Warm tip: This article is reproduced from serverfault.com, please click
itext pdf signing

at least one signature is invalid in pdf signing

发布于 2016-02-01 04:54:44

when I am signing a PDF using IText with e-token then signed pdf is showing'at least one signature is invalid' in Acrobat Adobe Reader.I am using valid e-token. Below is the code for signing Pdf.

//path of destination file    
String destFile = "D://sign_test.pdf";  
// load key store    
KeyStore ks = KeyStore.getInstance("Windows-MY");       
ks.load(null, "password".toCharArray());    
Enumeration enumeration = ks.aliases();    
String alias = null;    
while(enumeration.hasMoreElements()){  
alias = (String)enumeration.nextElement();  
if(alias.equalsIgnoreCase("alias of the certificate"))// to get specific certificate from keystore  
break;  
}  
PrivateKey pk = (PrivateKey)ks.getKey(alias, "password".toCharArray());  Certificate[] chain = ks.getCertificateChain(alias);  
PdfReader reader = new PdfReader(sourceFile);  
FileOutputStream os = new FileOutputStream(destFile);  
PdfStamper stamper = PdfStamper.createSignature(reader, os, '\0');  
PdfSignatureAppearance appearance = stamper .getSignatureAppearance();  
appearance.setReason("I've written this.");  
appearance.setLocation("Foobar");  
appearance.setVisibleSignature(new Rectangle(72, 732, 144,      780),1,"first");  
ExternalSignature es = new PrivateKeySignature(pk, "SHA-256", "SunMSCAPI");    
ExternalDigest digest = new ProviderDigest("SunMSCAPI");  
MakeSignature.signDetached(appearance, digest, es, chain, null, null,    null, 0, CryptoStandard.CMS);    
stamper.close();
Questioner
Rakesh Kumar
Viewed
0
分享
mkl 2016-02-01 18:40:03

The reason is: Your chosen certificate is invalid

Details

If you look at what Acrobat Adobe Reader says exactly, you find in the signature panel:

Signature panel

Thus, the signature itself is mathematically correct:

Document has not been modified since this signature was applied

but the problem is in your certificate:

Signer's certificate is invalid

If you click further through to the certificate view you'll see

Certificate viewer

So the reason why the signer's certificate is invalid is:

Not valid for usage.

Indeed, you see the intended usage above:

Encrypt Keys

For creating signatures, you need Signing or Non-Repudiation.

So you merely have to select a certificate which is intended for signing.

Rakesh Kumar 2016-02-02 12:45:26

thanks it solved my problem. the problem was two certificate having same alias name in e-token.

热门帖子

1
难道 Go 就没有好用的工作审批流框架吗
2
跟风贴自家软路由实现
3
Mac 上有什么 pdf 阅读器比较好用?
4
再开一个贴,问界发布新 M5,请各位老哥或者老车主骂醒我
5
我这辈子是不是彻底和 Airpods Pro 无缘了
6
最近对很多事情都没有感觉了
7
微信读书非付费会员有每月导入数量限制了
8
不知道从什么时候,普通 USB-C 双头线不能给 iPhone15 充电了
9
程序员想开发漂亮的个人网站是不是用 react 会比 vue 简单一些?
10
有关于上海居住证 120 积分

热门github

1
Implementation of paper - YOLOv9: Learning What You Want to Learn Using Programmable Gradient Information
2
A Windows and Office activator using HWID / Ohook / KMS38 / Online KMS activation methods, with a focus on open-source code and fewer antivirus detections.
3
Get up and running with Llama 2, Mistral, Gemma, and other large language models.
4
该项目可以让你通过订阅的方式使用Cloudflare WARP+,自动获取流量。This project enables you to use Cloudflare WARP+ through subscription, automatically acquiring traffic.
5
Multi functional app to find duplicates, empty folders, similar images etc.
6
Xray panel supporting multi-protocol multi-user expire day & traffic & ip limit (Vmess & Vless & Trojan & ShadowSocks & Wireguard)
7
The Free Software Media System
8
lightweight, standalone C++ inference engine for Google's Gemma models.
9
📚 Freely available programming books
10
A collective list of free APIs
11
1️⃣🐝🏎️ The One Billion Row Challenge -- A fun exploration of how quickly 1B rows from a text file can be aggregated with Java
12
🎓 Path to a free self-taught education in Computer Science!
13
Curso para aprender el lenguaje de programación Python desde cero y para principiantes. 75 clases, 37 horas en vídeo, código, proyectos y grupo de chat. Fundamentos, frontend, backend, testing, IA...
14
This repository contains System Design resources which are useful while preparing for interviews and learning Distributed Systems
15
Mamba is a new state space model architecture showing promising performance on information-dense data such as language modeling, where previous subquadratic models fall short of Transformers. It is based on the line of progress on structured state space models, with an efficient hardware-aware design and implementation in the spirit of FlashAttention.