public virtual void LtvEnabledSingleSignatureTest01()
{
String signCertFileName = certsSrc + "signCertRsaWithChain.p12";
String tsaCertFileName = certsSrc + "tsCertRsa.p12";
String intermediateCertFileName = certsSrc + "intermediateRsa.p12";
String caCertFileName = certsSrc + "rootRsa.p12";
String srcFileName = sourceFolder + "helloWorldDoc.pdf";
String ltvFileName = destinationFolder + "ltvEnabledSingleSignatureTest01.pdf";
X509Certificate[] tsaChain = Pkcs12FileHelper.ReadFirstChain(tsaCertFileName, password);
ICipherParameters tsaPrivateKey = Pkcs12FileHelper.ReadFirstKey(tsaCertFileName, password, password);
X509Certificate intermediateCert = (X509Certificate)Pkcs12FileHelper.ReadFirstChain(intermediateCertFileName
, password)[0];
ICipherParameters intermediatePrivateKey = Pkcs12FileHelper.ReadFirstKey(intermediateCertFileName, password
, password);
X509Certificate caCert = (X509Certificate)Pkcs12FileHelper.ReadFirstChain(caCertFileName, password)[0];
ICipherParameters caPrivateKey = Pkcs12FileHelper.ReadFirstKey(caCertFileName, password, password);
TestTsaClient testTsa = new TestTsaClient(JavaUtil.ArraysAsList(tsaChain), tsaPrivateKey);
TestOcspClient testOcspClient = new TestOcspClient().AddBuilderForCertIssuer(intermediateCert, intermediatePrivateKey
).AddBuilderForCertIssuer(caCert, caPrivateKey);
X509Certificate[] signChain = Pkcs12FileHelper.ReadFirstChain(signCertFileName, password);
ICipherParameters signPrivateKey = Pkcs12FileHelper.ReadFirstKey(signCertFileName, password, password);
IExternalSignature pks = new PrivateKeySignature(signPrivateKey, DigestAlgorithms.SHA256);
PdfSigner signer = new PdfSigner(new PdfReader(srcFileName), new FileStream(ltvFileName, FileMode.Create),
new StampingProperties());
signer.SetFieldName("Signature1");
signer.SignDetached(pks, signChain, null, testOcspClient, testTsa, 0, PdfSigner.CryptoStandard.CADES);
PadesSigTest.BasicCheckSignedDoc(destinationFolder + "ltvEnabledSingleSignatureTest01.pdf", "Signature1");
}
public virtual void LtvEnabledTest01()
{
String tsaCertFileName = certsSrc + "tsCertRsa.p12";
String caCertFileName = certsSrc + "rootRsa.p12";
String srcFileName = sourceFolder + "signedDoc.pdf";
String ltvFileName = destinationFolder + "ltvEnabledTest01.pdf";
String ltvTsFileName = destinationFolder + "ltvEnabledTsTest01.pdf";
X509Certificate[] tsaChain = Pkcs12FileHelper.ReadFirstChain(tsaCertFileName, password);
ICipherParameters tsaPrivateKey = Pkcs12FileHelper.ReadFirstKey(tsaCertFileName, password, password);
X509Certificate caCert = (X509Certificate)Pkcs12FileHelper.ReadFirstChain(caCertFileName, password)[0];
ICipherParameters caPrivateKey = Pkcs12FileHelper.ReadFirstKey(caCertFileName, password, password);
TestTsaClient testTsa = new TestTsaClient(JavaUtil.ArraysAsList(tsaChain), tsaPrivateKey);
TestOcspClient testOcspClient = new TestOcspClient().AddBuilderForCertIssuer(caCert, caPrivateKey);
TestCrlClient testCrlClient = new TestCrlClient(caCert, caPrivateKey);
PdfDocument document = new PdfDocument(new PdfReader(srcFileName), new PdfWriter(ltvFileName), new StampingProperties
().UseAppendMode());
LtvVerification ltvVerification = new LtvVerification(document);
ltvVerification.AddVerification("Signature1", testOcspClient, testCrlClient, LtvVerification.CertificateOption
.SIGNING_CERTIFICATE, LtvVerification.Level.OCSP_CRL, LtvVerification.CertificateInclusion.YES);
