Nic James Ferrier wrote:
You can do the one shot by having mozilla generate the key with the java-script crmf interface.I'm trying to do one shot key registration and import.The idea is that people enter some data in an HTML form, press submit, server side code recieves the form, generates a private key and a certificate, generates pkcs12 and sends it back to the user, causing the user to recieve a certificate which I can then use to authenticate them later.
(http://developer.mozilla.org/en/docs/JavaScript_crypto#Generating_Keys_and_issuing_User_Certificates)The interface allows you to optionally back up the user's private key as well.
This is certainly the wrong mime-type for a PKCS #12 file. Unfortunately, looking at the code, there doesn't seem to be a content handler for pkcs12 in firefox (or any of xulrunner). sounds like a reasonable RFE. Assign the component to the bug to 'PSM'.If I can do it one shot I don't have nearlly as many security or locking problems. However, my code isn't working. What happens is that I make the request and firefox waits for the response but then nothing happens... not even a "download file" dialog box. I know my CA is working because if I use firefox to directly import the PKCS12 file that is generated during a request - the certificate is installed fine. I have also used CURL to do the request and save the resulting output to a file and then import that. That works as well. I'm sending the PKCS12 from the webserver with the mime type: application/x-x509-user-cert
bob
I'm sending the raw PKCS12 file, DER encoded. Can anyone help?
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
