signotec Documentation

ssu documentation

Overview

signoSign/Universal is a web application used to display, edit and sign PDF documents and can be used flexibly from any end device. Apps are available for Android, iOS and Windows for simple use cases, as well as a small web application (‘signoSign/Universal document pool’). These allow the application to be used without the need for integration. For more complex use cases, the application can be integrated seamlessly into existing systems via a range of interfaces.

This documentation describes the technical integration options and the application programming interfaces (APIs) available.

Architecture

signoSign/Universal consists of a frontend that is displayed to the user in a browser or one of the signoSign/Universal apps on the client, and a backend in which the documents are processed on a Java server. Depending on the integration scenario, the backend accesses a persistence in the form of a database, a persistence made available by the integrator via a plug-in interface or data stored in the session. A REST web service can be used to access both the database and the data stored in the session.

H2 is also supplied as a configured database. Depending on the application scenario, we recommend configuring another database in live environments. A database is not required to integrate a custom persistence or to simply just store the data in the session.

Configuration

signoSign/Universal can be configured both statically using properties files, environment variables and system variables, as well as dynamically to a certain extent using a REST web service or a plug-in interface. A more detailed description of the configuration can be found in the Configuration parameters section.

Interfaces

signoSign/Universal provides comprehensive interfaces for a wide range of technologies. The following section contains a short overview of the available interfaces and their typical applications.

REST web service

The REST web service is the basis for the integration of signoSign/Universal and must always be used to generate a viewer instance, load a document and request the URL of the viewer in order to display it in a browser or a web view. The appearance and behaviour of the viewer instance can also be configured.

In addition, the web service offers functions to access the configured database.

The web service enables flexible integration with almost any programming language. signoSign/Universal does not require a direct connection to other systems; all data are exchanged via web interfaces.

Exchanging documents with third-party systems

The REST web service can be used to configure a URL via which signoSign/Universal can load a document in the viewer instance, as well as a URL to which signoSign/Universal can upload an edited document when saving it. This may be necessary if the REST client does not have access to the documents because they are to be created and processed on a third-party system. In this case, cookies can be set via which signoSign/Universal can also provide application information such as an authorisation.

More info here.

Plug-in interface

An integrator can be used to transfer and receive user-specific documents and configurations to and from the backend via the plug-in interface. The interface is particularly well-suited to situations in which the customer’s application and signoSign/Universal can be directly or indirectly connected with one another via a shared database, for example. Documents and configurations can then be exchanged directly between the systems.

This type of integration requires the interface to be implemented in Java. This custom implementation then replaces the supplied default integration that accesses the supplied database and some of the static configuration parameters. This makes the default integration partially or fully obsolete.

JavaScript functions and events

The frontend offers a range of JavaScript functions via which the program can control the viewer if it is embedded into another web application via an iFrame. This allows the signing process to be started or the file to be saved, for example. In addition, the surrounding application can be informed of certain events and respond to these.

The special feature of an iFrame integration is that the surrounding application can be blocked and that it retains control until the work in signoSign/Universal has been completed.

Licensing

By default, signoSign/Universal is supplied without a licence key entered. The full functionality of the application can be used without restriction in this state, but any signature images or pages rendered are watermarked.

If the application is used with a licence, certain attributes are used to verify this. A licence is generally linked to the following attributes:

The host name
The maximum number of processor cores used
The number of concurrent viewers

If the licence verification fails or an invalid licence key is entered, a corresponding error message will appear when opening a document in signoSign/Universal. This behaviour is designed to prevent the application from being used in demo mode inadvertently.

A licence key can be set in the settings.properties file, as a Java system property or as an environment variable.

Licence attribute – host name

The computer name entered on the licence is compared with the output of the Java function InetAddress.getLocalHost().getHostName().

Licence attribute – processor cores

The number of processor cores used entered on the licence may not be lower than the actual number of cores used by the operating server.

Licence attribute – number of concurrent uses of the viewer

The number of concurrent uses entered on the licence refers exclusively to the documents displayed in the Viewer. Access to data sets or resources of the web service interface is not included in concurrent use of the viewer.

Configuration parameters

The global server settings are specified in a standard Java properties file. The application contains a file with default settings that can be either edited directly in the file or overloaded with an external properties file (see also externalPropertiesFile). Changes to the settings only come into effect after the application has been restarted.

[WEB-APP-ROOT]/WEB-INF/classes/settings.properties
[WEB-APP-ROOT]/ssu_web-x.x.x.x.war/WEB-INF/classes/settings.properties

This section describes the possible settings in the properties file and how these settings can be configured.

Environment and system variables

Every setting in the properties file can also be configured/overwritten by Java system properties and environment variables. The points in the variable names can be replaced by underscores (optional).

Format:
signotec.ssu. [SETTING]

Examples:

export signotec_ssu_business_licenseKey=myLicenseKey
set signotec.ssu.business.licenseKey=myLicenseKey
-Dsignotec.ssu.business.licenseKey=myLicenseKey

Please note:

Environment variables with points are not permitted in every operating system. We generally recommend replacing all points with underscores. signotec.ssu.business.licenseKey - > signotec_ssu_business_licenseKey
We recommend using the Java system properties as the call for the environment variables can vary between different Java servers.

Outsourcing configuration

The settings should be stored separately from the web application to simplify maintenance of the application in the future. User-defined settings should be specified in an external properties file instead of editing the default settings in the delivery package. Create a copy of the default settings and specify the storage location of the copy using the ‘signotec_ssu_externalpropertiesfile’ setting.

export signotec_ssu_externalpropertiesfile=/myConfigFolder/ssu/settings.properties

The default settings will load initially when starting signoSign/Universal and these will then be expanded/overwritten by the external settings.

Web settings

The following settings are possible in settings.properties with the prefix "web.".

ssmPublicUrl

Describes the public signoSign/Universal URL. This should be configured if the Java server on which signoSign/Universal is being run is not accessed directly (for example, if a load balancer is being used).

Possible values:	Any URL accessible by the client.
Key	`web.ssmPublicUrl`
Default value	-
Notes	If this value is not defined, the incoming requests will open the public URL.

showLeaveUnchangedDialog

This setting defines whether a dialog box is displayed when leaving an unchanged document that notifies the user that no changes have been made to the document.

Possible values:

`true`	A dialog box will be displayed when leaving an unchanged document.
`false`	A dialog box will not be displayed when leaving an unchanged document.

Key web.showLeaveUnchangedDialog

Default value false

Notes -

supportedCaptureInput

This setting defines a list of allowed Input types for a handwritten signature. When capturing it is checked whether the input type used is included in the list is. If the input type is not included, the acquisition is canceled and the user gets hinted about all allowed input types.

Possible values:

`MOUSE`	Allows mouse input
`TOUCH`	Allows touch input
`PEN`	Allows input via electrical pen
`PAD`	Allows input via signotec signature pad

Key web.supportedCaptureInput

Default value MOUSE,TOUCH,PEN,PAD

Notes

With the exception of the input type PAD, all input types are recognized using Javascript event types.
The application expects pressure values between 0 and 1. All values above 1 are shortened to 1 on the server.
The input type PAD requires the installation of the signoPAD-API/Web on the client system.

signatureFieldsOrderMode

This setting defines the order in which the signature fields are jumped into in the Viewer when the signing process for all fields is started by clicking the Sign button or the signature process is started through the automatedSignStartMode setting.

Possible values:

`FIELDORDER`	The signature fields are jumped into in the order in which they were inserted into the document. This order applies to all pages and is unique to the entire document. Technically, this is the order in the ‘Fields’ entry of the document.
`TABORDER`	The signature fields are jumped into in the manual tab order specified in the document. This order is only unique to each page. This means all of the fields on the first page are jumped into, then all of the fields on the second page and so on. Technically, this is the order in the ‘Annots’ entry of the respective page.

Key web.signatureFieldsOrderMode

Default value FIELDORDER

Notes -

hardwarePadsOnly

This setting defines whether documents can only be signed with signature pads, or with the mouse or a touch device as well. If this option is enabled and no signature device is detected, all signature fields in the document will be hidden. This option is ignored when using signoSign/Universal apps.

Possible values:

`true`	Only signature pads may be used for signing.
`false`	Signature with the mouse or a touch device is possible.

Key web.hardwarePadsOnly

Default value false

Notes -

disableMouseSignature

This setting determines whether signatures with the mouse pointer are disabled.

Possible values:

`true`	Signatures with the mouse are prevented.
`false`	Signatures can be displayed with the mouse.

Key web.disableMouseSignature

Default value false

Notes This setting does not affect touch entries.

serialPadSearchType

This setting defines whether to search for serial pads and at which ports of the client device. Serial devices are not searched for by default.

Possible values:

`NONE`	A search for serial pads is not run.
`2;3;5;7`	Values separated by a semi-colon. Example: The search is run on the ports COM2, COM3, COM5 and COM7.
`ALL`	The search will be run on all existing COM ports.

