using ComPDFKit.DigitalSign; using ComPDFKit.Import; using ComPDFKit.PDFAnnotation.Form; using ComPDFKit.PDFDocument; using ComPDFKit.PDFPage; using System; using System.Collections.Generic; using System.Diagnostics; using System.Drawing; using System.IO; using System.Runtime.InteropServices; using System.Security.AccessControl; using System.Xml.Linq; using ImageMagick; namespace DigitalSignatureTest { internal class DigitalSignatureTestCertPathInPath { static private string parentPath = Path.GetDirectoryName(Path.GetDirectoryName(Path.GetDirectoryName(System.IO.Directory.GetCurrentDirectory()))); static private string outputPath = Path.Combine(parentPath, "Output", "CS"); static string trustedFolder = AppDomain.CurrentDomain.BaseDirectory + @"\TrustedFolder\"; static void Main() { #region Preparation work Console.WriteLine("Running digital signature sample...\n"); SDKLicenseHelper.LicenseVerify(); string certificatePath = "Certificate.pfx"; string password = "ComPDFKit"; if (!Directory.Exists(outputPath)) { Directory.CreateDirectory(outputPath); } if (!Directory.Exists(trustedFolder)) { Directory.CreateDirectory(trustedFolder); } CPDFSignature.SignCertTrustedFolder = trustedFolder; #endregion #region Sample 0: Create certificate GenerateCertificate(); #endregion #region Sample 1: Create digital signature CPDFDocument document = CPDFDocument.InitWithFilePath("CommonFivePage.pdf"); CreateDigitalSignature(document, certificatePath, password); document.Release(); #endregion #region Sample 2: Verify signature CPDFDocument signedDoc = CPDFDocument.InitWithFilePath("Signed.pdf"); VerifyDigitalSignature(signedDoc); #endregion #region Sample 3: Verify certificate VerifyCertificate(certificatePath, password); #endregion #region Sample 4: Print digital signature info PrintDigitalSignatureInfo(signedDoc); #endregion #region Sample 5: Trust Certificate TrustCertificate(signedDoc); #endregion #region Sample 6: Remove digital signature RemoveDigitalSignature(signedDoc); signedDoc.Release(); #endregion Console.WriteLine("Done!"); Console.ReadLine(); } /// /// in the core function "CPDFPKCS12CertHelper.GeneratePKCS12Cert": /// /// Generate certificate /// /// Password: ComPDFKit /// /// info: /C=SG/O=ComPDFKit/D=R&D Department/CN=Alan/emailAddress=xxxx@example.com /// /// C=SG: This represents the country code "SG," which typically stands for Singapore. /// O=ComPDFKit: This is the Organization (O) field, indicating the name of the organization or entity, in this case, "ComPDFKit." /// D=R&D Department: This is the Department (D) field, indicating the specific department within the organization, in this case, "R&D Department." /// CN=Alan: This is the Common Name (CN) field, which usually represents the name of the individual or entity. In this case, it is "Alan." /// emailAddress=xxxx@example.com: Email is xxxx@example.com /// /// CPDFCertUsage.CPDFCertUsageAll: Used for both digital signing and data validation simultaneously. /// /// is_2048 = true: Enhanced security encryption. /// private static void GenerateCertificate() { Console.WriteLine("--------------------"); Console.WriteLine("Generate certificate signature."); string info = "/C=SG/O=ComPDFKit/D=R&D Department/CN=Alan/emailAddress=xxxx@example.com"; string password = "ComPDFKit"; string filePath = "Certificate.pfx"; if (CPDFPKCS12CertHelper.GeneratePKCS12Cert(info, password, filePath, CPDFCertUsage.CPDFCertUsageAll, true)) { Console.WriteLine("File saved in " + filePath); Console.WriteLine("Generate PKCS12 certificate done."); } else { Console.WriteLine("Generate PKCS12 certificate failed."); } Console.WriteLine("--------------------"); } /// /// /// Adding a signature is divided into two steps: /// creating a signature field and filling in the signature. /// /// Page Index: 0 /// Rect: CRect(28, 420, 150, 370) /// Border RGB:{ 0, 0, 0 } /// Widget Background RGB: { 150, 180, 210 } /// /// Text: Grantor Name /// Content: /// Name: get grantor name from certificate /// Date: now(yyyy.mm.dd) /// Reason: I am the owner of the document. /// DN: Subject /// Location: Singapor /// IsContentAlignLeft: false /// IsDrawLogo: True /// LogoBitmap: logo.png /// text color RGB: { 0, 0, 0 } /// content color RGB: { 0, 0, 0 } /// Output file name: document.FileName + "_Signed.pdf" /// private static void CreateDigitalSignature(CPDFDocument document, string certificatePath, string password) { Console.WriteLine("--------------------"); Console.WriteLine("Create digital signature."); CPDFSignatureCertificate certificate = CPDFPKCS12CertHelper.GetCertificateWithPKCS12Path("Certificate.pfx", "ComPDFKit"); CPDFPage page = document.PageAtIndex(0); CPDFSignatureWidget signatureField = page.CreateWidget(C_WIDGET_TYPE.WIDGET_SIGNATUREFIELDS) as CPDFSignatureWidget; signatureField.SetRect(new CRect(28, 420, 150, 370)); signatureField.SetWidgetBorderRGBColor(new byte[] { 0, 0, 0 }); signatureField.SetWidgetBgRGBColor(new byte[] { 150, 180, 210 }); signatureField.UpdateAp(); string name = GetGrantorFromDictionary(certificate.SubjectDict) + "\n"; string date = DateTime.Now.ToString("yyyy.MM.dd HH:mm:ss"); string reason = "I am the owner of the document."; string location = certificate.SubjectDict["C"]; string DN = certificate.Subject; CPDFSignatureConfig signatureConfig = new CPDFSignatureConfig { Text = GetGrantorFromDictionary(certificate.SubjectDict), Content = "Name: " + name + "\n" + "Date: " + date + "\n" + "Reason: " + reason + " \n" + "Location: " + location + "\n" + "DN: " + DN + "\n", IsContentAlignLeft = false, IsDrawLogo = true, TextColor = new float[] { 0, 0, 0 }, ContentColor = new float[] { 0, 0, 0 } }; using (var image = new MagickImage("Logo.png")) { byte[] byteArray = image.ToByteArray(MagickFormat.Bgra); signatureConfig.LogoData = byteArray; signatureConfig.LogoHeight = image.Height; signatureConfig.LogoWidth = image.Width; } string filePath = Path.Combine(outputPath, document.FileName + "_Signed.pdf"); signatureField.UpdataApWithSignature(signatureConfig); if (document.WriteSignatureToFilePath(signatureField, filePath, certificatePath, password, location, reason, CPDFSignaturePermissions.CPDFSignaturePermissionsNone)) { Console.WriteLine("File saved in " + filePath); Console.WriteLine("Create digital signature done."); } else { Console.WriteLine("Create digital signature failed."); } Console.WriteLine("--------------------"); } /// /// Remove digital signature /// You can choose if you want to remove the appearance /// /// private static void RemoveDigitalSignature(CPDFDocument document) { Console.WriteLine("--------------------"); Console.WriteLine("Remove digital signature."); CPDFSignature signature = document.GetSignatureList()[0]; document.RemoveSignature(signature, true); string filePath = Path.Combine(outputPath, "" + document.FileName + "_RemovedSign.pdf"); document.WriteToFilePath(filePath); Console.WriteLine("File saved in " + filePath); Console.WriteLine("Remove digital signature done."); Console.WriteLine("--------------------"); } /// /// There are two steps can help you to trust a certificate. /// Set your trust path as a folder path, /// then add your certificate to the trust path. /// private static void TrustCertificate(CPDFDocument document) { Console.WriteLine("--------------------"); Console.WriteLine("Trust certificate."); CPDFSignature signature = document.GetSignatureList()[0]; CPDFSignatureCertificate signatureCertificate = signature.SignerList[0].CertificateList[0]; Console.WriteLine("Certificate trusted status: " + signatureCertificate.IsTrusted.ToString()); Console.WriteLine("---Begin