ltvVerification.Merge();
document.Close();
PdfSigner signer = new PdfSigner(new PdfReader(ltvFileName), new FileStream(ltvTsFileName, FileMode.Create
), new StampingProperties().UseAppendMode());
signer.Timestamp(testTsa, "timestampSig1");
BasicCheckLtvDoc("ltvEnabledTsTest01.pdf", "timestampSig1");
}
public virtual void PadesSignatureLevelLTATest01()
{
String outFileName = destinationFolder + "padesSignatureLevelLTATest01.pdf";
String srcFileName = sourceFolder + "signedPAdES-LT.pdf";
String tsaCertFileName = certsSrc + "tsCertRsa.p12";
X509Certificate[] tsaChain = Pkcs12FileHelper.ReadFirstChain(tsaCertFileName, password);
ICipherParameters tsaPrivateKey = Pkcs12FileHelper.ReadFirstKey(tsaCertFileName, password, password);
PdfSigner signer = new PdfSigner(new PdfReader(srcFileName), new FileStream(outFileName, FileMode.Create),
new StampingProperties().UseAppendMode());
TestTsaClient testTsa = new TestTsaClient(JavaUtil.ArraysAsList(tsaChain), tsaPrivateKey);
signer.Timestamp(testTsa, "timestampSig1");
PadesSigTest.BasicCheckSignedDoc(destinationFolder + "padesSignatureLevelLTATest01.pdf", "timestampSig1");
}
public virtual void TimestampTest01()
{
String tsaCertFileName = certsSrc + "tsCertRsa.p12";
String srcFileName = sourceFolder + "helloWorldDoc.pdf";
String outFileName = destinationFolder + "timestampTest01.pdf";
X509Certificate[] tsaChain = Pkcs12FileHelper.ReadFirstChain(tsaCertFileName, password);
ICipherParameters tsaPrivateKey = Pkcs12FileHelper.ReadFirstKey(tsaCertFileName, password, password);
PdfSigner signer = new PdfSigner(new PdfReader(srcFileName), new FileStream(outFileName, FileMode.Create),
false);
TestTsaClient testTsa = new TestTsaClient(iText.IO.Util.JavaUtil.ArraysAsList(tsaChain), tsaPrivateKey);
signer.Timestamp(testTsa, "timestampSig1");
PadesSigTest.BasicCheckSignedDoc(destinationFolder + "timestampTest01.pdf", "timestampSig1");
}
public virtual void AddLtvInfo()
{
String tsaCertFileName = certsSrc + "tsCertRsa.p12";
String caCertFileName = certsSrc + "rootRsa.p12";
String srcFileName = sourceFolder + "signedDoc.pdf";
String ltvFileName = destinationFolder + "ltvEnabledTest01.pdf";
String ltvFileName2 = destinationFolder + "ltvEnabledTest02.pdf";
X509Certificate[] tsaChain = Pkcs12FileHelper.ReadFirstChain(tsaCertFileName, password);
ICipherParameters tsaPrivateKey = Pkcs12FileHelper.ReadFirstKey(tsaCertFileName, password, password);
X509Certificate caCert = (X509Certificate)Pkcs12FileHelper.ReadFirstChain(caCertFileName, password)[0];
ICipherParameters caPrivateKey = Pkcs12FileHelper.ReadFirstKey(caCertFileName, password, password);
TestTsaClient testTsa = new TestTsaClient(iText.IO.Util.JavaUtil.ArraysAsList(tsaChain), tsaPrivateKey);
TestOcspClient testOcspClient = new TestOcspClient(caCert, caPrivateKey);
TestCrlClient testCrlClient = new TestCrlClient(caCert, caPrivateKey);
AddLtvInfo(srcFileName, ltvFileName, "sig", testOcspClient, testCrlClient);
AddLtvInfo(ltvFileName, ltvFileName2, "sig2", testOcspClient, testCrlClient);
PdfReader reader = new PdfReader(ltvFileName2);
PdfDocument document = new PdfDocument(reader);
PdfDictionary catalogDictionary = document.GetCatalog().GetPdfObject();
PdfDictionary dssDictionary = catalogDictionary.GetAsDictionary(PdfName.DSS);
PdfDictionary vri = dssDictionary.GetAsDictionary(PdfName.VRI);
NUnit.Framework.Assert.IsNotNull(vri);