Key web.serialPadSearchType

Default value NONE

Notes -

wssDomainPort

This setting defines the domain names and the port from which the WebSocket of the signoPAD API/Web can be addressed. This setting is ignored if the add-on for Internet Explorer (ActiveX Pad Server) is used. You can find more information on this in the signoPAD API/Web documentation.

Possible values:	The URL from which the Websocket of the signoPAD-API/Web can be reached.
Key	`web.wssDomainPort`
Default value	`local.signotecwebsocket.de:49494`
Notes	Depending on the browser, there are restrictions to operating signoPAD API/Web from a TLS-protected environment without TLS and ActiveX components. You can find more information on this in the signoPAD API/Web documentation. The ActiveX component is always the preferred connection option. If a protocol is not explicitly specified, an attempt is made to establish a connection via WSS. If this fails, another attempt is made via WS. If a protocol is explicitly specified, an attempt is made to establish a connection via this protocol only.

signatureColor

This setting defines the pen colour of the signature.

Possible values:

`#0000FF`	A 6-digit colour code.
`#00F`	A 3-digit colour code.
`BLUE, RED, BLACK, CYAN, DARK_GRAY, GRAY, GREEN, LIGHT_GRAY, MAGENTA, PINK, ORANGE, WHITE, YELLOW`	All colours names that correspond to a valid colour value in CSS.

Key web.signatureColor

Default value BLUE

Notes -

photoAllowedInApp

signoSign/Universal apps allow signatures to be inserted into a document together with a photo. This setting determines whether this option is available during the signature processes.

Possible values:

`true`	Displays the photo button.
`false`	Does not display the photo button.

Key web.photoAllowedInApp

Default value true

Notes -

logoutUrl

In the logout process (signoSign/Universal logout button), the server attempts to redirect the client to several URLs in the following order. The URL that was sent with the referer request parameter when the document was loaded is used. If no referer has been transferred, the client is redirected to the logout URL.

Possible values:	The URL to which the client is redirected after logout and the application has been closed.
Key	`web.logoutUrl`
Default value	https://www.signotec.com
Notes	If this value is not defined in any way, the client is redirected to https://www.signotec.com.

Visibility of the toolbar buttons

The visibility of many of the toolbar buttons can be configured. A button can be configured to be visible, to be displayed in the submenu only, to be displayed in the header provided there is space available or to be displayed in the header as a matter of priority, which means that this button is moved to the submenu as a last resort.

Possible values:

`SUBMENU`	The button is only listed in the submenu.
`HIDDEN`	The button is not displayed.
`AUTO`	The button is displayed in the header or the submenu, depending on the resolution.
`HEADER`	The button is displayed in the header as a matter of priority.

Key

web.logoutUrl

web.showDocumentOnPadButtonVisibility

web.resizeButtonsVisibility

web.logoutButtonVisibility

web.sharingButtonVisibility

web.addNoteButtonVisibility

web.thumbnailButtonVisibility

web.saveButtonVisibility

web.summaryButtonVisibility

web.signButtonVisibility

web.addSignatureFieldButtonVisibility

web.exportButtonVisibility

Default value AUTO

Notes -

saveBeforeExport

This setting defines whether a document is saved before it is exported from the Viewer (by clicking the Export button). All other settings that influence the saving process such as saveImportedDocuments are factored in.

Possible values:

`true`	Automatic saving prior to each export.
`false`	No automatic saving prior to export. The separate button has to be used in order to save.

Key web.saveBeforeExport

Default value false

Notes -

saveImportedDocuments

This setting determines whether or not non-persistent documents (that were not loaded from the persistence) become persistent during the save process. This is also always used if a URL to remote storage is defined.

Possible values:

`true`	Imported documents are written in the persistence when they are saved.
`false`	Saving only synchronises the loaded document on the server.

Key web.saveImportedDocuments

Default value false

Notes If this value is false and a document is to be transferred directly to the application as a file or a URL (see also [POST]/viewer/document of the REST API), the document is not persistently synchronised when the save process is started; it is only synchronised with the backend. Remote saving is an exception.

signPadDocumentView

Only relevant when using a signing device!

Determines whether an excerpt of the document is displayed around the signature when capturing a signature with a signing device (see also signPadDocumentViewScalingFactor, signPadDocumentViewMarginLeft and signPadDocumentViewMarginTop)

Possible values:

`true`	An excerpt of the document is displayed when signing on a signature device.
`false`	A standard dialog box is displayed when signing on a signature device.

Key web.signPadDocumentView

Default value true

Notes Only relevant when using a signing device!

signPadDocumentViewScalingFactor

Only relevant when using a signing device!

This setting adjusts the scaling factor for the document excerpt on the signature device. It is an integer value that specifies the scaling in per cent.

Possible values:	Integer values between 10 (minimum zoom) and 200 (maximum zoom).
Key	`web.signPadDocumentViewScalingFactor`
Default value	`100`
Notes	Only relevant when using a signing device!

signPadDocumentViewMarginLeft

Only relevant when using a signing device!

This setting displays the left-hand edge of the signature field in the document excerpt. The larger the value, the greater the distance of the field from the left-hand edge.

Possible values:	Integer values between 0 and 100.
Key	`web.signPadDocumentViewMarginLeft`
Default value	`25`
Notes	Only relevant when using a signing device!

signPadDocumentViewMarginTop

Only relevant when using a signing device!

This setting displays the upper edge of the signature field in the document excerpt. The larger the value, the greater the distance from the upper edge.

Possible values:	Integer values between 0 and 100.
Key	`web.signPadDocumentViewMarginTop`
Default value	`75`
Notes	Only relevant when using a signing device!

autoShowDocumentOnPad

Only relevant when using a signing device!

This setting defines whether the document display on the signature device is to be started automatically when the viewer is opened. Autostart is only launched if a signotec Delta device has been found and signoPAD API/Web is installed on the client. This function is enabled by default.

Possible values:

`true`	Read mode is started if it is enabled.
`false`	If read mode is not enabled, it can be started manually.

Key web.autoShowDocumentOnPad

Default value true

Notes Only relevant when using a signing device!

clientDebugLogging

This setting enables debug logging on the client side via JavaScript. All outputs are written in the browser console for information purposes. We recommend disabling this option in live operations to improve performance.

Possible values:

`true`	Read mode is started if it is enabled.
`false`	If read mode is not enabled, it can be started manually.

Key web.clientDebugLogging

Default value false

Notes -

idleTimeout

This setting specifies the time period after which a document loaded by the user is closed by the server.

Permitted values:
All positive Integer values. 0 means that the timeout function is disabled.

Possible values:	Integer values in minutes. Specifying this value as 0 disables the timeout.
Key	`web.idleTimeout`
Default value	`60`
Notes	The option only applies to smartphones and tablets. The timeout option exists in case the client has closed a session unconventionally and the server could not be informed about it. If this happens and the server does not timeout, it may lead to the document becoming deadlocked.

captureBiometricData

This setting enables the capturing of biometric data during the signature capture. If this function is enabled, additional properties of the signature such as time taken and pen pressure are captured.

Possible values:

`true`	Biometric data is captured when signing.
`false`	Biometric data is not captured when signing.

Key web.captureBiometricData

Default value true

Notes -

mockMode

In mock mode, started signatures are immediately confirmed with randomly generated points. The use of signature pads is disabled in this mode, but the same sequence of events is triggered in the application as if a signature device is connected. In addition, all form fields in this process are populated with the value 1 to avoid conflicts with the mandatory fields.

Possible values:

`true`	Mock mode is enabled.
`false`	Mock mode is disabled.

Key web.mockMode

Default value false

Notes This setting enables load tests to be carried out and simulates a user.

padCertificationAuthorities

This setting can be used to specify a PEM file that contains one or more certificate chains from certification authorities. The order of the certificates in the file can be freely selected. If a file is specified, signoSign/Universal checks whether the signature certificate stored in the signature device has been signed by one of the contained certificates. If this is not the case, then no signatures can be captured. This function is disabled by default.

This setting acts as a guarantee that only signing devices with known signature certificates can be used.

Possible values:	Absolute or relative file path to a PEM file.
Key	`web.padCertificationAuthorities`
Default value	`-`
Notes	Only relevant when using a signing device!

Business settings

The following settings are possible in settings.properties with the prefix "business.".

licenseKey

The licence key for signoSign/Universal can be entered here. Only change this value if you have consulted signotec. The application cannot be used without a valid licence key. The application runs in evaluation mode if no key is entered.

Possible values:	A valid licence key provided by signotec.
Key	`business.licenseKey`
Default value	`-`
Notes	-

Persistence settings

These settings are read from the persistence layer and are ignored if a custom implementation is defined via the implementationClassName setting.

The following settings are possible in settings.properties with the prefix "persistence.".

implementationClassName

This setting enables the implementation of the persistence to be replaced by a custom implementation.

The value is the full class name with the user-defined implementation. The class must be public, must contain a public constructor without parameters and must implement the de.signotec.ssu.persistence.facade.SsuPersistenceModel interface.

