ske087/quality_recticel
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
50c791e24239392f220cd7a1310b9020af8302b2
quality_recticel/old code/tray/assets/signing/sign_message.erl
Quality System Admin 50c791e242 cleaning structure
2025-10-16 01:42:59 +03:00

51 lines
2.3 KiB
Erlang
Executable File
Raw Blame History

%%%-------------------------------------------------------------------
%%% #########################################################
%%% # WARNING WARNING WARNING #
%%% #########################################################
%%% # #
%%% # This file is intended for demonstration purposes #
%%% # only. #
%%% # #
%%% # It is the SOLE responsibility of YOU, the programmer #
%%% # to prevent against unauthorized access to any signing #
%%% # functions. #
%%% # #
%%% # Organizations that do not protect against un- #
%%% # authorized signing will be black-listed to prevent #
%%% # software piracy. #
%%% # #
%%% # -QZ Industries, LLC #
%%% # #
%%% #########################################################
%%%-------------------------------------------------------------------
-module(sign_message).
-export([sign/2]).
%%%
%%% Usage:
%%% -import(sign_message, [sign/2]).
%%% [...]
%%% sign_message:sign(GetRequest, "path/to/private-key.rsa").
%%% * Where GetRequest is the the "foo" portion of "?request=foo"
%%% * Web framework must echo the base64 encoded signature in plain text
%%% * Browser must use ajax technique to fetch base64 signature
%%% * See also qz.api.setSignaturePromise(...)
%%%
%%% Important:
%%% * Private key MUST be converted to newer RSA format using the following command:
%%% openssl rsa -in "private-key.pem" -out "private-key.rsa"
%%%
%%% Watch for:
%%% badmatch,{error,enoent} key cannot be read; check for valid path
%%% function_clause,[{public_key,sign,...}] key must be converted to newer RSA format
%%%
%%%
sign(Message, KeyPath) ->
{ok, Data} = file:read_file(KeyPath),
[KeyEntry] = public_key:pem_decode(Data),
PrivateKey = public_key:pem_entry_decode(KeyEntry),
Signature = public_key:sign(list_to_binary(Message), sha512, PrivateKey), % Use sha1 for QZ Tray 2.0 and older
Base64 = base64:encode(Signature),
io:fwrite(Base64).
Reference in New Issue View Git Blame Copy Permalink