(JavaScript) Sign PDF using ARSS (Aruba Remote Signing Service)

See more Signing in the Cloud Examples

Demonstrates how to sign a PDF using the Aruba Remote Signing Service (ARSS).

Note: This example requires Chilkat v9.5.0.96 or greater.

Note

This example is intended for running within a Chilkat.Js embedded JavaScript engine. All Chilkat JavaScript examples require Chilkat v11.4.0 or greater.

var success = false;

// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

var pdf = new CkPdf();

// Load a PDF to be signed.
success = pdf.LoadFile("qa_data/pdf/hello.pdf");
if (success == false) {
    console.log(pdf.LastErrorText);
    return;
}

// Options for signing are specified in JSON.
var json = new CkJsonObject();

// Indicate that we want an LTV-enabled signature
json.UpdateBool("ltvOcsp",true);

// Define the appearance of the signature.
json.UpdateInt("page",1);
json.UpdateString("appearance.y","top");
json.UpdateString("appearance.x","left");
json.UpdateString("appearance.fontScale","10.0");
json.UpdateString("appearance.text[0]","Digitally signed by: cert_cn");
json.UpdateString("appearance.text[1]","current_dt");
json.UpdateString("appearance.text[2]","This is an LTV-enabled signature.");

// Load the certificate used for signing.  The certificate's private key is stored on 
// the Aruba.it server and the signing will happen remotely using the
// ARSS (Aruba Remote Signing Service).
// However, we still need the certificate locally (without private key).
var cert = new CkCert();
success = cert.LoadFromFile("qa_data/certs/myCert.cer");
if (success == false) {
    console.log(cert.LastErrorText);
    return;
}

// To sign using the Aruba Remote Signing Service, 
// add the following lines of code to specify your authentication credentials,
// and the ID of the certificate w/ private key on the server to be used.
var jsonArss = new CkJsonObject();

// Set the "service" equal to "ARSS" to tell Chilkat to use ARSS for signing.
jsonArss.UpdateString("service","ARSS");
// Specify the certificate ID, such as "AS0"
// This certificate should match the certificate loaded in the above code.
jsonArss.UpdateString("certID","YOUR_ARSS_CERT_ID");
jsonArss.UpdateString("otpPwd","YOUR_OTP_PWD");
jsonArss.UpdateString("typeOtpAuth","demoprod");
jsonArss.UpdateString("user","YOUR_ARSS_USERNAME");
jsonArss.UpdateString("userPWD","YOUR_ARSS_PASSWORD");
success = cert.SetCloudSigner(jsonArss);

// Tell the pdf object to use the certificate for signing.
success = pdf.SetSigningCert(cert);
if (success == false) {
    console.log(pdf.LastErrorText);
    return;
}

// Chilkat will build the signed PDF locally, but will (internally) use ARSS
// to do the RSA sign hash operation.
success = pdf.SignPdf(json,"qa_output/hello_ltv_signed.pdf");
if (success == false) {
    console.log(pdf.LastErrorText);
    return;
}

console.log("The PDF has been successfully cryptographically signed with long-term validation.");