Possible values:	Fully qualified class name.
Key	`persistence.implementationClassName`
Default value	`de.signotec.ssu.persistence.facade.SsuPersistenceLayerImpl`
Notes	If the persistence is newly implemented in part or in full, settings with the prefix ‘persistence.’ may cease to function.

pathToDocumentConfigFile

The storage location of document types. The default value is ./documentconfig.cfg.

Possible values:	Absolute or relative file path to the configuration file.
Key	`persistence.pathToDocumentConfigFile`
Default value	`./documentconfig.cfg`
Notes	-

referrerUrl

This setting specifies the URL to be redirected to if the Back button is clicked in the Viewer. Should the value be empty and no URL to go back to is defined, the Back button is not displayed.

Possible values:

A valid URL to be redirected to after the application has been closed.
`AUTO`	The URL from the HTTP header (referer) is opened

Key persistence.referrerUrl

Default value AUTO

Notes -

useDocumentLocking

This setting determines whether a document can be opened by multiple users simultaneously. This function is disabled by default.

Possible values:

`true`	An open document cannot be opened a second time.
`false`	A document is not locked after being opened.

Key persistence.useDocumentLocking

Default value false

Notes -

formFieldProtectMode

This setting controls which form fields are locked or marked as read-only when capturing a signature. This function never locks signature fields and never unlocks form fields that have already been locked.

Form or signature fields specified in the ‘signature field lock dictionary’ of a PDF are always locked independently of this function.

Possible values:

`ALL`	All form fields (except signature fields) are locked. Use this setting if a form may not be edited after the first signature.
`FILLED`	All form fields containing a value are locked. Use this setting if data that has already been entered into the form may not be edited, but empty form fields may still be filled out.
`NONE`	The function is disabled. signoSign/Universal will only refer to the signature field lock dictionary.

Key persistence.formFieldProtectMode

Default value ALL

Notes -

`signatureFieldAddingAllowed`

This setting defines whether signature fields may be added manually. This function is enabled by default.

Possible values:

`true`	Signature fields may be added manually.
`false`	Signature fields may not be added manually.

Key persistence.signatureFieldAddingAllowed

Default value true

Notes -

`signatureBackgroundTransparent`

This value specifies whether the background of the rendered signature image is transparent.

Possible values:

`AUTO`	The background is then only transparent if the loaded document is not a PDF/A 1-b.
`ALWAYS`	The signature is displayed with a transparent background.
`NEVER`	The signature is displayed with a white background

Key persistence.signatureBackgroundTansparent

Default value AUTO

Notes -

`signatureTextEnabled`

This setting defines whether the signature text, such as the timestamp (see persistence.signatureText) for example, is to be added into the image of the signature and be visible in the document.

Possible values:

`true`	User-defined text is added to rendered signature images.
`false`	Text is not added to rendered signature images.

Key persistence.signatureTextEnabled

Default value false

Notes -

`signatureText`

This setting can contain any text that is added to the signature field in addition to the signature when signing. @SIGNTIME and @LOCATION can be added as placeholders that are replaced by real values.

If the setting is left empty, a pre-set timestamp is generated in a pre-set format corresponding to the language setting of the calling browser.

Possible values:

Any character string with optional placeholders that are replaced by values when capturing a signature.
`@LOCATION`	Is replaced by position data if the signature was captured on a mobile device using the signoSign/Universal app and position data is enabled.
`@SIGNTIME`	Is replaced by the current time. The format of the timestamp is specified using the persistence.signatureTextDateTimeFormat setting.

Key persistence.signatureText

Default value signtime: @SIGNTIME, location: @LOCATION

Notes Take persistence.signatureTextEnabled into account

`signatureTextDateTimeFormat`

This setting sets the timestamp format by replacing ‘@SIGNTIME’ with ‘signatureText’, if included. The format string must adhere to the rules of Java SimpleDateFormat.

Possible values:

`y`	Year
`M`	Month
`d`	Day of the month
`h`	Hour in am/pm (1–12)
`H`	Hour (0–23)
`m`	Minute in hour
`s`	Seconds
`S`	Milliseconds
`z`	Time zone as text
`Z`	Time difference

Key persistence.signatureText

Default value dd.MM.yyyy HH:mm:ss Z

Notes -

`signatureTextHorizontalAlign`

A signature text can be added to every signature field. These settings allow you to define the alignment of the text.

Possible values:

`LEFT`	The text is aligned with the left-hand edge of the signature field.
`CENTER`	The text is aligned horizontally in the centre of the signature field.
`RIGHT`	The text is aligned with the right-hand edge of the signature field.

Key persistence.signatureTextHorizontalAlign

Default value LEFT

Notes -

`signatureTextVerticalAlign`

A signature text can be added to every signature field. These settings allow you to define the alignment of the text.

Possible values:

`BOTTOM`	The text is aligned with the bottom edge of the signature field.
`CENTER`	The text is aligned vertically in the centre of the signature field.
`TOP`	The text is aligned with the upper edge of the signature field.

Key persistence.signatureTextVerticalAlign

Default value LEFT

Notes -

`documentSharing`

This setting defines whether the function for sharing the document is enabled. If this function is disabled, the toolbar button is disabled/greyed out. The visibility of the toolbar button is configured using web.sharingButtonVisibility.

Possible values:

`true`	Documents can be shared.
`false`	Document sharing is disabled.

Key persistence.documentSharing

Default value true

Notes -

`documentSharingEditablePassword`

This setting defines whether the password of a shared document can be edited before the process is carried out. This function is enabled by default.

Possible values:

`true`	A custom password can be set when sharing a document. If the password is left empty in this case, the document can be called without a password.
`false`	A custom password cannot be set when sharing; the application will generate a random password.

Key persistence.documentSharingEditablePassword

Default value true

Notes Passwords are generated in a plug-in implementation (see note on ‘persistence.’ settings).

`automatedSignStartMode`

This property allows you to specify whether and how the signature capture is automatically started when a document is opened.

Permitted values:

Possible values:

`NEVER`	The function is disabled, does not start automatically.
`FIRST_FIELD`	Starts automatically with the first empty signature field.
`FIRST_MANDATORY_FIELD`	Starts automatically with the first empty mandatory signature field.
`CELL_PHONE_AUSTRIA`	Starts automatically with ‘mobile phone signature Austria’.

Key persistence.automatedSignStartMode

Default value NEVER

Notes -

`automatedSaveMode`

This property allows you to specify whether and when a document is saved automatically.

Possible values:

`NEVER`	The function is disabled. The document is not saved automatically.
`SIGNATURE_STARTING`	The document is saved before the start of a signature capture.
`SIGNATURE_FINISHED`	The document is saved after a signature has been captured.
`ALL_FIELDS_SIGNED`	The document is saved once the last empty signature field has been signed.
`DOCUMENT_CLOSING`	The document is saved when the document is closed by signoSign/Universal in the viewer.

Key persistence.automatedSaveMode

Default value NEVER

Notes -

`allowSignfieldSelection`

This setting defines whether the signature capture for a signature field can be started by clicking on the signature field. If this function is disabled, the signatures can only be captured in the predetermined order by using the ‘Sign’ button.

Possible values:

`true`	Direct signing by clicking the signature field is permitted.
`false`	The signature process can only be started via the signature button in the application. This means signatures can only be carried out in the pre-defined order.

Key persistence.allowSignfieldSelection

Default value true

Notes -

`usePadEncryption`

This setting controls whether the captured data of a signature are encrypted in the signotec signature device or in the backend of the web application. This means it only affects signatures captured with signature devices.

Possible values:

`NEVER`	The data are always encrypted in the backend of the web application on the server.
`IFSUPPORTED`	It is automatically detected whether the data can be encrypted in the signature device. If a signature device is not used or the pad does not support encryption, the data are encrypted in the backend of the web application.
`ALWAYS`	If a signature device is used, the data are always encrypted in the signature device. If the data cannot be encrypted, an error message is displayed to the user and the captured signature is not processed any further. If a signature device is not used, the data are encrypted in the backend of the web application.

Key persistence.usePadEncryption

Default value true

Notes -

Certificates

signoSign/Universal requires both a certificate for the encryption of the signature and a certificate with a private key for signing the document. See also the Certificates section. Encryption in the signature device is controlled using the persistence.usePadEncryption setting.

Please note
To encrypt the biometric data, signoSign/Universal is delivered with a certificate as standard, which is created and managed by a notary. This offers the highest possible level of security in handling sensitive signature data without you having to deal with key management. In the event of a dispute, the decryption of the biometrics can be commissioned to the notary. If you prefer to manage the certificates yourself, remember to adjust the configuration accordingly before using the system productively. You can obtain more information directly from the signotec sales team.
The document is digitally signed as standard with a demo certificate, which must be replaced by a trustworthy certificate for productive use. See also the Global certificates section.

`useCertificateDataProperties`

This setting defines whether an encryption certificate and a signature certificate are to be used globally for all users or whether the certificates are loaded from a central keystore.

Possible values:

`true`	Global certificates are used. The following settings in this section must also be configured.
`false`	signoSign/Universal generates sample certificates for each user. The following settings in this section are ignored.

