Tabs
SWF uses different user stores, and the following can be configured:
-
INTERNAL
users - usually employees -
EXTERNAL
users - usually citizens -
EMAIL
users - users without any hard mapping towards any preconfigured user store
Add users via EMAIL
This feature allows you to add a signer using only their e-mail address and name. This can be handy when you want to send a document to a person whose personal number you don't have. You can also use a generic e-mail address, like [email protected]
, and let the receiver decide who should sign the task.
Important!
The e-mail notification will contain a link that will give the receiver access to the document without logging in to SWF. The user is only authenticated when signing the task. Therefore, it is essential to check the signatures when the task is completed.
Configuration
This feature needs a certificate to create a JWT which is embedded in the link that gives the receiver access to the task. The JWT is validated when the user is using the link to access the task.
You can use the same certificate that is configured for credentials.privatePkcs12
. Add or edit the following in the config.json
file.
"tabs": {
"email": {
"enabled": true,
"jwtSigningCertificatePath": "/opt/certs/phenixid-test.p12",
"jwtSigningCertificatePassword": "password"
}
},
Editing this configuration requires a restart.
An information box will be visible on the right hand side in the UI. The contents can be configured by updating the frontend translation files, strings.json
, like this:
"editPage": {
"signers": {
"add": {
"email": {
"tabLabel": "Add by Email",
"description": "Please enter a valid email address along with first and last name."
}
}
}
}