Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Prepare a new major version #24

Merged
merged 63 commits into from
Jul 22, 2019
Merged

Prepare a new major version #24

merged 63 commits into from
Jul 22, 2019

Conversation

vbuch
Copy link
Owner

@vbuch vbuch commented May 21, 2019
edited
Loading

I'm doing more than one thing at a time. While this is WIP, I'm logging changes in the CHANGELOG. The main feature is the helper to sign a non-pdfkit created document as per #22

vbuch added 19 commits April 19, 2019 17:13
@vbuch
Playing around with trailers and reading per spec
e0bd6c2
@vbuch
extracting more stuff...
451975c
@vbuch
More parsing of the ref table
67d42c6
@vbuch
Acutually implementing simple incremental update
2806909
@vbuch
Wrote tasks down
e45f6ec
@vbuch
Linked form and annotation
96aaf6a
@vbuch
Fixed links. Only trailer remaining
8287a86
@vbuch
Added trailer
8f8d65d
@vbuch
liniting
954ca7e
@vbuch
try to sign pdfkit-generated one
fcba91b
@vbuch
Put /Annots in a page. Ref /Prev xref. Fix findObject.
53b74b1
@vbuch
Less saving
49e26b8
@vbuch
🚚 Moved resources out of the root
dcf3552
@vbuch
🔥 Removed verification code.
3037b5d 
It is not a fully completed feature. There is much more to implement.
@vbuch
♻️ Do not export what doesn't need exporting
bd69a2b
@vbuch
🍱 Added a signed PDF to use in tests
a32a212
@vbuch
♻️ 🚚 Moved/Restructured code around
0e52cf9
@vbuch
📝 Started a changelog
47311d7
@vbuch
📝 Removed verification notes. Added link to changelog
3052a16
@vbuch vbuch changed the title WIP: Prepare a new major version Prepare a new major version May 21, 2019
@vbuch vbuch marked this pull request as ready for review June 25, 2019 15:13
vbuch
vbuch commented Jun 25, 2019
View reviewed changes
Copy link
Owner Author

@vbuch vbuch left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The signatures of pdfkitAddPlaceholder and plainAddPlaceholder differ. They may at least both use Paramater Objects. plainAddPlaceholder accepts its buffer separately.

@vbuch
Copy link
Owner Author

vbuch commented Jul 10, 2019

@maldimirov if/when you have time, could you give the code a glance? If/when you have more time, you could even modify what you don't like :) I'm not asking @samaleksov because he has some other coding snippets to do...

@vbuch vbuch merged commit 29dcd90 into develop Jul 22, 2019
@MohammedEssehemy
Copy link
Contributor

MohammedEssehemy commented Jul 27, 2019
edited
Loading

@vbuch could we list what's missing in PDF signature verification to start working on, instead of removing this functionality from the library?

@vbuch
Copy link
Owner Author

vbuch commented Jul 28, 2019
edited
Loading

@MohammedEssehemy there were more than one reasons when i descided that.

  1. I had a real usecase when I was giving it an invalid signed doc and it reported it as valid. It was i think a malformed pdf that didnt have the appropriate links for the elements. But since the byte range is extracted without reading the file structure, it was reported as valid.
  2. I am pretty sure people will rarely need both signing and verification in the same project. If youbsplit your services well, you will have separate services for those two actions.
  3. The two processes have totally different dependencies.
  4. I don't have the time to deal with signing alone. I totally cannot support verification.

As I already wrote, the best would be if you created a separate package for that. I would be more than happy to help extract some helpers out into a shared lib so you dont have to rewrite or copy/paste them. Also I would be happy to use it in the testing of this repo. I also think it can be used in the tests of node-forge once available to verify the detached signing.

@MohammedEssehemy
Copy link
Contributor

@vbuch I'll work with my team on separating the package and will inform you once the package is ready, and will tell you about the helpers we need.

@MohammedEssehemy
Copy link
Contributor

@vbuch we have released version 0.1.0 from the library with multiple bug fixes.
it's called verrify-pdf
@Tarek-Essam

@vbuch vbuch deleted the play-with-trailers branch October 29, 2019 09:22
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@maldimirov maldimirov Awaiting requested review from maldimirov

@samaleksov samaleksov Awaiting requested review from samaleksov

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@vbuch @coveralls @MohammedEssehemy