ske087/quality_recticel
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
c7266c32ee27ba79a91f5f5655fc4ee29c93d025
quality_recticel/tray/assets/signing/sign_message.erl
Scheianu Ionut c7266c32ee Add custom QZ Tray fork with pairing key authentication 
- Custom fork of QZ Tray 2.2.x with certificate validation bypassed
- Implemented pairing key (HMAC) authentication as replacement
- Modified files: PrintSocketClient.java (certificate check disabled)
- New files: PairingAuth.java, PairingConfigDialog.java
- Excluded build artifacts (out/, lib/javafx*) from repository
- Library JARs included for dependency management
2025-10-02 02:27:45 +03:00

51 lines
2.3 KiB
Erlang
Raw Blame History

%%%-------------------------------------------------------------------
%%% #########################################################
%%% # WARNING WARNING WARNING #
%%% #########################################################
%%% # #
%%% # This file is intended for demonstration purposes #
%%% # only. #
%%% # #
%%% # It is the SOLE responsibility of YOU, the programmer #
%%% # to prevent against unauthorized access to any signing #
%%% # functions. #
%%% # #
%%% # Organizations that do not protect against un- #
%%% # authorized signing will be black-listed to prevent #
%%% # software piracy. #
%%% # #
%%% # -QZ Industries, LLC #
%%% # #
%%% #########################################################
%%%-------------------------------------------------------------------
-module(sign_message).
-export([sign/2]).
%%%
%%% Usage:
%%% -import(sign_message, [sign/2]).
%%% [...]
%%% sign_message:sign(GetRequest, "path/to/private-key.rsa").
%%% * Where GetRequest is the the "foo" portion of "?request=foo"
%%% * Web framework must echo the base64 encoded signature in plain text
%%% * Browser must use ajax technique to fetch base64 signature
%%% * See also qz.api.setSignaturePromise(...)
%%%
%%% Important:
%%% * Private key MUST be converted to newer RSA format using the following command:
%%% openssl rsa -in "private-key.pem" -out "private-key.rsa"
%%%
%%% Watch for:
%%% badmatch,{error,enoent} key cannot be read; check for valid path
%%% function_clause,[{public_key,sign,...}] key must be converted to newer RSA format
%%%
%%%
sign(Message, KeyPath) ->
{ok, Data} = file:read_file(KeyPath),
[KeyEntry] = public_key:pem_decode(Data),
PrivateKey = public_key:pem_entry_decode(KeyEntry),
Signature = public_key:sign(list_to_binary(Message), sha512, PrivateKey), % Use sha1 for QZ Tray 2.0 and older
Base64 = base64:encode(Signature),
io:fwrite(Base64).
Reference in New Issue View Git Blame Copy Permalink