Mikaela/gist
1
0
Fork 0
mirror of https://gitea.blesmrt.net/mikaela/gist.git synced 2025-08-21 05:47:21 +02:00
Code Issues Projects Releases Wiki Activity

Compare commits

base: Mikaela:82981b5e5603cd0484f66529586f0a2eae3663d0
Branches Tags
Mikaela:master
..
compare: Mikaela:c47ccfa8e994594688e736903ffe035319f78440
Branches Tags
Mikaela:master

No commits in common. "82981b5e5603cd0484f66529586f0a2eae3663d0" and "c47ccfa8e994594688e736903ffe035319f78440" have entirely different histories.
82981b5e56 ... c47ccfa8e9

1 changed files with 3 additions and 13 deletions
Show Stats Expand all files Collapse all files

16
fineid/README.md
View File

@ -6,7 +6,6 @@
- [Chromium](#chromium)
- [Firefox and Thunderbird](#firefox-and-thunderbird)
- [Okular](#okular)
- [Validation](#validation)
- [Root certificates](#root-certificates)
- [Testing](#testing)
- [FINEID as SSH key](#fineid-as-ssh-key)
@ -70,20 +69,14 @@ Set the certificate database to one of the three:
- `/etc/nssdb` with password that I don't know.
- `~/.pki/nssdb` which password theoretically reads in `~/.digisign/Seed.txt` assuming the official DigiSignApplication is used.
- `~/.mozilla/firefox/<randomString>.<ProfileName>` - when Firefox is used (may require the configuration above), didn't ask me for a password, which may be the main password and directly offers the certificates from FINEID.
- This seems the most functional, refer to `about:profiles` within
Firefox/LibreWolf.
Next Apply or OK and restart Okular, open _Tools_ menu and select
_Digitally sign..._, draw an area for the signature (which FINEID wants to be big),
select where to save the signed .pdf and enter the signing PIN a few times.
### Validation
DVV provides a validator in three languages:
- [suomeksi](https://dvv.fineid.fi/fi/validation)
- [på svenska](https://dvv.fineid.fi/sv/validation)
- [in English](https://dvv.fineid.fi/en/validation)
These signed documents can then be verified at [English](https://dvv.fi/en/validate-pdf-document),
[Finnish](https://dvv.fi/tarkasta-pdf-asiakirja) or [Swedish](https://dvv.fi/sv/granska-pdf-dokument)
or other EIDAS/European signing verification capable services or applications.
```txt
✔️ PDF document validated. The following signatures were found:
@ -99,9 +92,6 @@ Issuer of certificate and root certificate: VRK Gov. CA for Citizen Certificates
Time of signature: ... (Time stamp not validated by a time stamp authority (TSA))
```
Although other EIDAS/European signing verification capable services or
applications should work too.
## Root certificates
While I don't think the user necessarily needs them, my notes mention `DVV Gov. Root CA`.