markus Kilås Markus Kilås created a blog post

    SignServer 3.4.3 released

1 >