Key persistence.useCertificateDataProperties

Default value true

Notes -

`keystoreBiometric`

This setting defines the absolute storage location of the keystore from which the encryption certificate is loaded.

Possible values:	Absolute path to the storage location of the keystore.
Key	`persistence.keystoreBiometric`
Default value	`keystoreBiometric.jks`
Notes	-

`biometricKeyStoreType`

This setting defines the type of the keystore as JKS, PKCS12, WINDOWS-MY and so on. The default value is the JRE standard type (JKE) or the type defined by the system property keystore.type. See also keystoreBiometric.

Possible values:	The character string with which a Java keystore implementation can be instantiated.
Key	`persistence.biometricKeyStoreType`
Default value	`JKS`
Notes	-

`biometricKeyStorePassword`

This setting defines the password for the keystore. Use an empty value if a password parameter of null must be transferred for the keystore implementation when the KeyStore.load() method is called.
The default value is biometricKeyStorePassword. See also keystoreBiometric.

Possible values:	The password of the keystore defined in keystoreBiometric.
Key	`persistence.biometricKeyStorePassword`
Default value	`biometricKeyStorePassword`
Notes	-

`biometricAlias`

The setting for the alias of the encryption certificate in the keystore. See also keystoreBiometric.

Possible values:	The alias for the encryption certificate of the keystore defined in keystoreBiometric.
Key	`persistence.biometricAlias`
Default value	`biometricAlias`
Notes	-

`keystoreSigning`

This setting defines the absolute or storage location of the keystore from which the signature certificate and the private key are loaded.

Possible values:	Absolute path to the storage location of the keystore.
Key	`persistence.keystoreSigning`
Default value	`keystoreSigning.jks`
Notes	-

`signingKeyStoreType`

This setting defines the type of the keystore as JKS, PKCS12, WINDOWS-MY and so on. The default value is the JRE standard type JKS or the type defined by the system property keystore.type.
See also keystoreSigning.

Possible values:	The character string with which a Java keystore implementation can be instantiated.
Key	`persistence.signingKeyStoreType`
Default value	`JKS`
Notes	-

`signingKeyStorePassword`

Possible values:	The password of the keystore defined in keystoreSigning.
Key	`persistence.signingKeyStorePassword`
Default value	`signingKeyStorePassword`
Notes	-

`signingAlias`

This setting defines the alias of the signature certificate and the private key in the keystore. See also keystoreSigning.

Possible values:	The alias for the signature certificate of the keystore defined in keystoreSigning.
Key	`persistence.signingAlias`
Default value	`signingAlias`
Notes	-

`signingPrivateKeyPassword`

This setting defines the password for the private key in the keystore. Use an empty value if a password parameter of null must be transferred for the keystore implementation when the KeyStore.load() method is called.
See also keystoreSigning.

Possible values:	The password for the private key in the keystore.
Key	`persistence.signingPrivateKeyPassword`
Default value	`signingPrivateKeyPassword`
Notes	-

Hibernate settings

The database connection is defined in the hibernate section of settings.properties. If a user-defined database is not specified, signoSign/Universal will attempt to start and use an H2 database. The storage location for this database depends on the hibernate.connectionUrl setting.

`connectionDriverClassName`

The JDBC driver class. Used for the hibernate.connection.driver_class hibernate property.

Possible values:	Fully qualified class name of the JDBC driver.
Key	`hibernate.connectionDriverClassName`
Default value	`org.h2.Driver`
Notes	The class specified must be recognised in the classpath. In addition, the corresponding JAR can either be stored in the Lib folder of the signoSign/Universal application or also made available on the server used.

`connectionUrl`

The JDBC URL to the database instance. Used for the hibernate.connection.url hibernate setting.

Possible values:	Connection URL to the database. Generally beings with ‘jdbc:’.
Key	`hibernate.connectionUrl`
Default value	`jdbc:h2:tcp://localhost/./SSU_DB/ssupersistencedb`
Notes	The storage location for the H2 database generated can be changed by adjusting the path of the default value. Example: `hibernate.connectionUrl=jdbc:h2:tcp://localhost/C:\SSU_DB`

`dialect`

Hibernate uses this property to generate the corresponding SQL for the selected database. Used for the ‘hibernate.dialect’ hibernate property.

Possible values:	A character string that refers to the valid hibernate database dialect.
Key	`hibernate.dialect`
Default value	`org.hibernate.dialect.h2Dialect`
Notes	-

`connectionUsername`

The database username. Used for the ‘hibernate.connection.username’ hibernate property.

Possible values:	The username with which access to the database is authorised.
Key	`hibernate.connectionUsername`
Default value	`sa`
Notes	-

`connectionPassword`

The database password. Used for the ‘hibernate.connection.password’ hibernate property.

Possible values:	The password with which access to the database is authorised.
Key	`hibernate.connectionPassword`
Default value	`-`
Notes	-

Deployment settings

These settings relate to the additional functions provided by signoSign/Universal.

The following settings are possible in settings.properties with the prefix ‘deployment.’.

devTools

This refers to a Boolean flag that decides whether signoSign/Universal provides the following content:

Possible values:

`true`	The application provides the resources listed in the description.
`false`	The resources listed in the description are not provided.

Key deployment.devTools

Default value true

Notes The value is set true by default. If the value is removed from the configuration, this corresponds to the value false.

restapi settings

These settings related to the Rest API provided.

The following settings are possible in settings.properties with the prefix ‘restapi.’.

whiteList

A comma-separated list of host names and IP addresses, the content of which decides whether a requesting client is granted access to the Rest API or not. The asterisk symbol (‘*’) acts as a wildcard character here.

Possible values:

`true`	The application provides the resources listed in the description.
`false`	The resources listed in the description are not provided.

Possible values:

`true`	The AUTH command is used.
`false`	The AUTH command is not used.

Key smtp.auth

Default value true

Notes -

`startTlsEnable`

Determines whether a TLS-protected connection is established before the transmission of login data.

Possible values:

`true`	A TLS-protected connection is established before the transfer of login data.
`false`	No TLS-protected connection is established before the transfer of login data.

The optional user name for basic authentication at the service.

Possible values:

Any string of characters.

Key tsa.user

Default value -

Notes -

`password`

The password for basic authentication.

Possible values:

Any string of characters.

Key tsa.password

Default value -

Notes Ignored if no username is specified.

pdfFont-realFont.properties

Open signosignuniversal-[PLATTFORM]-[VERSION].ear/lib/ssu-business-[VERSION].jar/pdfFont-realFont.properties (version for application server) or signoSignUniversal.war/WEB-INF/lib/ssu-business-[VERSION].jar/pdfFont-realFont.properties (version for servlet container).

This property file allows font names that are used in PDF documents but cannot be displayed in browsers or apps to be mapped. This occurs either when short forms of standard font names specific to PDF are used in the PDF document (these are already mapped), or when font names have been used that browsers and apps do not recognise when the PDF was generated (also includes an example).

Share document (sharing cases)

A document that is saved in signoSign/Universal can be shared with external persons using the sharing case function. The person does not need to be registered in signoSign/Universal.

What is a sharing case?

A sharing case is an element that is permanently saved in the database. It can be created, edited and deleted. A sharing case is linked to a document. Any number of sharing cases can be created per document.

If a sharing case exists for a document, then the document can be opened, edited and saved in signoSign/Universal viewer without authentication. Access can be password protected (optional).

A sharing case has the following attributes.

Attribute	Type	Description
`accessId`	`string`	The identifier of the sharing case that is specified in the URL by the parameter `s`. The identifier must be unique across the entire system.
`documentId`	`string`	The identifier of the document that is linked to the `Sharing Case`.
`password`	`string`	The optional password that must be entered when the sharing case is opened.
`comment`	`string`	Optional free text that describes the `Sharing Case`.

Creating a sharing case

signoSign/Universal viewer offers a toolbar button with which a sharing case can be created for the open document. The visibility of the button is defined using the web.sharingButtonVisibility setting. The button is displayed as disabled if the Sharing Case function is disabled using the persistence.documentSharing setting.

Sharing cases can be created, edited and deleted using the REST API sharingcases resource. Sharing cases created by signoSign/Universal viewer can also be edited.

Opening a sharing case

A sharing case is opened with a special URL. The URL can be called any number of times and is valid until the sharing case has been deleted.

URL format:

        [HOST]/signoSignUniversal/webvieweropen?action=sharedviewer&u=[USERNAME]&s=[ACCESSID]

URL parameters:

Parameter	Description
`u`	The name of the registered signoSign/Universal user with which the document is opened. The user must have access to the document. Example: `u=john_doe`
`s`	The `accessId` that was defined when the `Sharing Case` was created. Example: `s=myAccessId_1`

Completing a sharing case

A shared document is considered complete once the associated link is called up, the document is changed and saved. The time at which the shared document was saved is recorded.

If SMTP settings have been stored and the user name of the sharing user corresponds to a valid e-mail address, the user will be informed of the completion of the process with a corresponding e-mail.

