EldoS | Feel safer!

Software components for data protection, secure storage and transfer

Set PIN programmatically

#28247
Posted: 02/03/2014 13:33:11
by Toni Santa (Standard support level)
Joined: 05/27/2013
Posts: 62

I've an application sending soap request via Delphi VCL THTTPReqResp-component. The server needs for smartcard-authentication so when sending the reqeust it pops up the Windows security dialog asking for certificate to use and when selected the certificate it asks for the PIN-code. So far no problem. Now I would like to pass the certificate and the PIN by code. Based on your TinySignerPKCS11 demo project I'm able to open the storage (PKCS11CertStorage), get the slot and login onto the session. So the certificate with credentials should be in cache. But when posting the HTTPReqResp to the server, Windows still asks me the certificate to use and its PIN. After inserting the PIN the first time, the info seems to be cached as subsequential requests do no longer ask for certificate and PIN.
Is there a way to avoid the request of the PIN when sending the HTTPRequest first time and having the PIN? Could be the TelHTTP-components? (actually I don't have a HTTPBlackbox-license).
best regards
Toni
#28248
Posted: 02/03/2014 13:47:44
by Eugene Mayevski (Team)

With TElHTTPSClient you can implement client-side authentication with a certificate stored on hardware device, and you won't be prompted for any PINs (given that you pass a pin to Login method).

Delphi components use Windows HTTP client functionality which knows nothing about your PKCS#11 login session, hence the prompt.


Sincerely yours
Eugene Mayevski
#39433
Posted: 06/23/2017 14:56:56
by MASSIMO DANTINI (Basic support level)
Joined: 06/23/2017
Posts: 1

Hi I would need references / examples in java to automatically attach the PADES signature to pdf file by reading the certificate from usb token with enter PIN programmatically using the Eldos library. Many thanks
#39435
Posted: 06/23/2017 17:00:49
by Eugene Mayevski (Team)

Please, unpack the evaluation version of SecureBlackbox, and you will find the samples in the \Samples directory. There's a PAdES sample there ( in \Samples\PDFBlackbox\PAdES ). It will show you, how to get PAdES part. That sample does not include PKCS#11. Now, we also have TinySignerPKCS11 sample in \Samples\PDFBlackbox\TinySignerPKCS11 directory, which creates a simple PDF signature with the help of PKCS#11. You can use those two samples as guides.


Sincerely yours
Eugene Mayevski

Reply

Statistics

Topic viewed 2273 times

Number of guests: 1, registered members: 0, in total hidden: 0




|

Back to top

As of July 15, 2016 EldoS business operates as a division of /n software, inc. For more information, please read the announcement.

Got it!