public SignedDataValidationResult validateSign(string signedFile)
{
Dictionary <string, object> params_ = new Dictionary <string, object>();
params_[EParameters.P_CERT_VALIDATION_POLICY] = getPolicy();
//if (externalContent != null)
// params_[EParameters.P_EXTERNAL_CONTENT] = externalContent;
//Use only reference and their corresponding value to validate signature
params_[EParameters.P_FORCE_STRICT_REFERENCE_USE] = true;
//Ignore grace period which means allow usage of CRL published before signature time
//params_[EParameters.P_IGNORE_GRACE] = true;
//Use multiple policies if you want to use different policies to validate different types of certificate
// CertValidationPolicies certificateValidationPolicies = new CertValidationPolicies();
// certificateValidationPolicies.register(CertValidationPolicies.CertificateType.DEFAULT.ToString(), TestConstants.getPolicy());
// ValidationPolicy maliMuhurPolicy = PolicyReader.readValidationPolicy(new FileStream(TestConstants.getDirectory()+"/config/certval-policy-malimuhur.xml", FileMode.Open, FileAccess.Read));
// certificateValidationPolicies.register(CertValidationPolicies.CertificateType.MaliMuhurCertificate.ToString(), maliMuhurPolicy);
// params_[EParameters.P_CERT_VALIDATION_POLICIES]= certificateValidationPolicies;
SignedDataValidation sdv = new SignedDataValidation();
byte[] signedFileByes = ReadFile(signedFile);
SignedDataValidationResult sdvr = sdv.verify(signedFileByes, params_);
return(sdvr);
}
public Task <List <SignatureInfo> > CheckSignaturesAsync(byte[] input)
{
return(Task.Factory.StartNew(() =>
{
if (!IsSignedData(input) && !IsSignedPDF(input))
{
throw new SignatureNotFoundException("İmza bilgisi bulunamdı.");
}
List <SignatureInfo> signInfo = new List <SignatureInfo>();
if (IsSignedData(input))
{
BaseSignedData bs = new BaseSignedData(input);
Dictionary <string, object> params_ = new Dictionary <string, object>();
params_[EParameters.P_CERT_VALIDATION_POLICY] = _policy;
params_[EParameters.P_FORCE_STRICT_REFERENCE_USE] = true;
SignedDataValidation sdv = new SignedDataValidation();
SignedDataValidationResult sdvr = sdv.verify(input, params_);
for (int i = 0; i < sdvr.getSDValidationResults().Count; i++)
{
var item = sdvr.getSDValidationResults()[i];
var signatureType = bs.getSignerList()[i].getType().name();
var certificate = item.getSignerCertificate();
var name = certificate.getSubject().getCommonNameAttribute();
var identity = certificate.getSubject().getSerialNumberAttribute();
var serialnumber = certificate.getSerialNumber().ToString();
var issuer = certificate.getIssuer().getCommonNameAttribute();
bool isvalid = false;
if (item.getSignatureStatus() == Types.Signature_Status.VALID)
{
isvalid = true;
}
var info = new SignatureInfo()
{
Identity = identity, Name = name, IsValid = isvalid, Issuer = issuer, SerialNumber = serialnumber, SignatureType = signatureType
};
if (certificate.getNotAfter().HasValue)
{
info.ValidUntil = certificate.getNotAfter().Value;
}
if (certificate.getNotBefore().HasValue)
{
info.ValidFrom = certificate.getNotBefore().Value;
}
var signaturealgorithm = SignatureAlg.fromAlgorithmIdentifier(certificate.getSignatureAlgorithm()).first().getName();
var publickeyalgorithm = SignatureAlg.fromAlgorithmIdentifier(certificate.getPublicKeyAlgorithm()).first().getName();
var publicKey = certificate.asX509Certificate2().GetPublicKeyString();
info.PublicKey = publicKey;
info.SignatureAlgorithm = signaturealgorithm;
info.PublicKeyAlgorithm = publickeyalgorithm;
info.IsTimeStampedCertificate = certificate.isTimeStampingCertificate();
info.IsQualifiedCertificate = certificate.isQualifiedCertificate();
if (item.getSigningTime().HasValue)
{
info.SignedOn = item.getSigningTime().Value;
}
signInfo.Add(info);
}
}
if (IsSignedPDF(input))
{
PdfReader reader = new PdfReader(input);
AcroFields af = reader.AcroFields;
var names = af.GetSignatureNames();
for (int i = 0; i < names.Count; ++i)
{
String name = (string)names[i];
PdfPKCS7 pk = af.VerifySignature(name);
var cert = new ECertificate(pk.SigningCertificate.GetEncoded());
var signatureType = "ES_XL";
var commonname = cert.getSubject().getCommonNameAttribute();
var identity = cert.getSubject().getSerialNumberAttribute();
var serialnumber = cert.getSerialNumber().ToString();
var issuer = cert.getIssuer().getCommonNameAttribute();
var info = new SignatureInfo()
{
Identity = identity, Name = commonname, IsValid = pk.SigningCertificate.IsValidNow, Issuer = issuer, SerialNumber = serialnumber, SignatureType = signatureType
};
if (cert.getNotAfter().HasValue)
{
info.ValidUntil = cert.getNotAfter().Value;
}
if (cert.getNotBefore().HasValue)
{
info.ValidFrom = cert.getNotBefore().Value;
}
var signaturealgorithm = SignatureAlg.fromAlgorithmIdentifier(cert.getSignatureAlgorithm()).first().getName();
var publickeyalgorithm = SignatureAlg.fromAlgorithmIdentifier(cert.getPublicKeyAlgorithm()).first().getName();
var publicKey = cert.asX509Certificate2().GetPublicKeyString();
info.PublicKey = publicKey;
info.SignatureAlgorithm = signaturealgorithm;
info.PublicKeyAlgorithm = publickeyalgorithm;
info.IsTimeStampedCertificate = cert.isTimeStampingCertificate();
info.IsQualifiedCertificate = cert.isQualifiedCertificate();
if (cert.isQualifiedCertificate())
{
info.SignedOn = pk.SignDate;
}
else if (cert.isTimeStampingCertificate())
{
info.SignedOn = pk.TimeStampDate;
}
signInfo.Add(info);
}
}
return signInfo;
}));
}