NUnit.Framework.Assert.AreEqual(2, vri.Size());
PdfArray ocsps = dssDictionary.GetAsArray(PdfName.OCSPs);
NUnit.Framework.Assert.IsNotNull(ocsps);
NUnit.Framework.Assert.AreEqual(2, ocsps.Size());
PdfArray certs = dssDictionary.GetAsArray(PdfName.Certs);
NUnit.Framework.Assert.IsNotNull(certs);
NUnit.Framework.Assert.AreEqual(2, certs.Size());
PdfArray crls = dssDictionary.GetAsArray(PdfName.CRLs);
NUnit.Framework.Assert.IsNotNull(crls);
NUnit.Framework.Assert.AreEqual(1, crls.Size());
}
public virtual void PadesSignatureLevelTTest01()
{
String outFileName = destinationFolder + "padesSignatureLevelTTest01.pdf";
String srcFileName = sourceFolder + "helloWorldDoc.pdf";
String signCertFileName = certsSrc + "signCertRsa01.p12";
String tsaCertFileName = certsSrc + "tsCertRsa.p12";
X509Certificate[] signRsaChain = Pkcs12FileHelper.ReadFirstChain(signCertFileName, password);
ICipherParameters signRsaPrivateKey = Pkcs12FileHelper.ReadFirstKey(signCertFileName, password, password);
IExternalSignature pks = new PrivateKeySignature(signRsaPrivateKey, DigestAlgorithms.SHA256);
X509Certificate[] tsaChain = Pkcs12FileHelper.ReadFirstChain(tsaCertFileName, password);
ICipherParameters tsaPrivateKey = Pkcs12FileHelper.ReadFirstKey(tsaCertFileName, password, password);
PdfSigner signer = new PdfSigner(new PdfReader(srcFileName), new FileStream(outFileName, FileMode.Create),
new StampingProperties());
signer.SetFieldName("Signature1");
signer.GetSignatureAppearance().SetPageRect(new Rectangle(50, 650, 200, 100)).SetReason("Test").SetLocation
("TestCity").SetLayer2Text("Approval test signature.\nCreated by iText7.");
TestTsaClient testTsa = new TestTsaClient(JavaUtil.ArraysAsList(tsaChain), tsaPrivateKey);
signer.SignDetached(pks, signRsaChain, null, null, testTsa, 0, PdfSigner.CryptoStandard.CADES);
PadesSigTest.BasicCheckSignedDoc(destinationFolder + "padesSignatureLevelTTest01.pdf", "Signature1");
}
public virtual void PadesSignatureLevelLTTest01()
{
String outFileName = destinationFolder + "padesSignatureLevelLTTest01.pdf";
String srcFileName = sourceFolder + "signedPAdES-T.pdf";
String tsaCertFileName = certsSrc + "tsCertRsa.p12";
String caCertFileName = certsSrc + "rootRsa.p12";
X509Certificate[] tsaChain = Pkcs12FileHelper.ReadFirstChain(tsaCertFileName, password);
ICipherParameters tsaPrivateKey = Pkcs12FileHelper.ReadFirstKey(tsaCertFileName, password, password);
X509Certificate caCert = (X509Certificate)Pkcs12FileHelper.ReadFirstChain(caCertFileName, password)[0];
ICipherParameters caPrivateKey = Pkcs12FileHelper.ReadFirstKey(caCertFileName, password, password);
ICrlClient crlClient = new TestCrlClient(caCert, caPrivateKey);
TestOcspClient ocspClient = new TestOcspClient().AddBuilderForCertIssuer(caCert, caPrivateKey);
TestTsaClient testTsa = new TestTsaClient(JavaUtil.ArraysAsList(tsaChain), tsaPrivateKey);
PdfDocument document = new PdfDocument(new PdfReader(srcFileName), new PdfWriter(outFileName), new StampingProperties
().UseAppendMode());
LtvVerification ltvVerification = new LtvVerification(document);
ltvVerification.AddVerification("Signature1", ocspClient, crlClient, LtvVerification.CertificateOption.SIGNING_CERTIFICATE
, LtvVerification.Level.OCSP_CRL, LtvVerification.CertificateInclusion.YES);
ltvVerification.Merge();
document.Close();
BasicCheckDssDict("padesSignatureLevelLTTest01.pdf");
}
