Gemalto Token not working anymore / Restricting card/token by model? #217
Comments
|
You can still use older Chrome Token Signing instead of the Web eID for Gemalto Safenet eTokens. I have the same situation and even put together an install guide here https://eideasy.com/how-to-install-token-signing-extension-for-google-chrome/ |
|
@smartman, we're doing that for now. I'm asking here to know the future policy of the Open eID, so we can plan for it. |
|
@tsmgodoi, @smartman we will add support for Gemalto Safenet eTokens to Web eID. Are there any other cards that you want to be supported? Let's continue the discussion on the Web eID side here: web-eid/libelectronic-id#33. |
|
In Brazil we also use the following models:
|
|
A short update on our plans: we intend to add tier 3 support for Windows CryptoAPI tokens to Web eID in the coming weeks, but only for cryptographic service providers (CSPs) that support Cryptography API: Next Generation (CNG). It should be sufficient for most current cards. If any cards have old drivers, we can raise the issue of supporting older CSPs separately later. Hopefully this covers the listed cards in Windows. We would love to add support for Linux and macOS as well, but then we need more information about the PKCS#11 drivers and ATRs. |
|
@tsmgodoi the first draft of the Windows CryptoAPI work is now available from web-eid/web-eid-app#231. You can download the binaries or the installer from the last build of the pull request and experiment if your cards work as expected in Windows. |
|
It detected my token. I couldn't sign, though, because the field "Enter PIN2 for signing" doesn't allow special characters. And the SafeNet Authentication Client requires a password with special characters. |
|
|
|
@tsmgodoi, we changed the code to use the external PIN entry dialog provided by the CSP driver as QSCD devices do not accept PIN input from external applications, so the special characters issue is off the table entirely now. You are very much invited to try if the latest build from web-eid/web-eid-app#231 and give feedback if this looks good to you. |
|
@mrts, I've tested it and it works like a charm now! Thank you for fulfilling our request. We really appreciate that. |
|
Excellent, glad to hear everything works! Supporting the community is important for us, please don't hesitate to get in touch in case of problems or feature proposals. |
|
The CryptoAPI work is now merged to main. Please report further issues and feature requests in the web-eid-app project. |
@tsmgodoi which TSP is issuing certificates on these tokens? I would be happy to add support for these TSP-s and CA-s to eID Easy electronic signature marketplace also. |
|
The certificates can be found here: |
Since the new version, the Gemalto Token can't sign hashes using the hwcrypto.js/webeid.js.
I've got a message saying: "Operation not supported. The card in the reader is not supported. Make sure that the engered ID-card is supported by the Web eID application."
Are you restricting card/token support by model? I want to confirm, because we use the Web eID solution outside Estonia to sign documents on an internal system. If so we need to think about new solutions/browser extensions.
The text was updated successfully, but these errors were encountered: