mirror of
https://gitea.blesmrt.net/mikaela/gist.git
synced 2025-08-21 13:57:38 +02:00
Compare commits
No commits in common. "82981b5e5603cd0484f66529586f0a2eae3663d0" and "c47ccfa8e994594688e736903ffe035319f78440" have entirely different histories.
82981b5e56
...
c47ccfa8e9
@ -6,7 +6,6 @@
|
|||||||
- [Chromium](#chromium)
|
- [Chromium](#chromium)
|
||||||
- [Firefox and Thunderbird](#firefox-and-thunderbird)
|
- [Firefox and Thunderbird](#firefox-and-thunderbird)
|
||||||
- [Okular](#okular)
|
- [Okular](#okular)
|
||||||
- [Validation](#validation)
|
|
||||||
- [Root certificates](#root-certificates)
|
- [Root certificates](#root-certificates)
|
||||||
- [Testing](#testing)
|
- [Testing](#testing)
|
||||||
- [FINEID as SSH key](#fineid-as-ssh-key)
|
- [FINEID as SSH key](#fineid-as-ssh-key)
|
||||||
@ -70,20 +69,14 @@ Set the certificate database to one of the three:
|
|||||||
- `/etc/nssdb` with password that I don't know.
|
- `/etc/nssdb` with password that I don't know.
|
||||||
- `~/.pki/nssdb` which password theoretically reads in `~/.digisign/Seed.txt` assuming the official DigiSignApplication is used.
|
- `~/.pki/nssdb` which password theoretically reads in `~/.digisign/Seed.txt` assuming the official DigiSignApplication is used.
|
||||||
- `~/.mozilla/firefox/<randomString>.<ProfileName>` - when Firefox is used (may require the configuration above), didn't ask me for a password, which may be the main password and directly offers the certificates from FINEID.
|
- `~/.mozilla/firefox/<randomString>.<ProfileName>` - when Firefox is used (may require the configuration above), didn't ask me for a password, which may be the main password and directly offers the certificates from FINEID.
|
||||||
- This seems the most functional, refer to `about:profiles` within
|
|
||||||
Firefox/LibreWolf.
|
|
||||||
|
|
||||||
Next Apply or OK and restart Okular, open _Tools_ menu and select
|
Next Apply or OK and restart Okular, open _Tools_ menu and select
|
||||||
_Digitally sign..._, draw an area for the signature (which FINEID wants to be big),
|
_Digitally sign..._, draw an area for the signature (which FINEID wants to be big),
|
||||||
select where to save the signed .pdf and enter the signing PIN a few times.
|
select where to save the signed .pdf and enter the signing PIN a few times.
|
||||||
|
|
||||||
### Validation
|
These signed documents can then be verified at [English](https://dvv.fi/en/validate-pdf-document),
|
||||||
|
[Finnish](https://dvv.fi/tarkasta-pdf-asiakirja) or [Swedish](https://dvv.fi/sv/granska-pdf-dokument)
|
||||||
DVV provides a validator in three languages:
|
or other EIDAS/European signing verification capable services or applications.
|
||||||
|
|
||||||
- [suomeksi](https://dvv.fineid.fi/fi/validation)
|
|
||||||
- [på svenska](https://dvv.fineid.fi/sv/validation)
|
|
||||||
- [in English](https://dvv.fineid.fi/en/validation)
|
|
||||||
|
|
||||||
```txt
|
```txt
|
||||||
✔️ PDF document validated. The following signatures were found:
|
✔️ PDF document validated. The following signatures were found:
|
||||||
@ -99,9 +92,6 @@ Issuer of certificate and root certificate: VRK Gov. CA for Citizen Certificates
|
|||||||
Time of signature: ... (Time stamp not validated by a time stamp authority (TSA))
|
Time of signature: ... (Time stamp not validated by a time stamp authority (TSA))
|
||||||
```
|
```
|
||||||
|
|
||||||
Although other EIDAS/European signing verification capable services or
|
|
||||||
applications should work too.
|
|
||||||
|
|
||||||
## Root certificates
|
## Root certificates
|
||||||
|
|
||||||
While I don't think the user necessarily needs them, my notes mention `DVV Gov. Root CA`.
|
While I don't think the user necessarily needs them, my notes mention `DVV Gov. Root CA`.
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user