Skip to content

Governikus/data-sign-cookbook

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

21 Commits
src/main
src/main
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
cookbook.properties.template
cookbook.properties.template
 
 
pom.xml
pom.xml
 
 
sample.docx
sample.docx
 
 
sample.pdf
sample.pdf
 
 

Repository files navigation

DATA Sign Cookbook

This repository gives guidance on integrating DATA Sign into your application.

The DATA Sign Integration Guide is - next to this repository - a good starting point for developers to familiarize themselves with the DATA Sign REST API. The Integration Guide can be accessed from the Governikus Portal.

The repository contains examples for electronic signatures using PAdES and CAdES. The examples in the pades/ folder demonstrate signing PDF documents. The examples in the cades/ folder cover singing various file types (e.g., .docx, .xls, .zip, .png) with separately stored signature files.

The examples here are plain Java code and demonstrate the REST API usage. The examples are implemented with the following simplifications:

  • we make no use of client code generation from our OpenAPI specification document, although it's possible (the OpenAPI specification can be access from the Governikus Portal)
  • most error handling is omitted

For our to-be-signed and document hash based endpoints your application must perform low level signature operations (e.g. calculating the DTBS). For this purpose our examples make use of the European Union Digital Signature Service library.

Prerequisites

  • Java 17
  • Maven
  • Either access to our publicly hosted DATA Sign test instance (ask your Governikus contact person) or your own running DATA Sign and Keycloak instance.
  • For Signing examples a registered and identified user account of one of the supported providers
  • For Sealing examples a server-side configured test seal from one of the supported providers
  • A configured cookbook.properties file (copy it from cookbook.properties.template), see the table below
cookbook.properties key Description
url API url, e.g. https://api.your-datasign.test/
keycloak.issuerUri The Keycloak realm url, same as server-side configured, e.g. https://your-keycloak/realms/your-realm
keycloak.clientId The Keycloak Client ID
keycloak.clientSecret The Keycloak Client Secret
example.signProvider Your chosen provider, e.g. "Bank-Verlag" BV or "D-Trust" DTRUST
example.sealProvider Your chosen provider, e.g. "A-Trust" ATRUST, "Bank-Verlag" BV, "D-Trust" DTRUST or "Smartcards" SMARTCARDS
example.userId ID (e-mail address) of a registered and identified user account of your chosen provider. Only required for signing examples.
example.certificateId Certificate ID of a stored key. Only required when signing with stored keys.
example.sealId A server-side configured seal of your chosen provider. Only required for sealing examples.
example.timestampProvider Your chosen timestamp provider, e.g. "A-Trust" ATRUST, "Bank-Verlag" BV, "D-Trust" DTRUST, "Telesec" TELESEC. "Utimaco" UTIMACO or selfsigned SELFSIGNED. Only required for to be signed examples.
example.signatureAlgorithm Signature Algorithm to be used to generate the signature. Only required for to be signed examples.

Run the examples

Each example can be executed on its own (see main method). All IDEs should be able to run the example classes directly.

About

Code cookbook to integrate DATA Sign's REST API

www.governikus.de/produkte/data-sign

Topics

digital-signature qes

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

5 stars

Watchers

5 watching

Forks

1 fork
Report repository

Releases 6

1.8.0 Latest
Jan 20, 2026
+ 5 releases

Contributors 3

  •  
  •  
  •  

Languages