Configuration of document types

A document type is a group of documents that are always handled in the same way by signotec software. This includes automatically inserting signature fields when loading a document, for example. These types of document properties can be defined either centrally through document configurations or decentrally by inserting SGN keywords into a PDF.

SGN/PDF documents

SGN documents are a file type developed by signotec. In terms of technical structure, it is a valid PDF in which a character string with a certain syntax is written in its Keyword field of the metadata.

A certain application behaviour can be defined decentrally in individual PDF documents by inserting SGN keywords. The signotec keywords listed below (SGN Keywords) are currently evaluated by signoSign/Universal.

Please note:

Some combinations of SGN keywords are not possible or are mutually exclusive and therefore all newly created documents should be tested in advance.
The document to be imported with SGN keywords must have the file extension .SGN.

List of SGN keywords

It is possible to control the behaviour of signoSign/Universal using the SGN keywords. These need to be entered in the Keywords field in the SGN/PDF documents to be signed. This field appears in every PDF document and can be freely filled.

Entries for the PDF document property Keywords:

Field name	Type	Description
`sgnsignatures`	`String`	Total number of fixed signature fields or number of defined search terms for signature fields
`sgnsignature_N`	`String`	Signature field with fixed position, N = signature field order
`sgnsigner_N`	`String`	Title lines displayed in the signature capture dialog, N = signature field number
`sgnsignaturekw_N`	`String`	Generate signature field using unique search term, N = signature field order
`sgnsignaturekw_rN`	`String`	Generate signature fields using search term (recursive), N = signature field order

Examples of a valid character string in the Keywords field of a SGN/PDF document:

/sgnsignatures {3}
/sgnsignature_1 {1 0 10 10 150 30}
/sgnsigner_1 {Kunde}
/sgnsignature_2 {2 0 166 167 394 238}
/sgnsigner_2 {Berater}
/sgnsignature_3 {1 1 266 267 494 338}
/sgnsigner_3 {Tester}

Compulsory keywords

Keyword – `sgnsignatures`

The sgnsignatures keyword has the following description: If signature fields with a fixed position (inserted by means of sgnsignature_<N>) are used, the total number of signature fields/signature positions entered must be specified here. If signature fields are defined using search text (inserted by means of sgnsignaturekw_<N> or sgnsignaturekw_r<N>), the number of sgnsignaturekw_ or sgnsignaturekw_r keywords used must be specified here. This is necessary because the total number of signature fields resulting from the search terms is unknown at the beginning of the signature capture process.

Syntax of the entry

sgnsignatures { <Number> }

Parameter	Description
<Number>	Number of all fixed signature positions (signature fields) entered or search terms in the document

Example for three positions

sgnsignatures{3}

Keyword – `sgnsignature_N`

This keyword defines a signature field to be signed. It enables the electronic signing of a SGN/PDF document with a digital signature in a defined position and on a defined page. Up to N signatures can be inserted into the document. N must be a number and can currently be a maximum of 30.

Please note:

The value for N can also be used to determine the order of the signatures.
A maximum of ten signatures can be inserted on one document page.
A maximum of 30 signatures in total can be inserted into a document.
The <Option> parameter can be used to define whether the signature field must be signed (mandatory field) or can remain empty.

Syntax of the entry

sgnsignature_<N> { <Page> <Option> <X1> <Y1> <X2> <Y2> }

Value	Description	Range of values
<N>	Position number of the signature field. N = placeholder for a number.	`Integer` between 1 and 30
<Page>	Document page to be signed	`Integer` > 0
<Option>	0 = Position does not have to be signed 1 = Position must be signed (mandatory field)	1.0
<X1>	Upper-left corner in points. (X-coordinate)	`Integer` > 0
<Y1>	Upper-left corner in points. (Y-coordinate)	`Integer` > 0
<X2>	Lower-right corner in points. (X-coordinate)	`Integer` > 0
<Y2>	Lower-right corner in points. (Y-coordinate)	`Integer` > 0

Example for three non-mandatory signature fields with fixed positions:

One signature on each of pages 1, 2 and 6.

/sgnsignature_1 {1 0 379 699 549 730}
/sgnsignature_2 {2 0 377 630 549 650}
/sgnsignature_3 {6 0 277 530 449 550}

Keyword – `sgnsigner_N`

This keyword allows the displayed title line to be changed in the relevant signature capture dialog box. The assignment to the related signature field is made via the N value.

Syntax of the entry

sgnsigner_N { <Display text> }

Value	Description	Range of values
<N>	Position number, corresponding to that of the signature field. N = placeholder for a number.	`Integer` between 1 and 30
<Display text>	Text to be displayed in the title line of the relevant signature capture dialog.	`String`, without double quotation marks

Example showing how to change the title line when inserting the first and third signature:

/sgnsigner_1 {Bitte unterschreiben Sie Herr Max Mustermann}
/sgnsigner_3 {Bitte unterschreiben Sie Frau Martha Musterfrau}

Keyword – `sgnsignaturekw_N`

This keyword defines a signature field without a fixed position. Its position is defined using a text contained in the document. This text is searched and the signature field is inserted at the first hit location. It is offset relative to the hit location.

Syntax of the entry

sgnsignaturekw_<N> { <Option> <xOffset> <yOffset> <B> <H> <Keyword> }

Value	Description	Range of values
<N>	Position number, corresponding to that of the signature field N = placeholder for a number.	`Integer` between 1 and 30
<Option>	0 = Position does not have to be signed 1 = Position must be signed (mandatory field)	1.0
<xOffset>	Offset of the upper-right corner of the signature field in points on the x-axis to the position of the search term found. (X-coordinate offset) (number)	`Integer`
<yOffset>	Offset of the upper-right corner of the signature field in points on the y-axis to the position of the search term found. (Y-coordinate offset) (number)	`Integer`
<W>	Width of the signature field in points (number)	`Integer`
<H>	Height of the signature field in points (number)	`Integer` > 0
<Keyword>	Search term (character string). The SGN/PDF document is searched for this search term and the coordinates of the first hit location are returned. It must be an individual character string (without spaces) and must be surrounded by double inverted commas. All pages are searched.	`String`

Example of a signature field to be created using search terms.

/sgnsignaturekw_1 {0 -10 -20 80 40 Antragsteller:}

Keyword – `sgnsignaturekw_rN`

This keyword defines an unspecified number of signature fields without fixed positions. Their positions are defined by the hit locations of a text in the document. This text is searched and the signature field is inserted at every hit location. All signature fields are offset by the same values relative to the hit locations.

The structure and documentation of the parameters are identical to those of the keyword sgnsignaturekw_N and can be imported from there.

Document configuration

As well as the SGN keywords, which are used to define information relating to a desired behaviour in a document decentrally, the document configuration also enables the program to define these types of settings via the REST web service or centrally in a configuration file.

The name and the location of the configuration file is defined in the settings. If a path to a configuration file has been defined and this file is missing, it will still not lead to an error message. The file must only be populated with a valid JSON structure if it exists. Otherwise, an error will occur when the application starts.

Please note:

The documentation concerning the JSON structure is a part of the default implementation of the persistence. This can be changed as described in the corresponding section.

Structure of the document configuration file

The document configuration file must contain a JSON array. This contains JSON structures, each of which contains a separate document configuration. When a document is loaded, all available configurations are iterated through and the first one that meets all of the conditions is applied to the document to be loaded.

The file is read when the application is started. signoSign/Universal will not start if the content of the file does not contain a valid JSON array or a JSON element in the array contains an error when the application is launched. Every individual attribute that a document configuration can contain is described below.

Structure of the JSON array in the document configuration file:

[
  {
   /* doc config 1 */
  },
  {
   /* doc config 2 */
  }
]

Structure of a document configuration

The JSON structure transferred to the application is converted as is into an object that can be used by signoSign/Universal. All possible document configuration attributes are listed below. However, distinctions are still made between selection conditions and actual configurations for the attributes.

Selection conditions

A document configuration contains attributes that act as conditions as to whether or not a configuration is applied to a document. Any number of condition attributes can be specified in a configuration. A configuration is only then applied to a document if all the conditions for a document are met.

documentFileNamePattern

This applies if the specified character string matches the file name of the document to be loaded. The asterisk symbol (*) acts as a wildcard character here.

Example: A configuration that is applied to a document, the transferred file name of which begins with "abc".

[
     {        
         "documentFileNamePattern": "abc*"
     }        
]

documentIdPattern

This applies if the specified character string matches the document ID of the document to be loaded. The asterisk symbol (*) acts as a wildcard character here.

Example: A configuration that is applied to a document, ID of which begins with "1".

[
     {        
         "documentIdPattern": "1*"
     }        
]

Please note:

The document ID may be a non-numeric value if an alternative persistence implementation is used.

documentIdTarget

This applies if the specified character string matches the document ID of the document to be loaded.

Example: A configuration that is applied to a document with the ID 2.

[
     {        
         "documentIdTarget": "2"
     }        
]

documentOriginTypes

This refers to a bit mask and is specified as an Integer value between 1 and 31. This attribute allows configurations to be applied to documents of certain origins.

