Extended CMS Signer

ENTERPRISE EDITION This is a SignServer Enterprise Edition (EE) feature.

The signer has the fully qualified class name: org.signserver.module.extendedcmssigner.ExtendedCMSSigner.

Overview

The extended CMS signer, in addition to all the features provided by the regular CMS signer, has support for timestamping.

Available Properties

Property

Description

TSA_WORKER

Worker ID or name of internal timestamp signer in the same SignServer. Optional, default: none. This property cannot be combined with TSA_URL.

TSA_URL

URL of external timestamp authority. Optional, default: none. This property cannot be combined with TSA_WORKER.

TSA_USERNAME

Login username used if the TSA uses HTTP Basic Auth. Optional, default: none.

TSA_PASSWORD

Login password used if the TSA uses HTTP Basic Auth. Required if TSA_USERNAME is specified. Default: none.

TSA_DIGESTALGORITHM

Algorithm for timestamp digests. Optional, default: SHA-256.