Login/Register
Sign PDF with plain JavaScript
Asked Answered
javascriptpdfsignsigningwebcrypto-api
C

4

17

With WebCrypto API evolving and being supported by Chrome and Firefox, I would like to use it for digitally signing a PDF document. There is not much of literature around, but I found some examples [1] and a library called PKI.js [2]. In the examples, the signing process is described, but in the end, a signature is returned. I would expect my Base64 PDF file returned again in a signed Base64 string, but sadly, this is not what happens. PKI.js too, to my knowledge, does not provide a way to sign my Base64 PDF.

Is there a way to sign a PDF with JavaScript and the WebCrypto API only? The private key can be entered in a <textarea> or, even better, stored in the certificate settings of the browser.

Base64 PDF (from REST API) → Sign with JS & certificate → Signed Base64 PDF (send to REST)

Crocidolite answered 19/10, 2015 at 14:19 Comment(0)
S
8

Disclosure: I work for CISPL.

As of now, WebCrypto API does not provide access to (Windows) or any other Key stores or local crypto USB/Smartcard device.

Also in most of the signing scenarios, for requirement to protect pdf file within the server boundaries, its not recommended to send complete pdf file to browser or to signing API server.

Thus, its good practice, to create hash of PDF for signing, send hash to browser and use javascript through browser extension to access some application running on local system to access local keystore (or USB/Smartcard) and produce the signature and send back (PKCS7 or CMS container in case of PDF signing) to server where the signature may be injected back to PDF from which hash was created for signing and was sent to browser or to signing api server.

For browser based signing scenarios, my company provides one such free Browser extension Signer.Digital and .NET library required on server. Local system (host running behind the chrome browser on windows) may be downloaded from cNET Download site Installing this host and restarting Chrome will automatically add Signer.Digital Chrome Extension and/or Signer.Digital Firefox Extension

The actual working of this extension is illustrated here along with complete code walk through and download link to working sample VS 2015 project source code.

Javascript to call method from extension:

 //Calculate Sign for the Hash by Calling function from Extension SignerDigital

 SignerDigital.signPdfHash(hash, $("#CertThumbPrint").val(), "SHA-256")      //or "SHA256"
  //SignerDigitial.signHashCAdESBr method may be used for producing ICP-Brazil Signature

  .then(
         function (signDataResp) {
           //Send signDataResp to Server
     },
         function (errmsg) {
             //Send errmsg to server or display the result in browser.
           }
  );

If success, returns Base64 encoded pkcs7 signature - use suitable library or one provided by Signer.Digital to inject sign to pdf

If Failed, returns error msg starting with "SDHost Error:"

Digital Signing from Browser

Digital Signing from Browser

  1. Server send Hash of data/document/content to be signed to browser.
  2. Browser uses Signer.Digital Browser Extension Javascript API to invoke action from Signer.Digital Browser Extension Host.
  3. On Windows, Browser Extension Host uses Microsoft Certificate store and underlaying CSP to get hash signed.
  4. On Linux, Browser Extension Host uses PKCS#11 .SO library of Crypto Device to get hash signed.
  5. Raw Signature (Signature of Hash) or Signature Container is returned to browser by Signer.Digital Browser EXtension Host.
  6. In case of Crypto Device viz. USB Token or Smartcard, private key of the user never comes out of the device but hash to be signed is sent to device to get it signed.
  7. The web application (Javascript in Browser) sends Signature back to server and same can be emended in PDF Document, or XML or Json or as required.

JULY 2022: Added method signCAdESBr to sign PDF or content as per ICP-Brazil standard and method signCAdESEg to sign as per Egypt ITIDA CAdES-BES.

Skantze answered 14/4, 2019 at 14:26 Comment(9)
"its good practice..." - well, what good practice is, depends on which application you trust more. Your answer assumes that the server application is trustworthy, that it can be trusted to supply the hash for the pdf the user does want to sign. This assumption might not be true for a user dealing with some server application for the first time who happens to have a signing app he trusts on his computer..Soapy
@mki, I am talking about pdf being generated on server. If user has PDF on his own computer, then there are plenty of tools available including most used Acrobat Reader to sign the PDF document... But question is about signing using JavaScript which means document is on Server and Signature is on Browser.Skantze
"I am talking about pdf being generated on server." - even then, if I don't trust that server to send me the correct hash, I (as a user) want to be able to instead apply a signature by downloading the pdf, signing it locally using trusted software, and then uploading the signed pdf again. I have to admit, though, that arbitrary browser extensions don't really count as trusted software here, so here it indeed hardly matters whether the use case transfers only a hash or a whole document to me...Soapy
Some examples being signing Invoice or PO just prepared by me on my Companies' Web application (say CRM or web based accounting software) and I want to finally put sign. Other example is eReturn I have just previewed on my Companies web application or eReturn service providers' web UI, then I don't prefer to view XML or Json of return before signing.. Just trying to help trusted cases... you want me to replace "good practice" with "common practice" ?! :)Skantze
No need to change anything. If the user has reason to trust the server in question (e.g. supported by an appropriate CC certification), that solution does have its charm.Soapy
Hi @BharatVasant can you provide this for .net core also?Baxie
Yes, we have .Net core library and ready application also.Skantze
@BharatVasant What is this parameter $("#CertThumbPrint").val() how do I get it.Satterwhite
We have taken hidden field 'CertThumbPrint' where we can store CertThumbPrint in first call to GetSelectedCert() and then pass this value to further calls so that further calls don't open select certificate dialog but selects using CertThumbPrint. $("# is Jquery selector for hidden field.Skantze
V
7

It is technically possible to do this, in-fact it is one of the scenarios we had in mind when we made PKIjs (which is why there is this sample) - https://pkijs.org/examples/PDFexample.html

That said to do signing requires working with the PDF structure itself, which either requires a custom parser or modifications to an existing one (pdfjs for example).

Long story short, signing a PDF in browser will take a lot of work, it is something we are working on though.

Vitrification answered 20/10, 2015 at 5:24 Comment(2)
I want to sign plain text, so is that possible with this library? I did not find an example that can read a p12 cert+private key and produce a signature.Erleneerlewine
You can sign anything with it. This example signs arbitrary files - pkijs.org/examples/CMSSigned_complex_example.html this example shows importing PKCS#12s - pkijs.org/examples/PKCS12SimpleExample.html see unmitigatedrisk.com/?p=543 for some limitations and implementation notes.Vitrification
C
2

There is PDFSign.js, a library that can sign a PDF file in the browser. It uses forge though for the signature. If PKI.js supports detached pkcs7 signatures, then it should be easy to replace forge.

Conservation answered 25/12, 2015 at 0:5 Comment(0)
D
0

You can sign any file (including pdf) using openpgp.js

https://openpgpjs.org/openpgpjs/doc/#create-and-verify-detached-signatures

(scroll down to 'create-and-verify-detached-signatures')

Read the file as a Uint8Array and sign it with your private key.

Damascus answered 31/12, 2019 at 17:20 Comment(1)
Whenever people want to sign and stress the fact that they want to sign pdfs, they often mean that they want to sign using integrated pdf signatures and not using separate, detached signature files. This implies, for interoperable signatures, PKCS#1/PKCS#7 formats based on X.509 certificates, not PGP formats.Soapy

© 2022 - 2024 — McMap. All rights reserved.