The following values exist:

1 – for templates
2 – for editable documents based on templates
4 – for all editable documents
8 – for imported documents
16 – for documents opened via a Sharing Case

Example: A configuration that is applied to templates and imported documents

[
     {        
         "documentOriginTypes": 9
     }        
]

Configuration attributes

These are attributes of the configuration that actually influence how the document is handled in the Viewer.

signatureFieldMask

This is a key-value pair that determines which signature fields are displayed and available for signing to the calling user. The key here is the calling user name to which the mask is to apply. The value is a character string and contain identifiers for signature fields that are separated by a semi-colon (;). An identifier for signature fields consists of either a page number and tab order or the technical signature field name

Example: Shows the user "User1" the signature field with the tab order 0 on page 1 and the signature field with the name "SIGNATURE1" when the document is loaded

[
     {        
         "signatureFieldMask": {
         "User1" : "(1,0);SIGNATURE1"
         }
     }        
]

signatureFields

Signature fields can also be inserted into a document to be loaded via the document configuration in a similar way to using SGN keywords. You can also set a field statically or dynamically here. The attribute is a JSON array. This can contain dynamic ( "@type":"dynamic",) and static ( "@type":"static",) signature fields. Static signature fields are positioned in the document using fixed parameters. Dynamic signature fields can be positioned in the document relative to a position of text. Each signature field comprises a number of attributes. These consist of general and type-dependent attributes.

General signature field attributes

Attribute	Description	Range of values
`@type`	Defines the type of the signature field	`"dynamic", "static"`
`option`	0 = Position does not have to be signed 1 = Position must be signed (mandatory field)	`1, 0`
`width`	Defines the width of the signature field	`Integer` > 0
`height`	Defines the height of the signature field	`Integer` > 0
`signer`	Defines the name of the signature field	`String`

Static signature field attributes

Attribute	Description	Range of values
`posX`	Horizontal position of the signature field. 0 corresponds to the upper edge of the page	`Integer` >=0
`posY`	Vertical position of the signature field. 0 corresponds to the left-hand edge of the page	`Integer` >=0
`pageNumber`	Vertical position of the signature field. 0 corresponds to the left-hand edge of the page	`Integer` > 0

Dynamic signature field attributes

Attribute	Description	Range of values
`offsetX`	Horizontal offset of the signature field based on the position of the `keyword` text in the document	`Integer`
`offsetY`	Vertical offset of the signature field based on the position of the `keyword` text in the document	`Integer`
`keyword`	Search term (character string). The SGN/PDF document is searched for this search term and the coordinates of the first hit location are returned. It must be an individual character string (without spaces) and must be surrounded by double inverted commas. All pages are searched.	`String`
`recursive`	A Boolean value that determines whether a signature field is added to just the first occurrence of the <keyword> text or all occurrences of the text.	`true, false`

Example: Two signature fields are inserted when the document is loaded. A static field on page 1 and a dynamic field where the text "searchtext" occurs.

[
    {        
      "signatureFields":[
         {
            "@type":"static",
            "option":0,
            "signer":"signer",
            "posX":500,
            "posY":20,
            "width":200,
            "height":50,
            "pageNumber":1
         },         
         {
            "@type":"dynamic",
            "option":0,
            "signer":"string",
            "offsetX":20,
            "offsetY":45,
            "width":200,
            "height":50,
            "keyword":"searchtext",
            "recursive":false
         }
      ]
    }        
]

formFieldProperties

This attribute is a JSON array. Each element defines additional behaviour for individual form fields of certain types. Each element consists of general and type-dependent attributes. The general attributes are used here to identify the relevant form field.

Form field attributes: general

Attribute	Description	Range of values
`@type`	Specifies the type of the form field for which the additional properties are to be applied	`"signature", "checkbox"`
`fieldName`	The field name of the form field for which the additional properties are to be applied	`String`
`tabOrder`	The tab order value of the form field for which the additional properties are to be applied	`Integer`
`pageNumber`	The page number of the form field to which the additional properties are to be applied	`Integer` > 0

Please note:

Either the pageNumber and the tabOrder or the fieldName must be defined to identify a form field. If both are specified, the fieldName takes precedence.

Form field attributes: signatures

Attribute	Description	Range of values
`shown`	Decides whether the signature field in question is to be displayed when the document is loaded.	`true, false`

Example:

[
    {
            "formFieldProperties":[
                {
                "@type":"signature",
                "fieldName":"string",
                "tabOrder":0,
                "pageNumber":0,
                "shown":true
                }
            ]
    }
]

Form field attributes: check boxes

Attribute	Description	Range of values
`padSelectionSignatureField`	signoPAD API/Web (version 1.4.1 and later) allows you to transfer check boxes to a hardware pad so you can set them there. This field lets you define whether the check box is to be inserted via the signature device and which signature field it is to appear in front of. A signature field is specified either via the signature field name or page number and tab order. The process happens together with the first signature if an empty character string is transferred. Please note: Check boxes connected to a signature field in this way are no longer inserted into the document in a destructive way when it is saved. Check boxes connected to a signature are saved incrementally together with the corresponding signature. In addition, the form field information of this type of check box is also included in the encrypted signature data themselves.	`String`
`padSelectionText`	If a check box for setting on a hardware pad is to be defined, a text to be displayed together with the check box on the signature device must also be transferred. The possible length of the text is dependent on the signature device used as the specified text is scaled on the display. This means that the more text that has to be displayed, the smaller the font will be. If several check boxes are defined for a signature, they will appear on the display together, if possible. If this is not possible for technical reasons, the entries will be spread over multiple pages. ‘\n’ is used for a line break in the text.	`String`
`checkRequiredToSignSignatureField:`	A signature field can also be specified here, just as it can for the `padSelectionSignatureField` value. The corresponding check box must be ticked to be able to start the signing process for the specified signature field. The process described for the first signing process applies if an empty character string is specified. Please note: If this check box is also configured for entry on a hardware pad, the validation process to determine whether the corresponding check box is ticked only runs after confirmation has been given in the dialog box on the hardware pad. `checkRequiredToSignSignatureFieldText`: If the `checkRequiredToSignSignatureField` value has been defined, this value is displayed as a notification in the Viewer and the signing process is cancelled if the corresponding check box has not been ticked.	`String`

Example:

[
    {
            "formFieldProperties":[
                {
                "@type":"checkbox",
                "fieldName":"CheckBOxFormFIELD",
                "tabOrder":0,
                "pageNumber":0,
                "padSelectionSignatureField":"signFIELd",
                "padSelectionText":"Lorem ipsum dolor sit amet, consetetur.",
                "checkRequiredToSignSignatureField":"signFIELd",
                "checkRequiredToSignSignatureFieldText":"Lorem ipsum dolor sit amet",
                "showIndex":0
                }
            ]
    }
]

REST API

signoSign/Universal has a REST API for integration. This section will focus less on the technical application of the API and more on the underlying concept.

A list of all available API calls plus structure and documentation can be found in the Swagger-UI.

The API is divided into the following areas:

Using the Viewer
Managing persistent documents (only when using the configured database)
Managing shared documents
Managing keystores (certificates)

The individual areas will be discussed in greater detail later.

Authorisation (generating an `instancetoken`)

To use an API, a so-called instancetoken must be requested from the server. This token is a unique character string. This must then be provided in every subsequent request to the API in the authorisation header of the request.

The following points are designed to help you understand the instancetoken concept:

An instancetoken is always linked to an instance of a Viewer object.
A Viewer can only ever have one document loaded at a time.
A user can request multiple instancetoken.
An instancetoken remains valid until it is actively made invalid.

There is no specification as to how an existing application must integrate this schema. An example would be that the document pool requests an instancetoken when a user logs in and only becomes invalid when the user logs out. That means a viewer would be generated per user. It would also be possible to request a new instancetoken for each process, but it would then have to be ensured in each case that an obsolete instancetoken was invalidated.

Using the Viewer

The concept for using the Viewer is defined as such that an instance is...

generated – by requesting an instancetoken
prepared – by loading documents or applying configurations
Called – by creating and calling an access URL
and removed – by revoking the instancetoken

If not removing a Viewer by revoking the instancetoken the instancetoken and the associated Viewer may continue to be used.

Preparing the Viewer

As soon as a Viewer has been instantiated, it can be configured and a document can be loaded. The preparation can be divided into two areas:

Preparation of the viewer itself, for example:
- modifying the configuration
- loading a saved document from the persistence
- loading a temporary document by transferring a file
- loading a temporary document by transferring a URL
- adding, modifying and deleting cookies to communicate with third-party systems (for example, remote saving)
Preparation of a loaded document, for example
- inserting dynamically positioned signature fields
- inserting statically positioned signature fields

Please note:
A Viewer can only ever have one document loaded at a time. As soon as another document is loaded, the old document is overwritten together with any document-related settings.

