Apache OpenOffice (AOO) Bugzilla – Issue 105751
certificate validation fails if certificates are only on the chip card
Last modified: 2013-01-29 21:46:49 UTC
... that is, the necessary certificates for building the certification path are not completey in the certificate database of the mozilla profile. A typical scenario is, that the chip card contains the private key and the certificate of the user as well as the complete chain. When the user starts OOo and loads a signed document, then the validation fails. Only when the user has entered the PIN for the card the validation is successful. However, the user is not automatically requested to enter the PIN. Only when one adds a signature (pressing the "Add" button in the signature dialog), then one can enter the PIN. One can then press cancel to abort the signature operation and reload the document. A certificate can only be valid if the user sets the trust settings of the root certificate (which is on the chip card) to trusted. This is done in the preferences dialog of mozilla/firefox.
.
Retargeted to 3.x