trusted---"); if (signatureCertificate.AddToTrustedCertificates()) { Console.WriteLine("Certificate trusted status: " + signatureCertificate.IsTrusted.ToString()); Console.WriteLine("Trust certificate done."); } else { Console.WriteLine("Trust certificate failed."); } Console.WriteLine("--------------------"); } /// /// Verify certificate /// /// To verify the trustworthiness of a certificate, /// you need to verify that all certificates in the certificate chain are trustworthy. /// /// In ComPDFKit,this progess is automatic. /// You should call the "CPDFSignatureCertificate.CheckCertificateIsTrusted" first. /// then you can view the "CPDFSignatureCertificate.IsTrusted" property. /// /// A signed document private static void VerifyCertificate(string certificatePath, string password) { Console.WriteLine("--------------------"); Console.WriteLine("Verify certificate."); CPDFSignatureCertificate certificate = CPDFPKCS12CertHelper.GetCertificateWithPKCS12Path(certificatePath, password); certificate.CheckCertificateIsTrusted(); if (certificate.IsTrusted) { Console.WriteLine("Certificate is trusted"); } else { Console.WriteLine("Certificate is not trusted"); } Console.WriteLine("Verify certificate done."); Console.WriteLine("--------------------"); } /// /// Verify digital signature /// /// Refresh the validation status before reading the attributes, or else you may obtain inaccurate results. /// Is the signature verified: indicating whether the document has been tampered with. /// Is the certificate trusted: referring to the trust status of the certificate. /// private static void VerifyDigitalSignature(CPDFDocument document) { Console.WriteLine("--------------------"); Console.WriteLine("Verify digital signature."); foreach (var signature in document.GetSignatureList()) { signature.VerifySignatureWithDocument(document); foreach (var signer in signature.SignerList) { Console.WriteLine("Is the certificate trusted: " + signer.IsCertTrusted.ToString()); Console.WriteLine("Is the signature verified: " + signer.IsSignVerified.ToString()); if (signer.IsCertTrusted && signer.IsSignVerified) { // Signature is valid and the certificate is trusted // Perform corresponding actions } else if (!signer.IsCertTrusted && signer.IsSignVerified) { // Signature is valid but the certificate is not trusted // Perform corresponding actions } else { // Signature is invalid // Perform corresponding actions } } } Console.WriteLine("Verify digital signature done."); Console.WriteLine("--------------------"); } public static string GetGrantorFromDictionary(Dictionary dictionary) { string grantor = string.Empty; dictionary.TryGetValue("CN", out grantor); if (string.IsNullOrEmpty(grantor)) { dictionary.TryGetValue("OU", out grantor); } if (string.IsNullOrEmpty(grantor)) { dictionary.TryGetValue("O", out grantor); } if (string.IsNullOrEmpty(grantor)) { grantor = "Unknown Signer"; } return grantor; } /// /// this samples shows how to get main properties in digital signature. /// read API reference to see all of the properties can get /// /// private static void PrintDigitalSignatureInfo(CPDFDocument document) { Console.WriteLine("--------------------"); Console.WriteLine("Print digital signature info."); foreach (var signature in document.GetSignatureList()) { signature.VerifySignatureWithDocument(document); Console.WriteLine("Name: " + signature.Name); Console.WriteLine("Location: " + signature.Location); Console.WriteLine("Reason: " + signature.Reason); foreach (var signer in signature.SignerList) { Console.WriteLine("Date: " + signer.AuthenDate); foreach (var certificate in signer.CertificateList) { Console.WriteLine("Subject: " + certificate.Subject); } } } Console.WriteLine("Print digital signature info done."); Console.WriteLine("--------------------"); } } }