Calling the Viewer

A viewer generated through an API can only be accessed via a URL that can be called with a call to the API. This access URL is a URL to signoSign/Universal containing a generated character string that grants one-time authorised access to the Viewer. When calling, the session of the calling client is logged in using the access data with which the instancetoken was also requested. The client remains logged in until an explicit logout is carried out or the instancetoken is revoked. Calling the URL automatically invalidates this. Please also note that any number of URL can be created for an instance.

Managing persistent documents

Does not work when using a custom persistence implementation.

The API allows you to manage persistent documents in the configured database. Documents in the database can be loaded directly into the Viewer using their numeric ID.

The API provides the following functions here:

Managing shared documents (sharing cases)

Does not work when using a custom persistence implementation.

Shared documents can also be managed via the API.

The API provides the following functions here:

Managing keystores (certificates)

Does not work when using a custom persistence implementation or a global keystore.

signoSign/Universal requires two difference certificates; one for digital signatures and one for the encryption of biometric data. These certificates must be made available to signoSign/Universal in keystores.

This concept has two steps:

Uploading a keystore containing the necessary certificates
Assigning certificates to a user within a keystore with a certain purpose

Purposes of certification
Assigning a certificate to a user always fulfils a certain purpose. Assigning a certificate can fulfil one of the following purposes

SIGNING : used to sign the document digitally. This ensures the integrity of the document. signoSign/Universal requires both a private key and a public certificate here.

ENCRYPTION : used to encrypt the signer’s biometric data. This ensures the traceability of a signature. signoSign/Universal only requires a public certificate here; the associated private key should be stored in a separate, safe location.

The API provides the following functions here:

Please note:
If a user is not assigned any certificates and one is required, signoSign/Universal creates the relevant certificates itself.

User roles and the user name parameter

Some functions have a username parameter. This parameter allows functions to be executed in the name of this user. For example, user A can download a document from user B. However, this is only possible is user A has both the administrator role and the document-access role.

If the username parameter is left empty, it will be assumed that this value is the name of the user making the request. An access violation occurs if a user without the administrator role transfers the parameter and this does not match the name of the user performing the action.

Requesting detailed document information

Information on a document can be requested as soon as it has been loaded in the Viewer.

The resource [GET]/viewer/document/information is used for this purpose.

The following information can be retrieved:

General information on the document such as
- the document ID
- the total number of signature fields
- the total number of signed signature fields
- the total number of signed mandatory signature fields
- the total number of form fields
- the total number of form fields that have been filled out
- the total number of mandatory form fields that have been filled out
- the number of pages
Information on all signature fields
- the HTML ID below which the signature field is displayed in the Viewer
- the horizontal position of the page in pixels
- the vertical position of the page in pixels
- the width in pixels
- the height in pixels
- the name of the signature field in the PDF
- a Boolean value stating whether the signature is mandatory
- a Boolean value stating whether the field is displayed in the Viewer
Rendered images of the pages as Base64 strings
The current state of the document in binary data

Exchanging documents with third-party systems

Remote saving allows a loaded document to be uploaded directly into a third-party system via the Save button. To do this, a remote saving URL must be transferred via [PATCH]/viewer/configuration. Two requirements are imposed on the server here:

it must be able to accept a multipart upload
it must send a response containing the following content upon successful completion:
```
{"remoteSavingResponse":"REMOTE_SAVING_SUCCESSFUL"} 
```
and a response containing the following content in the event of an error:
```
{"remoteSavingResponse":"REMOTE_SAVING_FAILED"} 
```
it must be able to give authorisation through cookies (if authorisation is required)

Setting cookies to communicate with third-party systems is described here.

Communicating with third-party systems

Certain situations require signoSign/Universal to send requests to third-party servers. Remote saving is a specific example of this. This is when a document that is to be saved is uploaded to another server as a multipart upload.

The REST API allows cookies to be attached to a Viewer that are also sent in all requests to other systems. Only cookies that are defined for the domain in the cookie are sent.

All cookies are stored until they are explicitly deleted or the instancetoken to which they belong is revoked.

Plug-in interface

The Java interface SsuPersistenceLayer is the interface to the persistence. signoSign/Universal uses it as a data source for documents, sharing cases, certificates and settings.

Default

The default implementation uses a relational database that can be defined using the hibernate settings, all configuration parameters that begin with the prefix persistence and the document configuration. Alternatively, selected data can be loaded from other sources, such as certificates from a hardware security module (HSM). For more details, please refer to the information on certificates in the persistence settings section.

User-defined

The default implementation can be partially overwritten or completely replaced by custom code. This means signoSign/Universal can also be adapted to very specific requirements. The disadvantage to this, however, is that this makes development, testing and configuration more difficult during installation and when there are updates.

The following functionalities can be adjusted through a custom implementation:

User-specific or dynamic application configuration
Use of a custom document source or file
User-specific or dynamic document configuration
Modify the lock function of loaded documents
Modify the Share document function to customer requirements
Use of a custom source for certificates
Definition of a signature time independent of the server time (via a time server, for example)
Evaluation and validation of URL parameters that have been provided when calling the viewer

The following steps are required to enable signoSign/Universal to use a user-defined persistence.

Packetising custom Java code as a jar

Implementing the plug-in
The interface to the persistence is the de.signotec.ssu.persistence.facade.SsuPersistenceLayer interface. The default implementation is contained in the de.signotec.ssu.persistence.facade.SsuPersistenceLayerImpl class. Depending on your requirements, the default implementation can be adjusted by derivation from the SsuPersistenceLayerImpl class or completely replacing implementation of the SsuPersistenceLayer interface. The user-defined class must be public and a public constructor without parameters.

In the following example, the save function is modified so that a document with mandatory signature fields can only be saved if these have been signed.

    public class MySsuPersistenceLayerImpl extends SsuPersistenceLayerImpl {

        @Override
        PCRSaveDocumentFile saveDocumentFile(PCSaveDocumentFile persistenceBean) throws SsuPersistenceException {
            if (persistenceBean.getNumOfUnsignedMandatorySigFields() > 0) {
                throw new SsuPersistenceException("The Document can only be saved if all mandatory Signature Fields have been signed.")
            }
            return super.saveDocumentFile(persistenceBean);
        }   
    }

Libraries
The classes of the persistence and the libraries required are located in the integration/ssu-persistence-[VERSION]-with-dependencies.jar fatjar of the delivery package. No other libraries need to be integrated. The JavaDoc of the persistence is located in the integration/ssu-persistence-[VERSION]-javadoc.jar file.

Packetising
The user-defined code must be packetised in a jar with Java 8. The jar only contains the user-defined code. The web application already contains all of the fatjar classes.

Configuring the classpath

The user-defined jar must be added to the classpath of the web application so that it can be loaded by signoSign/Universal. Please refer to your server documentation for the necessary steps to do this.

Activating the implementation

In the last step, the name of the user-defined implementation is specified using the implementationClassName setting in the signoSign/Universal settings.

Public JavaScript functions

If signoSign/Universal is called in an iFrame from a surrounding application, there are a number of publicly documented functions in JavaScript code that can be executed via the iFrame element.

For example, the following snippet of code executes the save function:


    iframe = document.getElementById("iframe");
    iframe.contentWindow.viewerFunctions.saveDocument();

The Viewer provides the following functions:

Function Description

logout Logs the current session out of the server.

fitPageToStandardDocumentSize Displays the pages of the document no larger than the rendered size.

fitPageToScreenHeight Aligns the document with the page height. This means that the upper and lower edges of the document can be seen.

fitPageToScreenWidth Aligns the document with the page width. This means that the left-hand and right-hand edges of the document can be seen.

showThumbnails Displays the thumbnail menu of the application, which can be used to scroll to a certain point in the document.

startSharingCaseCreation Launches the dialog box to share a document.

showSummarySignaturesDialog Displays a dialog box with a list of all empty signature fields contained in the document.

startSigningProcess Starts the signature process.

addSignatureField Starts the process to add another signature field.

insertNote Starts the process to insert a note into the document.

saveDocument Starts the save process.

showNextPage Scrolls to the next page of the document.

showPrevPage Scrolls to the previous page of the document.

showSaveBeforeLeaveDialog Opens the dialog box that is displayed if a document contains unsaved changes. If this function is explicitly called, the dialog box is displayed regardless of whether there are changes in the document.

showPage

Scrolls to a certain page.

Parameter	Description	Values
pageNumber	The number of the page to be displayed	`Integer > 0`

JavaScript events

If signoSign/Universal is embedded in another application as an iFrame, the surrounding application can be informed of certain events.

Depending on the event, the behaviour of signoSign/Universal can be influenced by calling the preventDefault method of the object transferred to the event within the defined event handler.

The following snippet of code shows how a surrounding application defines an event handler for SSUMessageEvent.


    iframe = document.getElementById("iframe");
    iframe.contentWindow.addEventListener("SSUMessageEvent",function(e){
    console.info("SSUMessageEvent");
    console.info(e.detail.severity);
    console.info(e.detail.message);
    });

SSUMessageEvent

Executed when signoSign/Universal displays information or an error message.

