ApplicGate
(v12.0.8874.35714 started 2024-04-18 18:00:37 on VM2)

Sample response from the web server to be forwarded to the Application Gateway:
action is the address of the Application Gateway
challenge must be a random value and must be changed at any new response. See example C# code:
//Initialize a pseudo-random number generator at start of the web server
public static Random rnd = new Random();
public static Object randLock = new Object(); // must be used for locking when accessing rnd
....
// Generate new challenge
byte[] bchallenge = new byte[128];
lock (randLock) { rnd.NextBytes(bchallenge); }
string challenge = BitConverter.ToString(bchallenge);
hashalg is the hash algorithm used for signing and should be SHA256 or better.
responsepath (optional) is the URL where the response from the Application Gateway should be sent.

<!DOCTYPE html>
<html>
<head>
  <meta charset="UTF-8">
  <title>Sign Transaction</title>
  <script>
    "use strict";
    function meineFunktion() {
      var ifo = document.getElementById("info");
      ifo.innerHTML = "Sending signing request ...";
      document.SignRequest.submit();
    }
  </script>
 
</head>
<body>
<form name="SignRequest" method="post" action="https://myAppGW.company.com/signrq.html">
  <input type="hidden" name="challenge" value="DB-95-E8-83-66-88-8B-E9-31-64-87-D2-6A-43-6C-39-14-C7-00-85" />
  <input type="hidden" name="hashalg" value="SHA256" />
  <input type="hidden" name="responsepath" value="https://myWeb.company.com/signresponse.aspx" />
</form>

<article>
  <h1>Sign Transaction Response Test</h1>
  <p id="info">...</p>
</article>
  <button type="button" onclick="meineFunktion()">
    Send Signing Request
  </button>

</body>
</html>

ApplicGate Logo  reinhold.leitner@applicgate.com (C) April 2024
www.applicgate.com