Hi Martin, Yes, you are right, I upgraded my machine to Fedora 21 that comes with Firefox 24 and I can sign the request again.
Thanks, Nuno On Thu, 2014-12-18 at 12:06 +0100, Martin Hecht wrote: > Hi Nuno, > > maybe I have good news about this issue: > > When Firefox 33 came out, I wasn't even able to sign the challenge in > the web interfaces (which I have configured for login via certificate). > In the meantime I was using Firefox 31 ESR and now that I have found > some time and started to look into this issue it suddenly works again > (at least to sign the challenge). I'm using "Mozilla Firefox 34.0 for > Ubuntu canonical - 1.0" now together with OpenCa 1.5.1. So, maybe > Mozilla or the team from Ubuntu who integrate it into the distribution > have solved this problem in the meantime. Maybe you could try it in your > environment? > > Signing the requests didn't work in my setup anyway (I have separated > the web-components on different hosts without a shared file system and > signing the requests seems to use the files in addition to the database > at some point - so I issue the certificates directly by logging into the > Ca interface with my operator certificate). I would have to set up a > separate test environment to verify exactly your scenario, but I could > do so if I find the time between the years. > > best regards, > Martin > > On 11/06/2014 04:23 PM, Nuno Dias wrote: > > Hi Martin, > > > > Yes, although is not a solution, Firefox 31 can sign the requests, in > > Opera I can't even load a certificate :( > > > > Cheers, > > Nuno > > > > On Thu, 2014-11-06 at 11:45 +0100, Martin Hecht wrote: > >> Hi Nuno, > >> > >> I haven't a solution yet, but a workaround could be to use the Extended > >> Support Release 31 of Firefox which still works with this signing > >> procedure. It is available here: > >> http://www.mozilla.org/en-US/firefox/organizations/all.html and > >> presumably gets updates until summer 2015. > >> > >> Alternatively, a colleague just mentioned Opera 12 which works according > >> to him... > >> > >> best regards, > >> Martin > >> > >> On 11/05/2014 06:32 PM, Nuno Dias wrote: > >>> Hi all, > >>> > >>> Since the last update of firefox (33) I can't sign certificates > >>> requests, the openca version is 1.1.1, and I get this error in the > >>> console of firefox > >>> > >>> "Netscape" signForm.js:4 > >>> "crypto supported on firefox!" signForm.js:6 > >>> TypeError: theWindow.crypto.signText is not a function signForm.js:54 > >>> "Netscape" signForm.js:4 > >>> "crypto supported on firefox!" > >>> > >>> I saw the code of the last version of openca (1.5.0) and the signForm.js > >>> has the same call, anyone can advise a solution to this problem? > >>> > >>> Thanks, > >>> Nuno > > > > ------------------------------------------------------------------------------ > Download BIRT iHub F-Type - The Free Enterprise-Grade BIRT Server > from Actuate! Instantly Supercharge Your Business Reports and Dashboards > with Interactivity, Sharing, Native Excel Exports, App Integration & more > Get technology previously reserved for billion-dollar corporations, FREE > http://pubads.g.doubleclick.net/gampad/clk?id=164703151&iu=/4140/ostg.clktrk > _______________________________________________ > Openca-Users mailing list > Openca-Users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/openca-users -- Nuno Dias <nd...@lip.pt> LIP
smime.p7s
Description: S/MIME cryptographic signature
------------------------------------------------------------------------------ Download BIRT iHub F-Type - The Free Enterprise-Grade BIRT Server from Actuate! Instantly Supercharge Your Business Reports and Dashboards with Interactivity, Sharing, Native Excel Exports, App Integration & more Get technology previously reserved for billion-dollar corporations, FREE http://pubads.g.doubleclick.net/gampad/clk?id=164703151&iu=/4140/ostg.clktrk
_______________________________________________ Openca-Users mailing list Openca-Users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openca-users
