[
https://issues.apache.org/jira/browse/PDFBOX-5187?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17341122#comment-17341122
]
Tilman Hausherr commented on PDFBOX-5187:
-----------------------------------------
Thanks, I added an implementation for the trunk (3.0) only, because it needs
jdk8.
Thanks for reporting this. Makes me wonder why nobody ever reported that or
whether nobody ever used that, commercial TSA would likely have some sort of
authentication.
> TSAClient with username+password
> --------------------------------
>
> Key: PDFBOX-5187
> URL: https://issues.apache.org/jira/browse/PDFBOX-5187
> Project: PDFBox
> Issue Type: Bug
> Components: Signing
> Affects Versions: 2.0.23
> Reporter: Miro
> Priority: Minor
> Fix For: 2.0.24, 3.0.0 PDFBox
>
>
> TSAClient used for signing document has authentication to TSA server
> implemented "weirdly". There is:
> _{{connection.setRequestProperty(username, password);}}_
> ... and it should be:
> _{{connection.setRequestProperty("Authorization", "Basic " + new
> String(Base64.getEncoder().encode((username + ":" +
> password).getBytes(StandardCharsets.UTF_8))));}}_
> (in case of basic authentication ofc.)
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
