Hi AJ,
if you're new to the crypto-stuff there will be a bumpy road ahead ;-)
I would recommend to search the iText mailing list archive once you're facing
problems. Many questions are answered here, already !
If you worry about a X.509 certificate, just create one using java's keytool.
Or take alook at cacert.org ...
Greetings
Andreas
----- original Nachricht --------
Betreff: Re: Re: [iText-questions] signing question re date/time
Gesendet: Mi, 29. Jun 2011
Von: AJ Weber
Ah, so as Leonard was getting to, it appears the CA provides a URL, and there
is the example I was missing. I now see it later in the chapter, but had not
ventured that far yet, because I don't have a X509 cert. Vielen dank. -----
Original Message ----- From: Andreas Kuehne To: AJ Weber Cc: Post all your
questions about iText here Sent: Wednesday, June 29, 2011 1:07 PMSubject: Re:
Re: [iText-questions] signing question re date/time
Hi AJ,
I forget instantly, but google rmenbers :
http://www.itextpdf.com/examples/iia.php?id=225
And if you like to know about Timestamp, search for RFC 3161 have a look at
http://www.opentsa.org/#service
Greetings
Andreas
----- original Nachricht --------
Betreff: Re: [iText-questions] signing question re date/time
Gesendet: Mi, 29. Jun 2011
Von: AJ Weber
Understood. That was the intent of my original question: I don't see an API or
example of how to request a time-stamp from a "time stamp server" (don't
exactly know what that is -- is it a Stratum 1 or 2 NTP server? is it
something else?), and I don't see a method to set that time-stamp on the
signature. I see a setSignDate(), but that just takes a Calendar object, and
I don't know how that would identify itself as some special/official time
stamp. Thanks for the reply. ----- Original Message ----- From: Leonard
Rosenthol To: AJ Weber Sent: Wednesday, June 29, 2011 11:29 AMSubject: Re:
[iText-questions] signing question re date/time
It means that you didn't involve a time-stamp server and so the time is based
on your computer's time.
This is sort of in the same boat as getting a real certificate – you can
sign for yourself or you can sign for the real world.
Leonard
From: AJ Weber <[email protected]>
Reply-To: AJ Weber <[email protected]>
Date: Wed, 29 Jun 2011 07:18:30 -0700
To: Leonard Rosenthol <[email protected]>
Subject: Re: [iText-questions] signing question re date/time
Here's my test document. ----- Original Message ----- From: Leonard Rosenthol
To: AJ Weber ; Post here Sent: Wednesday, June 29, 2011 10:14 AMSubject: Re:
[iText-questions] signing question re date/time
Can't tell you w/o seeing an actual PDF that demonstrates the problem.
From: AJ Weber <[email protected]>
Reply-To: AJ Weber <[email protected]>
Date: Wed, 29 Jun 2011 07:04:10 -0700
To: Leonard Rosenthol <[email protected]>, Post here
<[email protected]>
Subject: Re: [iText-questions] signing question re date/time
Are you saying it's a bug in Acrobat 8? Unfortunately, I can't control the
viewing application (or version) that users choose to open the signed PDF with,
so if there's a universally applicable way to get an appropriate timestamp and
apply it to the signature, I think I should pursue that, right? ----- Original
Message ----- From: Leonard Rosenthol To: AJ Weber ; Post here Sent: Wednesday,
June 29, 2011 9:52 AMSubject: Re: [iText-questions] signing question re
date/time
Have you tried Acrobat 9 or X?
From: AJ Weber <[email protected]>
Reply-To: AJ Weber <[email protected]>, Post here
<[email protected]>
Date: Wed, 29 Jun 2011 06:39:04 -0700
To: Post here <[email protected]>
Subject: [iText-questions] signing question re date/time
I'm testing some PDF signing using some of the sample code from the latest
"iText In Action" book (slightly modified 12.14 code, to be moderately
specific). When I look at the generated signature properties with Acrobat 8,
there is a warning "Signature date/time are from the clock on the signer's
computer." Is there some additional method-call I can use to get the date/time
from an appropriate source to suppress this warning? NOTE: I'm testing with a
self-signed cert at this time; maybe this is "automatic" for CA-issued certs.
Thanks in advance,AJ
--- original Nachricht Ende ----
--- original Nachricht Ende ----
------------------------------------------------------------------------------
All of the data generated in your IT infrastructure is seriously valuable.
Why? It contains a definitive record of application performance, security
threats, fraudulent activity, and more. Splunk takes this data and makes
sense of it. IT sense. And common sense.
http://p.sf.net/sfu/splunk-d2d-c2
_______________________________________________
iText-questions mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/itext-questions
iText(R) is a registered trademark of 1T3XT BVBA.
Many questions posted to this list can (and will) be answered with a reference
to the iText book: http://www.itextpdf.com/book/
Please check the keywords list before you ask for examples:
http://itextpdf.com/themes/keywords.php
