This is a easy-to-use service that allows to issue and sign basic text certificates. It has been designed specially for e-learning websites, trying to provide to them a way to generate certificates for their students in a de-centralized way.
However, although this has been created having in mind e-learning sites, its simplicity brings the posibility of using it in other different scenarios where basic simmetric signing is required.
In order to compile and modify the project you need to install both dependencies and development dependencies.
npm package manager has been used to create this project.
A npm install should be enought to install required dependencies.
VSCode with ESLint extension is recommended.
During the development, the extension has been configured to automatically fix code style errors following the airbnb style guide.
These are the supported commands:
npm run build: Compiles the project and places the output in thedistdirectory.npm start: Compiles the project and starts it.npm run dev: Compiles the project, start it, and recompiles when asrcfile is modified.npm test: Runs tests.npm run test:coverage: Runs tests with a code coverage report.npm run coveralls: Runs tests with a code coverage report and uploads it to coveralls. This command is only invoked from TravisCI to update the code coverage badge.
A key pair is needed to issue and sign certificates. A new key pair can be generated performing the following HTTP request:
GET /certification-entity/generate
No parameters are required.
Just take the publicKey and privateKey parameters, save and use them accordingly. Remember: Never expose your private key publicly.
{
"success": true,
"data": {
"publicKey": "-----BEGIN RSA PUBLIC KEY----- ... -----END RSA PUBLIC KEY-----\n",
"privateKey": "-----BEGIN RSA PRIVATE KEY----- ... -----END RSA PRIVATE KEY-----\n"
}
}Once you have your public and private keys, you can issue and sign a new certificate, performing the following http request.
POST /certificate/sign
Parameters:
{
"privateKey": "-----BEGIN RSA PRIVATE KEY----- ... -----END RSA PRIVATE KEY-----\n",
"certificate": {
"verificationAddress": "",
"publicKey": "-----BEGIN RSA PUBLIC KEY----- ... -----END RSA PUBLIC KEY-----\n",
"certificationEntity": "Issuer",
"certifiedEntity": "Receiver",
"data": "Text to certify",
"signature": "",
"timestamp": ""
}
}The certificate object is returned back, filling the timestamp and signature properties.
{
"success": true,
"data": {
"publicKey": "-----BEGIN RSA PUBLIC KEY----- ... -----END RSA PUBLIC KEY-----\n",
"certificationEntity": "Issuer",
"certifiedEntity": "Receiver",
"data": "Text to certify",
"timestamp": "Thu Jun 24 2021 20:41:35 GMT+0200 (hora de verano de Europa central)",
"verificationAddress": "",
"signature": "..."
}
}The following endpoint validates a certificate's signature. If there was specified a verification address, the authenticity of the public key is checked performing an http request to the indicated verification address.
POST /certificate/validate
Parameters:
{
"publicKey": "-----BEGIN RSA PUBLIC KEY----- ... -----END RSA PUBLIC KEY-----\n",
"certificationEntity": "Issuer",
"certifiedEntity": "Receiver",
"data": "Text to certify",
"timestamp": "Thu Jun 24 2021 20:40:12 GMT+0200 (hora de verano de Europa central)",
"verificationAddress": "",
"signature": "..."
}A boolean is returned as a result.
If there's a verification address, and the public key verification process fails, the certificate is considered not valid, and false is returned.
{
"success": true,
"data": false
}