Eneko González Benito wrote:
Of course not! It would be a serious security problem if the private key was to be sent to the server.I think that i'm missing something ...It can sound silly (sorry if so), but yes, the user has the private key in his/her computer, but in the server there's no certificate,
and the client is not going to send it's private key, so ... ¿how can i get the hash if i don't have a private key?
Er... I think you should rethink your design.You want to sign a PDF on serverside using a private key that never leaves the client side?
This can't be done without client side software that creates the hash. Why don't you sign the PDF on client side? br, Bruno
smime.p7s
Description: S/MIME Cryptographic Signature
------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2008. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________ iText-questions mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/itext-questions Buy the iText book: http://itext.ugent.be/itext-in-action/
