UNPKG

pdf-signature-reader

Version:

Verify the digital signature of the pdf

github.com/yudayahya/pdf-signature-reader

yudayahya/pdf-signature-reader

89 lines (63 loc) 2.62 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
## Verifying PDF signature The signed PDF file has the public certificate embedded in it, so all we need to verify a PDF file is the file itself. This package is a clone from [ninja-labs-tech/verify-pdf](https://github.com/ninja-labs-tech/verify-pdf) with update on dependencies, cause we got issue when installing the package with node >= 16 & npm >= 8 ## Installation ``` npm i pdf-signature-reader ``` ## Importing ```javascript // CommonJS require const verifyPDF = require('pdf-signature-reader'); // ES6 imports import verifyPDF from 'pdf-signature-reader'; ``` ## Verifying Verify the digital signature of the pdf and extract the certificates details ### Node.js ```javascript const verifyPDF = require('pdf-signature-reader'); const signedPdfBuffer = fs.readFileSync('yourPdf'); const { verified, authenticity, integrity, expired, signatures } = verifyPDF(signedPdfBuffer); ``` ### Browser ```javascript import verifyPDF from 'pdf-signature-reader'; const readFile = (e) => { const file = e.target.files[0] let reader = new FileReader(); reader.onload = function(e) { const { verified } = verifyPDF(reader.result); } reader.readAsArrayBuffer(file); }; ``` * signedPdfBuffer: signed PDF as buffer. * verified: The overall status of verification process. * authenticity: Indicates if the validity of the certificate chain and the root CA (overall in case of multiple signatures). * integrity: Indicates if the pdf has been tampered with or not (overall in case of multiple signatures). * expired: Indicates if any of the certificates has expired. * signatures: Array that contains the certificate details and signatureMeta (Reason, ContactInfo, Location and Name) for each signature. ## Certificates You can get the details of the certificate chain by using the following api. ```javascript const { getCertificatesInfoFromPDF } = require('pdf-signature-reader'); // require import { getCertificatesInfoFromPDF } from 'pdf-signature-reader'; // ES6 ``` ```javascript const certs = getCertificatesInfoFromPDF(signedPdfBuffer); ``` * signedPdfBuffer: signed PDF as buffer. * certs: * issuedBy: The issuer of the certificate. * issuedTo: The owner of the certificate. * validityPeriod: The start and end date of the certificate. * pemCertificate: Certificate in pem format. * clientCertificate: true for the client certificate. ## Credits * This incredible [NPM Package](https://github.com/ninja-labs-tech/verify-pdf) by ninja-labs-tech.