Default behaviour:
signoSign/Universal displays the message that appears as a separate dialog box.

PreventDefault():
The message that appears is not displayed in a dialog box in signoSign/Universal. The surrounding application can handle the message itself.

Parameter	Description	Attributes	Attribute description	Values
`severity`	Describes the type of message	-	-	`"ERROR", "INFO"`
`message`	The localised message text	-	-	`String`
`MessageKey`	The key value under which the localised message can be found in the locales	-	-	`String`

SSUSignaturePerformedEvent

Executed when a signature is captured and sent to the server.

Parameter	Description	Attributes	Attribute descriptions	Values
`signatureFieldsStatus`	An array of objects that supply information to all the signature fields found in the document	`isSigned`	Displays whether the signature field has been signed	`true / false`
		`isMandatory`	Displays whether the signature field is mandatory	`true / false`
		`htmlId`	The HTML ID of the signature field	`String`
		`formFieldName`	The form field name of the signature field in the PDF	`String`
		`page`	The number of the page on which the signature field is located	`Integer > 0`
`signedSignatureFieldIndex`	The index of the signature field that has been signed	-	-	`Integer > 0`

SSUDocumentSavedEvent

Executed as soon as the save process has been carried out.

Parameter	Description	Attributes	Attribute descriptions	Values
`signatureFieldsStatus`	An array of objects that supply information to all the signature fields found in the document	isSigned	Displays whether the signature field has been signed	`true / false`
		`isMandatory`	Displays whether the signature field is mandatory	`true / false`
		`htmlId`	The HTML ID of the signature field	`String`
		`formFieldName`	The form field name of the signature field in the PDF	`String`
		`page`	The page number on which the signature field is located	`Integer > 0`
`successful`	A Boolean value as to whether or not the save process was successful.	-	-	`true / false`

SSUUpdateFormFieldsEvent

Executed when form fields changed by the user are synchronised with the backend.

Default behaviour:
All user entries are transferred to the server and written in the server-side representation of the document.

PreventDefault():
Prevents synchronisation between the frontend and backend. The entries are not inserted into the document.

Parameter	Description	Attributes	Attribute descriptions	Values
`formFieldStatus`	An array of objects that contain information about each individual form field.	`oldValue`	The value of the form field before the change	`String`
		`value`	New value of the form field	`String`
		`htmlId`	The HTML ID of the form field	`String`
		`formFieldName`	Name of the form field in the PDF	`String`
		`isDirty`	Displays whether the value of the field has changed	`true / false`

SSUPadOpenedEvent

Executed as soon as a connection to a signature device has been opened.

Parameter	Description	Attributes	Attribute description	Values
`padType`	Specification of the pad type as a numeric value	-	-	`Integer > 0`
`padSerial`	The serial number of the opened pad	-	-	`String`
`padVersion`	Firmware version of the opened pad	-	-	`String`

SSUPadClosedEvent

Executed as soon as a connection to a signotec signature device has been closed.

Parameter	Description	Attributes	Attribute description	Values
`padType`	Specification of the pad type as a numeric value	-	-	`Integer > 0`
`padSerial`	The serial number of the opened pad	-	-	`String`
`padVersion`	Firmware version of the opened pad	-	-	`String`

SSUPadStateChangedEvent

Executed as soon as the status of the opened pad changes. A signature device can have one of the following statuses:

Status	Description
`READY`	The signature device is ready to capture a signature
`PREPARING`	The signature device has started to prepare the signature process
`CANCELLING`	A signature process has been cancelled
`RETRYING`	A signature process has been restarted
`SKIPPING`	A signature process has been skipped
`CONFIRMING`	A signature process has been confirmed
`STOPPED`	A signature process has been stopped
`PAD_CERT_VALIDATION_FAILED`	Executed if the certificate saved in the signature device cannot be verified against the certificate chain defined on the server.
`NO_PAD_FOUND`	Executed if no signature device was found.

Parameter	Description	Attributes	Attribute description	Values
`padStatus`	The status assumed by the signature device	-	-	`"READY", "PREPARING", "CANCELLING", "RETRYING", "CONFIRMING", "STOPPED", "PAD_CERT_VALIDATION_FAILED", "SHOW_DOCUMENT_ON_PAD_RUNNING", "NO_PAD_FOUND"`

Certificates

When a signature is being processed, the captured data are encrypted and the document is signed after the signature has been inserted. The encryption requires a certificate containing a public key (public key certificate). A complete key pair is required for the signing, that is, a public key certificate and the private key matching the public key of the certificate.

A certificate can be used globally for all users, generated automatically per user or managed flexibly via the REST API. The certificates and keys must be made available to signoSign/Universal for the operations named above and saved by signoSign/Universal. However, signoSign/Universal cannot be used to manage certificates and keys as it only provides limited access to the saved data, if at all.

Java Cryptography Architecture

The certificates and keys are loaded via the Java Cryptography Architecture (JCA). All formats that can be loaded with the class java.security.KeyStore can also be processed by signoSign/Universal. Loading a certificate generally requires the following settings:

A keystore type that defines the format of the keystore
A keystore file matching the type
The name/alias of the certificate in the store
The passwords needed to load the store and its elements.

The required settings may vary depending on the keystore type. For example, a password is not required for loading the Microsoft Windows keystore (type WINDOWS_MY). By default, Java uses Java KeyStores (type JKS), which can be managed using the Java KeyTool.

Global certificates

To use an encryption certificate and a signature certificate for all users globally, the useCertificateDataProperties key must be enabled in the server settings and defined in the certificates’ sources.

Configuration example
The following settings load the encryptionCert and signingCert certificates from the Java KeyStore /var/ssu/global-store.jks. The password to open the keystore is storePassword, and password to load the private signature key is keyPassword. See Configuration > Certificates for the list containing all configuration keys.

        
    persistence.useCertificateDataProperties = true
    
    persistence.keystoreSigning = /var/ssu/global-store.jks
    persistence.signingAlias = signingCert
    persistence.signingKeyStoreType = JKS
    persistence.signingKeyStorePassword = storePassword
    persistence.signingprivatekeypassword = keyPassword
    
    persistence.keystoreBiometric = /var/ssu/global-store.jks
    persistence.biometricAlias = encryptionCert
    persistence.biometricKeyStoreType = JKS
    persistence.biometricKeyStorePassword = storePassword

Standard certificates
The global keystores signoSign/Universal uses by default are located next to the Properties file for the server settings. The key stores contain a key pair and a self-signed demo certificate for the digital signature and a certificate for the encryption of the biometric data, which is created and managed by a notary. See also chapter Certificates.
The biometricalias certificate from the keystoreBiometric.jks keystore is used for encryption. The signingalias key pair from the keystoreSigning.jks store is used for the signing. The password for both keystores is password .

The demo certificate and its keys are only pre-set to Evaluation by signoSign/Universal and must be replaced by trusted certificates for live use!

[WEB-APP-ROOT]/WEB-INF/classes/keystoreBiometric.jks
[WEB-APP-ROOT]/WEB-INF/classes/keystoreSigning.jks
[WEB-APP-ROOT]/ssu_web-x.x.x.x.war/WEB-INF/classes/keystoreBiometric.jks
[WEB-APP-ROOT]/ssu_web-x.x.x.x.war/WEB-INF/classes/keystoreSigning.jks

User-specific certificates

If neither global certificates nor certificates configured via the REST API are used, signoSign/Universal will generate a keystore with encryption and signature certificates for each user.

Keystore attributes

Keystore type	The default Java type `JKS` or the type defined with the `keystore.type` system property
Is the keystore password protected?	Yes
Does it contain a key pair?	Yes, password protected
Alias for key pair and certificate	`persistence.biometricAlias` and `persistence.signingAlias`

Configuration
User-specific certificates are generated automatically if the useCertificateDataProperties key is disabled in the server settings and no valid keys have been added to the database for the respective user.

    
    persistence.useCertificateDataProperties = false

Please note
This setting should only be used for test purposes or with a user-defined implementation of the plug-in interface. The default implementation does not provide access to the generated keystore, meaning the signature data cannot be decrypted later.

Hardware security module

A JCA/JCE provider from the manufacturer is required to use a hardware security module (HSM). The provider is normally located in a JAR library, and signoSign/Universal must be given access to it. signoSign/Universal automatically uses the functionality of the provider if the name specified by the provider is used as the keystore type.

Configuration example
An example for the server settings if

the manufacturer specifies the keystore type "custom.store"
the keystore file is in /var/ssu/customStore
the name/alias of the encryption certificate is "encryptionCert"
the name/alias of the signature certificate is "signingCert"
a password is not required

        
    persistence.useCertificateDataProperties = true
    
    persistence.keystoreSigning = /var/ssu/customStore
    persistence.signingAlias = signingCert
    persistence.signingKeyStoreType = custom.store
    persistence.signingKeyStorePassword =
    
    persistence.keystoreBiometric = /var/ssu/customStore
    persistence.biometricAlias = encryptionCert
    persistence.biometricKeyStoreType = custom.store
    persistence.biometricKeyStorePassword =