Merge pull request #159 from documenso/feat/support-custom-cert-paths

feat: support leading cert from custom path

.env.example

@@ -16,6 +16,10 @@ NEXT_PUBLIC_WEBAPP_URL='http://localhost:3000'
 NEXTAUTH_SECRET='lorem ipsum sit dolor random string for encryption this could literally be anything'
 NEXTAUTH_URL='http://localhost:3000'
 
+# SIGNING
+CERT_FILE_PATH=
+CERT_PASSPHRASE=
+
 # MAIL (NODEMAILER)
 # SENDGRID
 # Get a Sendgrid Api key here: https://signup.sendgrid.com

.vscode/settings.json

@@ -14,6 +14,12 @@
     "source.removeUnusedImports": false
   },
   "typescript.tsdk": "node_modules/typescript/lib",
-  "spellright.language": ["de"],
+  "spellright.language": [
-  "spellright.documentTypes": ["markdown", "latex", "plaintext"]
+    "de"
+  ],
+  "spellright.documentTypes": [
+    "markdown",
+    "latex",
+    "plaintext"
+  ]
 }

apps/web/pages/documents/[id]/sign.tsx

@@ -59,7 +59,7 @@ export async function getServerSideProps(context: any) {
     },
   });
 
-  const recipient = await prisma.recipient.findFirstOrThrow({
+  const recipient = await prisma.recipient.findFirst({
     where: {
       token: recipientToken,
     },
@@ -68,6 +68,15 @@ export async function getServerSideProps(context: any) {
     },
   });
 
+  if (!recipient) {
+    return {
+      redirect: {
+        permanent: false,
+        destination: "/404",
+      },
+    };
+  }
+
   // Document is already signed
   if (recipient.Document.status === DocumentStatus.COMPLETED) {
     return {

packages/signing/addDigitalSignature.ts

@@ -1,5 +1,6 @@
 import { PDFDocument, PDFHexString, PDFName, PDFNumber, PDFString } from "pdf-lib";
 
+
 const fs = require("fs");
 // Local copy of Node SignPDF because https://github.com/vbuch/node-signpdf/pull/187 was not published in NPM yet. Can be switched to npm packge.
 const signer = require("./node-signpdf/dist/signpdf");
@@ -8,8 +9,8 @@ export const addDigitalSignature = async (documentAsBase64: string): Promise<str
   // Custom code to add Byterange to PDF
   const PDFArrayCustom = require("./PDFArrayCustom");
   const pdfBuffer = Buffer.from(documentAsBase64, "base64");
-  const p12Buffer = fs.readFileSync("ressources/certificate.p12");
+  const p12Buffer = fs.readFileSync(process.env.CERT_FILE_PATH || "ressources/cert.p12");
-  const SIGNATURE_LENGTH = 4540;
+  const SIGNATURE_LENGTH = 12000;
 
   const pdfDoc = await PDFDocument.load(pdfBuffer);
   const pages = pdfDoc.getPages();
@@ -60,7 +61,7 @@ export const addDigitalSignature = async (documentAsBase64: string): Promise<str
 
   const signObj = new signer.SignPdf();
   const signedPdfBuffer: Buffer = signObj.sign(modifiedPdfBuffer, p12Buffer, {
-    passphrase: "",
+    passphrase: process.env.CERT_PASSPHRASE || "",
   });
 
   return signedPdfBuffer.toString("base64");