1
Hello, I know you have some questions related to the theme, but I could not draw any conclusions (at least of those I read), finally it is possible to apply A3 digital certificates (for authentication and/ or signature) in WEB applications?
I read some answers where users say it is possible to use A3 in a web application as long as it has an application installed on the User, if it is feasible someone has some material on?
Yes, it is possible. What the user needs to install on his machine are the drivers for the system to recognize the card/token reader. On the server side, just configure it to ask for the user’s certificate in the authentication (and each one is configured one way, look in the respective documentation). If everything is configured, the browser makes the field medium, asking for the certificate when the site requests.
– hkotsubo
@hkotsubo the problem with this methodology is the limitation when using the browser as an intermediary, either for usability problems or for lack of functionality even, at least that’s what this link. implied
– Augusto A
But if you’re going to make a web system, you have to use the browser (unless you make a desktop application that accesses the internet, but then this application will have to deal with the operating system Apis to read the certificate (which is something the browser already does, even with all the problems cited). There’s not much to run to, it’s problematic, it has usability problems, but no one could find a better solution
– hkotsubo
@hkotsubo what some applications are doing is using software installed on the user’s computer and a browser extension to manage the certificates, so the problem of native browser support is circumvented.
– Augusto A