Difference between revisions of "Estonian ID-card"

From ArchWiki
Jump to: navigation, search
(Added text about chrome-token-signing package)
(Remove info about the old browser plugin (it does not work with firefox 52+))
Line 8: Line 8:
  
 
2. Enable {{ic|pcscd.socket}} [[systemd#Using units|using systemd]].
 
2. Enable {{ic|pcscd.socket}} [[systemd#Using units|using systemd]].
 +
 +
== Web authentication & digital signatures ==
  
 
{{AUR|chrome-token-signing}} package contains [https://developer.mozilla.org/en-US/Add-ons/WebExtensions/Native_messaging Native Messaging] host for Google Chrome/Chromium and Firefox and it is the modern way of doing authentication and digital signatures on the web.
 
{{AUR|chrome-token-signing}} package contains [https://developer.mozilla.org/en-US/Add-ons/WebExtensions/Native_messaging Native Messaging] host for Google Chrome/Chromium and Firefox and it is the modern way of doing authentication and digital signatures on the web.
  
For Google Chrome and Chromium you also will probably want to run [https://github.com/open-eid/linux-installer/blob/master/esteid-update-nssdb esteid-update-nssdb] script that enables TLS client authentication the the browser.
+
For Google Chrome and Chromium you also will probably want to run [https://github.com/open-eid/linux-installer/blob/master/esteid-update-nssdb esteid-update-nssdb] script that enables TLS client authentication in the browser.
 
 
== Browser plugin (web authentication & digital signatures) ==
 
 
 
The browser plugin AUR package is called {{AUR|esteidfirefoxplugin}}, which also requires dependencies {{AUR|esteidpkcs11loader}} and {{AUR|esteidcerts}}{{Broken package link|{{aur-mirror|esteidcerts}}}}.
 
 
 
It also requires you to run the PCSC daemon, which can be installed with {{Pkg|pcsclite}} from the [[official repositories]].
 
 
 
Make it auto-start on demand by enabling {{ic|pcscd.socket}} [[systemd#Using units|using systemd]].
 
 
 
Don't forget to restart Firefox after finishing.
 
  
 
== ID-card and Digidoc utilities ==
 
== ID-card and Digidoc utilities ==
  
The ID-card utility packages are {{AUR|qesteidutil}} and {{AUR|qdigidoc}}, with dependencies {{AUR|esteidcerts}}{{Broken package link|{{aur-mirror|esteidcerts}}}}, {{AUR|libdigidoc}} and {{AUR|libdigidocpp}}.
+
The ID-card utility packages are {{AUR|qesteidutil}} and {{AUR|qdigidoc}}, with dependencies {{AUR|libdigidoc}} and {{AUR|libdigidocpp}}.
  
 
These applications will automatically appear in your application menus. You can also start from command line with <tt>qdigidocclient</tt> and <tt>qesteidutil</tt>.
 
These applications will automatically appear in your application menus. You can also start from command line with <tt>qdigidocclient</tt> and <tt>qesteidutil</tt>.

Revision as of 22:41, 27 March 2017

Tango-go-next.pngThis article or section is a candidate for moving to eID card.Tango-go-next.png

Notes: Shared instructions amongst different eID cards (card readers, pcsc), different mostly in middleware and browser plugins. Merge with Belgian eID card reader. (Discuss in Talk:Estonian ID-card#)

Packages to enable Estonian ID-card support are available from the Arch User Repository. This article explains how to install the official software versions by AS Sertifitseerimiskeskus.

Quick install

1. Install pcsclite from the official repositories and chrome-token-signingAUR, qdigidocAUR and qesteidutilAUR from the AUR.

2. Enable pcscd.socket using systemd.

Web authentication & digital signatures

chrome-token-signingAUR package contains Native Messaging host for Google Chrome/Chromium and Firefox and it is the modern way of doing authentication and digital signatures on the web.

For Google Chrome and Chromium you also will probably want to run esteid-update-nssdb script that enables TLS client authentication in the browser.

ID-card and Digidoc utilities

The ID-card utility packages are qesteidutilAUR and qdigidocAUR, with dependencies libdigidocAUR and libdigidocppAUR.

These applications will automatically appear in your application menus. You can also start from command line with qdigidocclient and qesteidutil.