# Sample configuration of a PDFSigner.
# 

## General properties
WORKERGENID1.TYPE=PROCESSABLE
WORKERGENID1.IMPLEMENTATION_CLASS=org.signserver.module.pdfsigner.PDFSigner
WORKERGENID1.NAME=PDFSigner
WORKERGENID1.AUTHTYPE=NOAUTH

# Crypto token
WORKERGENID1.CRYPTOTOKEN=CryptoTokenP12
#WORKERGENID1.CRYPTOTOKEN=CryptoTokenP11
#WORKERGENID1.CRYPTOTOKEN=CryptoTokenP11NG1
#WORKERGENID1.CRYPTOTOKEN=CryptoTokenP11NG1KeyWrapping

# Using key from sample keystore
WORKERGENID1.DEFAULTKEY=signer00003
# Key using ECDSA
#WORKERGENID1.DEFAULTKEY=signer00002


## PDFSigner properties

#--------------------------SIGNATURE PROPERTIES--------------------------------------#

# specify reason for signing. it will be displayed in signature properties when viewed
# default is "Signed by SignServer"
#WORKERGENID1.REASON=Signed by SignServer
WORKERGENID1.REASON=Officially issued document

# specify location. it will be displayed in signature properties when viewed
# default is "SignServer"
#WORKERGENID1.LOCATION=SignServer
WORKERGENID1.LOCATION=Stockholm

# digest algorithm used for the message digest and signature (this is optional and defaults to SHA256)
# the algorithm determines the minimum PDF version of the resulting document and is documented in the manual.
# for DSA keys, only SHA1 is supported
WORKERGENID1.DIGESTALGORITHM=SHA256
#WORKERGENID1.DIGESTALGORITHM=SHA1

# If it is set to FALSE and the document doesn't have any signature in it, force the PDFSigner to not use the appended signature.
# PDFSigner will rewrite the document and use an embedded signature in it.
# If this property is not set or set to TRUE or set any invalid values, PDFSigner will skip it and work as it is.
#WORKERGENID1.APPEND_SIGNATURE=False


#--------------------------SIGNATURE VISIBILITY--------------------------------------#

# if we want the signature to be drawn on document page set ADD_VISIBLE_SIGNATURE to True , else set to False
# default is "False"
#WORKERGENID1.ADD_VISIBLE_SIGNATURE = False
WORKERGENID1.ADD_VISIBLE_SIGNATURE = True

# specify the page on which the visible signature will be drawn
# this property is ignored if ADD_VISIBLE_SIGNATURE is set to False
# default is "First"
# possible values are :
	# "First" : signature drawn on first page of the document,
	# "Last"  : signature drawn on last page of the document,
	# page_number : signature is drawn on a page specified by numeric argument. If specified page number exceeds page count of the document ,signature is drawn on last page
	# if page_number specified is not numeric (or negative number) the signature will be drawn on first page
WORKERGENID1.VISIBLE_SIGNATURE_PAGE = 2

# specify the rectangle signature is going to be drawn in
# this property is ignored if ADD_VISIBLE_SIGNATURE is set to False
# default is "400,700,500,800"
# format is : (llx,lly,urx,ury). Here llx =left lower x coordinate, lly=left lower y coordinate,urx =upper right x coordinate, ury = upper right y coordinate
#WORKERGENID1.VISIBLE_SIGNATURE_RECTANGLE = 400,700,500,800

# if we want the visible signature to contain custom image , specify image as base64 encoded byte array
# alternatively custom image can be specified by giving a path to image on file system
# note : if specifying a path to an image "\" should be escaped ( thus C:\photo.jpg => "C:\\photo.jpg" )
# note : if specifying image as base64 encoded byte array "=" should be escaped (this "BBCXMI==" => "BBCXMI\=\=")
# if both of these properties are set then VISIBLE_SIGNATURE_CUSTOM_IMAGE_BASE64 will take priority
# if we do not want this feature then do not set these properties
# default is not set (no custom image)
# these properties are ignored if ADD_VISIBLE_SIGNATURE is set to False
#WORKERGENID1.VISIBLE_SIGNATURE_CUSTOM_IMAGE_BASE64=
#WORKERGENID1.VISIBLE_SIGNATURE_CUSTOM_IMAGE_PATH=
WORKERGENID1.VISIBLE_SIGNATURE_CUSTOM_IMAGE_BASE64=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\=\=
WORKERGENID1.VISIBLE_SIGNATURE_CUSTOM_IMAGE_PATH=C:\\Dokumanlar\\FOTO\\Photos\\15032009\\100_3801.JPG

# if we want our custom image to be resized to specified rectangle (set by VISIBLE_SIGNATURE_RECTANGLE) then set to True.
# if set to True image might look different that original (as an effect of resizing)
# if set to False the rectangle drawn will be resized to specified image's sizes.
# if set to False llx and lly coordinates specified by VISIBLE_SIGNATURE_RECTANGLE property will be used for drawing rectangle (urx and ury will be calculated from specified image's size)
# this property is ignored if ADD_VISIBLE_SIGNATURE is set to False or if custom image to use is not specified
# default is True
#WORKERGENID1.VISIBLE_SIGNATURE_CUSTOM_IMAGE_SCALE_TO_RECTANGLE = True

# to create a certifying signature that certifies the document set the CERTIFICATION_LEVEL
# possible values are: NOT_CERTIFIED, FORM_FILLING, FORM_FILLING_AND_ANNOTATIONS or NO_CHANGES_ALLOWED
# default is NOT_CERTIFIED
# WORKERGENID1.CERTIFICATION_LEVEL=NOT_CERTIFIED

#--------------------------SIGNATURE TIMESTAMPING--------------------------------------#

# if we want to timestamp document signature, specify timestamp authority url, if required bu tsa uncomment tsa username and password lines and specify proper values
# if we do not want to timestamp document signature , do not set property

# Worker ID or name of internal timestamp signer in the same SignServer
# Default: none
#WORKERGENID1.TSA_WORKER=TimeStampSigner

# URL of external timestamp authority
# note : if path contains characters "\" or "=" , these characters should be escaped (thus "\" = "\\", "=" =>"\=")
# default is not set (no timestamping)
# WORKERGENID1.TSA_URL =
#WORKERGENID1.TSA_URL=http://tsa.example.com:8080/signserver/tsa?workerName\=TSA

# if tsa requires authentication for timestamping , specify username and password
# if tsa does not require authentication, do not set these properties
# these properties are ignored if TSA_URL is not set (no timestamping)
# default is not set (tsa does not require authentication)
#WORKERGENID1.TSA_USERNAME=
#WORKERGENID1.TSA_PASSWORD=

# Digest algorithm used for timestamps
# Default: SHA-256
#WORKERGENID1.TSA_DIGESTALGORITHM=

#--------------------------EXTRA PROPERTIES [NOT TESTED YET]--------------------------------------#

#if we want to embed the crl for signer certificate inside the signature package set to True, otherwise set to False
#default is False
#WORKERGENID1.EMBED_CRL = False

#if we want to embed the ocsp response for signer certificate inside the signature package set to True, otherwise set to False
#note : issuer certificate (of signing certificate) should be in certificate chain.
#default is False
#WORKERGENID1.EMBED_OCSP_RESPONSE = False

# If the key usage counter is disabled 
WORKERGENID1.DISABLEKEYUSAGECOUNTER=true