-
-
Notifications
You must be signed in to change notification settings - Fork 56
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
After signing, a .pdf.p7s file appears instead of .signed.pdf file #3788
Comments
Follow some comments:
LibreSign does not have official frontend support to handle p7s files. I have already implemented part of the code to handle p7s on the API side to enable signing files that are not pdf, but it is not complete and the code at API side can't be trigged.
I have never tested this app in conjunction with LibreSign. Maybe this could generate some issues but I don't know wich ones.
The link to sign the document should only be accessed by SIGNING-USER; if you try to access the link received from SIGNING-USER using a browser with THIRD-USER or the account of THIRD-USER, the expected behavior "Invalid user" is correct.
There is an event in LibreSign that watch the deletion of pdf files; when it is a file from LibreSign, all data of this file is deleted from LibreSign as well to prevent an icon-less file from appearing removing the file fom list of files at LibreSign app. Files without an icon (with a gray icon) are those that, for some reason, LibreSign could not found on disk and a strange behaviour didn't trigged the event to delete all data from LibreSign tables at database.
This is a somewhat strange behavior since LibreSign does not handle p7s files. It appears that this file was manually uploaded by the Files app to this folder. The described scenarios are a bit confusing. I think that don't will be possible reproduce. Can you provide a reproducible scenario? |
Just to be clear, I agree that what the user doing is extremely unusual. Especially the part where a third user is accessing the signing link. I also agree that this scenario is very unlikely to come up in actual use. I don't know where the p7s file is coming from either. The customer says he is not uploading the p7s file, and that it is appearing after he signs the original PDF. I cannot reproduce the issue. The customer cannot reliably reproduce the issue, but it happened to him three times yesterday. I am going to try to schedule a video call with him today so that I can watch what exactly he is doing. If I am able to collect more information, I will share it. So I guess my main question right now is where is this p7s file coming from? Are you saying that LibreSign isn't creating it? |
See if you can record the call; it would be good because if you can see the problem, we have a video that can give some light.
Is this, the only point at the code that could generate a p7s is this: libresign/lib/Service/SignFileService.php Lines 265 to 283 in 3863a4f
There is no way today in the frontend to request that a file that is not a PDF be signed, so I don't see how a p7s could have been created. Is it possible that this client of yours is using the Nexcloud Desktop Client and is signing the document with some other software and generating the p7s file? |
No, I am certain that he is not using the desktop client. I have blocked the desktop client for this Nextcloud installation by blocking its user agent. |
@vitormattos I had a Zoom call with my customer, and he was able to reproduce the problem during our call, so I now have a video showing the steps to reproduce. However, the document he signed has some personal information visible on the screen, so I don't want to post it on GitHub where it will be public. I have emailed you at your librecode.coop email address. The email contains a link that you can use to download the video. Please download the video and let me know if you have any questions or need additional information. |
Describe the bug
When signing a document using "click to sign", sometimes a
filename.pdf.p7s
file can be left behind. When this happens, the expectedfilename.signed.pdf
file is never created. As a result, the signed version of the document cannot be opened or viewed (because it doesn't exist). When downloaded, thefilename.pdf.p7s
file is zero bytes (0 B).To Reproduce
I cannot reproduce the issue, however my customer has encountered it twice. These are the steps he is following, as best as I can tell:
Expected behavior
filename.pdf
file, and a newfilename.signed.pdf
file that contains the signed document.Actual behavior
filename.p7s
instead of displaying the signed document. Thefilename.p7s
file is zero bytes (0 B), and completely empty.filename.pdf
file is still present, but there is nofile.signed.pdf
file. Instead,filename.pdf.p7s
file is present. Thefilename.pdf.p7s
file is completely empty (zero bytes). (See Screenshot 3, below.)Screenshots
404 Error screen displayed after step 5.
Corrupted (?) signed files displayed with a gray icon:
The
adam.PDF.p7s
file was created as a result of signingadam.PDF
. Theadam.PDF.p7s
file is completely empty.Screen 1 of LibreSign settings.
Screen 2 of LibreSign settings.
Screen 3 of LibreSign settings.
Environment information (please complete the following information):
cat nextcloud.log | grep -i libresign | grep "2024-10-10"
): nextcloud.logAdditional context
My customer is experiencing this as he is testing out LibreSign, and trying to learn how it works. Essentially, he is sending signature requests to himself or a co-worker as a test. The problem seems to be appearing, because the recipient is already logged into another account when they click on the link in the email they receive. From my customer's experience, LibreSign is repeatedly failing during his tests, and this is causing the customer to mistrust the tool and become reluctant to rely on it for production use (even though this combination of events is unlikely to happen in a real-life scenario).
The text was updated successfully, but these errors were encountered: