Appendix G - The format of rawTransactionInfo to Merchant

Table 22 below outlines the key/value pairs that comprise the rawTransactionInfo returned to Merchant through getRawTransactionInfo() or getRawTransactionInfoitem() in BankID Server.

Key

Value

DescriptionOperation

docSanityCheckResult

See G.1

BankID formatted results of the Client proxy document check.Sign

pdfValidationVersion

4.4.0.0

Validation version for PDF documents.Sign

cpReport

See G.2

Unformatted Client proxy report.Sign

BankID_CSP_INTERNAL_violation

"true" | "no_data"

Result of security check performed in client (Value will be "no_data" if no breach is detected).Auth/sign

BankID_CSP_EXTERNAL_violation

"true" | "no_data"

Result of security check performed in client (Value will be "no_data" if no breach is detected).Auth/sign

BankID_PSW_sfe_violation_input

dispatchEvent_keydown
addEventListener_focus
fireEvent_undefined
addEventListener_mouseover
attachEvent_onbeforedeactivate
dispatchEvent_SkypeClick2Call_DOMAttrModified …

| "no_data"

Result of security check performed in client (Value will be "no_data" if no breach is detected).Auth/sign

BankID_PSW_sfe_violation_button

dispatchEvent_SkypeClick2Call_DOMAttrModified
addEventListener_click

| "no_data"

Result of security check performed in client (Value will be "no_data" if no breach is detected).Auth/sign

BankID_OTP_sfe_violation_input

attachEvent_onbeforedeactivate
dispatchEvent_keydown
dispatchEvent_SkypeClick2Call_DOMAttrModified
addEventListener_focus

| "no_data"

Result of security check performed in client (Value will be "no_data" if no breach is detected).Auth/sign

BankID_OTP_sfe_violation_button

addEventListener_click
dispatchEvent_SkypeClick2Call_DOMAttrModified

| "no_data"

Result of security check performed in client (Value will be "no_data" if no breach is detected).Auth/sign

BankID_UID_sfe_violation_input

attachEvent_onbeforedeactivate

| "no_data"

Result of security check performed in client (Value will be "no_data" if no breach is detected).Auth/sign

BankID_UID_sfe_violation_button

addEventListener_click

| "no_data"

Result of security check performed in client (Value will be "no_data" if no breach is detected).Auth/sign

BankID_MO_violation_type

childList
attributes
DOMAttrModified

| "no_data"

Result of security check performed in client (Value will be "no_data" if no breach is detected).

 NB: Only applicable for sign-transactions.

Sign

BankID_MO_violation_target

HTML
HEAD
BODY
BODY.data-object
DIV
HTML.pmbx_context
BODY.jhjlijpomuhn_m
SCRIPT.browser

| "no_data"

Result of security check performed in client (Value will be "no_data" if no breach is detected).

 NB: Only applicable for sign-transactions.

Sign

BankID_SHA256_modification

"true" | "no_data"

Result of security check performed in client (Value will be "no_data" if no breach is detected). 

 NB: Only applicable for sign-transactions.

Sign

BankID_Bootloader_Checksum_modification

"true" | "no_data"

Result of security check performed in client (Value will be "no_data" if no breach is detected).Auth/sign

BankID_SHADOWDOM_violation

"true" | "no_data"

Result of security check performed in client (Value will be "no_data" if no breach is detected).Auth/sign

Table 22 rawTransactionInfo format definition
Note that the list reflects the current keys and may be extended in the future. Further note that no_data may reflect the fact that either no breach was detected or that the security check was disabled in COI for some reason.

Also make notice that the COI is able to treat the result of each of these checks individually in three different ways:

  • Block – will effectively stop the transaction. The client will be instructed to send a handleError()-request. The rtReport will tell which security measure that caused the error.
  • Warning – will not stop the transaction. The rtReport will tell which security measure that caused the error.
  • Log_only – The COI will just log the result of the security check.

docSanityCheckResult

Format

Note that this is only applicable for sign-transactions.

The docSanityCheckResult follows the following format:

DOC_1_1_Code=<errorCode>,DOC_1_1_Severity=<severity>,DOC_1_1_Message=<msg>,DOC_1_1_Type=<type>,
DOC_2_1_Code=<errorCode>,DOC_2_1_Severity=<severity>,DOC_2_1_Message=<msg>, DOC_2_1_Type=<type>,
DOC_2_2_Code=<errorCode>,DOC_2_2_Severity=<severity>,DOC_2_2_Message=<msg>, DOC_2_1_Type=<type>,
…
DOC_<N><M>_Code=<errorCode>,DOC<N><M>_Severity=<severity>,DOC<N><M>_Message=<msg>, DOC<N>_<M>_Type=<type> 
<N> = document number
<M> = document sanity check number. One document can contain 0 to many sanity check elements.
<errorCode> = Error code from Client proxy
<severity> = info/warn/error
<msg> = Detailed message from validator/washer/converter
<type> = Validator/Washer/Converter

In order to minimize the size of the report, any duplicate findings within a document are removed.

Example

docSanityCheckResult (contains two documents):
DOC_0_0_Code=100903,
DOC_0_0_Severity=INFO,
DOC_0_0_Message=Document%20conform%20to%20PDFA_2B,
DOC_0_0_Type=VALIDATOR,DOC_0_1_Code=100901,DOC_0_1_Severity=WARN,
DOC_0_1_Message=xmpMM%3Ahistory%2F*%5B0%5D%20%3A%3A%20The%20field%20'changed'%20is%20not%20defined%20in%20value%20type%20'ResourceEvent'.,
DOC_0_1_Type=VALIDATOR,
DOC_0_2_Code=100900,
DOC_0_2_Severity=INFO,
DOC_0_2_Message=Validating%20document%20against%20the%20PDFA_2B%20specification,
DOC_0_2_Type=VALIDATOR,
DOC_0_3_Code=100901,
DOC_0_3_Severity=WARN,
DOC_0_3_Message=The%20property%20'xmpTPg%3AhasVisibleTransparency'%20is%20not%20defined%20in%20schema%20'XMP%20Paged-Text%20Schema'.,
DOC_0_3_Type=VALIDATOR,
DOC_0_4_Code=100901,
DOC_0_4_Severity=WARN,
DOC_0_4_Message=The%20property%20'xmpMM%3AoriginalDocumentID'%20is%20not%20defined%20in%20schema%20'XMP%20Media%20Management%20Schema'.,
DOC_0_4_Type=VALIDATOR,
DOC_0_5_Code=100901,
DOC_0_5_Severity=WARN,
DOC_0_5_Message=Unusual%20prefix%20'xmpGImg%3A'%20for%20namespace%20'http%3A%2F%2Fns.adobe.com%2Fxap%2F1.0%2Fg%2Fimg%2F'.%20The%20preferred%20prefix%20is%20'xapGImg%3A'.,
DOC_0_5_Type=VALIDATOR,
DOC_0_6_Code=100901,
DOC_0_6_Severity=WARN,
DOC_0_6_Message=xmpMM%3Ahistory%2F*%5B1%5D%20%3A%3A%20The%20field%20'changed'%20is%20not%20defined%20in%20value%20type%20'ResourceEvent'.,
DOC_0_6_Type=VALIDATOR,
DOC_0_7_Code=100902,
DOC_0_7_Severity=ERROR,
DOC_0_7_Message=The%20document%20does%20not%20conform%20to%20the%20requested%20standard.,
DOC_0_7_Type=VALIDATOR,
DOC_0_8_Code=100901,
DOC_0_8_Severity=WARN,
DOC_0_8_Message=A%20device-specific%20color%20space%20(DeviceCMYK)%20without%20an%20appropriate%20output%20intent%20is%20used.,
DOC_0_8_Type=VALIDATOR,
DOC_0_9_Code=100901,
DOC_0_9_Severity=WARN,
DOC_0_9_Message=The%20property%20'xmpTPg%3AswatchGroups'%20is%20not%20defined%20in%20schema%20'XMP%20Paged-Text%20Schema'.,
DOC_0_9_Type=VALIDATOR,
DOC_0_10_Code=100902,
DOC_0_10_Severity=ERROR,
DOC_0_10_Message=The%20required%20XMP%20property%20'pdfaid%3Aconformance'%20is%20missing.,
DOC_0_10_Type=VALIDATOR,
DOC_0_11_Code=100901,
DOC_0_11_Severity=WARN,
DOC_0_11_Message=xmpMM%3AderivedFrom%20%3A%3A%20The%20field%20'originalDocumentID'%20is%20not%20defined%20in%20value%20type%20'ResourceRef'.,
DOC_0_11_Type=VALIDATOR,
DOC_0_12_Code=100901,
DOC_0_12_Severity=WARN,
DOC_0_12_Message=The%20property%20'xmpTPg%3AhasVisibleOverprint'%20is%20not%20defined%20in%20schema%20'XMP%20Paged-Text%20Schema'.,
DOC_0_12_Type=VALIDATOR,
DOC_0_13_Code=100901,
DOC_0_13_Severity=WARN,
DOC_0_13_Message=The%20property%20'xmpMM%3Amanifest'%20is%20not%20defined%20in%20schema%20'XMP%20Media%20Management%20Schema'.,
DOC_0_13_Type=VALIDATOR,
DOC_0_14_Code=100902,
DOC_0_14_Severity=ERROR,
DOC_0_14_Message=The%20required%20XMP%20property%20'pdfaid%3Apart'%20is%20missing.,
DOC_0_14_Type=VALIDATOR,
DOC_0_15_Code=100900,
DOC_0_15_Severity=INFO,
DOC_0_15_Message=The%20key%20Metadata%20is%20recommended.,
DOC_0_15_Type=VALIDATOR,
DOC_0_16_Code=100802,
DOC_0_16_Severity=INFO,
DOC_0_16_Message=Validation%20time%3A%2022ms,
DOC_0_16_Type=VALIDATOR,
DOC_0_17_Code=100801,
DOC_0_17_Severity=INFO,
DOC_0_17_Message=Conversion%20time%3A%201797ms,
DOC_0_17_Type=CONVERTER,
DOC_0_18_Code=100800,
DOC_0_18_Severity=INFO,
DOC_0_18_Message=BufferedImage%20to%20PNG%20time%3A%20730ms,
DOC_0_18_Type=CONVERTER,
DOC_1_0_Code=100903,
DOC_1_0_Severity=INFO,
DOC_1_0_Message=Document%20conform%20to%20PDFA_2B,DOC_1_0_Type=VALIDATOR,
DOC_1_1_Code=100901,
DOC_1_1_Severity=WARN,
DOC_1_1_Message=The%20property%20'xap%3Atitle'%20is%20deprecated%20and%20thus%20forbidden.%20Use%20'dc%3Atitle'%20instead.,
DOC_1_1_Type=VALIDATOR,
DOC_1_2_Code=100900,
DOC_1_2_Severity=INFO,
DOC_1_2_Message=The%20recommended%20XMP%20property%20'xap%3AcreatorTool'%20for%20the%20document%20information%20entry%20'Creator'%20is%20missing.,
DOC_1_2_Type=VALIDATOR,
DOC_1_3_Code=100902,
DOC_1_3_Severity=ERROR,
DOC_1_3_Message=The%20glyph%20for%20character%200%20in%20font%20'WFYSND%2BrotisSansSerif'%20is%20missing.,
DOC_1_3_Type=VALIDATOR,
DOC_1_4_Code=100901,
DOC_1_4_Severity=WARN,
DOC_1_4_Message=The%20property%20'pdf%3Acreator'%20is%20deprecated%20and%20thus%20forbidden.%20Use%20'xmp%3AcreatorTool'%20instead.,
DOC_1_4_Type=VALIDATOR,
DOC_1_5_Code=100901,
DOC_1_5_Severity=WARN,
DOC_1_5_Message=dc%3Atitle%20%3A%3A%20Wrong%20value%20type.%20Expected%20type%20'lang%20alt'.,
DOC_1_5_Type=VALIDATOR,
DOC_1_6_Code=100901,
DOC_1_6_Severity=WARN,
DOC_1_6_Message=A%20device-specific%20color%20space%20(DeviceRGB)%20without%20an%20appropriate%20output%20intent%20is%20used.,
DOC_1_6_Type=VALIDATOR,
DOC_1_7_Code=100901,
DOC_1_7_Severity=WARN,
DOC_1_7_Message=The%20dictionary%20must%20not%20contain%20the%20key%20'LZWDecode'.,
DOC_1_7_Type=VALIDATOR,
DOC_1_8_Code=100901,
DOC_1_8_Severity=WARN,
DOC_1_8_Message=XMP%20packet%20header%20attribute%20'bytes'%20is%20deprecated.,
DOC_1_8_Type=VALIDATOR,
DOC_1_9_Code=100901,
DOC_1_9_Severity=WARN,
DOC_1_9_Message=The%20unqualified%20RDF%20attribute%20'about'%20is%20deprecated.%20Use%20'rdf%3Aabout'%20instead.,
DOC_1_9_Type=VALIDATOR,
DOC_1_10_Code=100901,
DOC_1_10_Severity=WARN,
DOC_1_10_Message=Unusual%20prefix%20'xap%3A'%20for%20namespace%20'http%3A%2F%2Fns.adobe.com%2Fxap%2F1.0%2F'.%20The%20preferred%20prefix%20is%20'xmp%3A'.,
DOC_1_10_Type=VALIDATOR,
DOC_1_11_Code=100902,
DOC_1_11_Severity=ERROR,
DOC_1_11_Message=The%20glyph%20for%20character%200%20in%20font%20'VXOMZF%2BRotisSansSerif-Italic'%20is%20missing.,
DOC_1_11_Type=VALIDATOR,
DOC_1_12_Code=100900,
DOC_1_12_Severity=INFO,
DOC_1_12_Message=Validating%20document%20against%20the%20PDFA_2B%20specification,
DOC_1_12_Type=VALIDATOR,
DOC_1_13_Code=100901,
DOC_1_13_Severity=WARN,
DOC_1_13_Message=The%20property%20'pdf%3AcreationDate'%20is%20deprecated%20and%20thus%20forbidden.%20Use%20'xmp%3AcreateDate'%20instead.,
DOC_1_13_Type=VALIDATOR,
DOC_1_14_Code=100901,
DOC_1_14_Severity=WARN,
DOC_1_14_Message=The%20property%20'pdf%3Atitle'%20is%20deprecated%20and%20thus%20forbidden.%20Use%20'dc%3Atitle'%20instead.,
DOC_1_14_Type=VALIDATOR,
DOC_1_15_Code=100901,
DOC_1_15_Severity=WARN,
DOC_1_15_Message=Unusual%20prefix%20'xapMM%3A'%20for%20namespace%20'http%3A%2F%2Fns.adobe.com%2Fxap%2F1.0%2Fmm%2F'.%20The%20preferred%20prefix%20is%20'xmpMM%3A'.,
DOC_1_15_Type=VALIDATOR,
DOC_1_16_Code=100900,
DOC_1_16_Severity=INFO,
DOC_1_16_Message=The%20recommended%20XMP%20property%20'pdf%3Aproducer'%20for%20the%20document%20information%20entry%20'Producer'%20is%20missing.,
DOC_1_16_Type=VALIDATOR,
DOC_1_17_Code=100902,
DOC_1_17_Severity=ERROR,
DOC_1_17_Message=The%20document%20does%20not%20conform%20to%20the%20requested%20standard.,
DOC_1_17_Type=VALIDATOR,
DOC_1_18_Code=100901,
DOC_1_18_Severity=WARN,
DOC_1_18_Message=Deprecated%20content%20of%20XMP%20packet%20header%20attribute%20'begin'%3A%20''.,
DOC_1_18_Type=VALIDATOR,
DOC_1_19_Code=100901,
DOC_1_19_Severity=WARN,
DOC_1_19_Message=A%20device-specific%20color%20space%20(DeviceGray)%20without%20an%20appropriate%20output%20intent%20is%20used.,
DOC_1_19_Type=VALIDATOR,
DOC_1_20_Code=100901,
DOC_1_20_Severity=WARN,
DOC_1_20_Message=The%20property%20'xap%3Aformat'%20is%20not%20defined%20in%20schema%20'XMP%20Basic%20Schema'.,
DOC_1_20_Type=VALIDATOR,
DOC_1_21_Code=100902,
DOC_1_21_Severity=ERROR,
DOC_1_21_Message=The%20required%20XMP%20property%20'pdfaid%3Aconformance'%20is%20missing.,
DOC_1_21_Type=VALIDATOR,
DOC_1_22_Code=100901,
DOC_1_22_Severity=WARN,
DOC_1_22_Message=The%20property%20'pdf%3AmodDate'%20is%20deprecated%20and%20thus%20forbidden.%20Use%20'xmp%3AmodifyDate'%20instead.,
DOC_1_22_Type=VALIDATOR,
DOC_1_23_Code=100902,
DOC_1_23_Severity=ERROR,
DOC_1_23_Message=The%20required%20XMP%20property%20'pdfaid%3Apart'%20is%20missing.,
DOC_1_23_Type=VALIDATOR,
DOC_1_24_Code=100900,
DOC_1_24_Severity=INFO,
DOC_1_24_Message=The%20key%20Metadata%20is%20recommended.,
DOC_1_24_Type=VALIDATOR,
DOC_1_25_Code=100802,
DOC_1_25_Severity=INFO,
DOC_1_25_Message=Validation%20time%3A%2069ms,
DOC_1_25_Type=VALIDATOR,
DOC_1_26_Code=100801,
DOC_1_26_Severity=INFO,
DOC_1_26_Message=Conversion%20time%3A%20514ms,
DOC_1_26_Type=CONVERTER,
DOC_1_27_Code=100800,
DOC_1_27_Severity=INFO,
DOC_1_27_Message=BufferedImage%20to%20PNG%20time%3A%20368ms,
DOC_1_27_Type=CONVERTER



Figure 10 – Parsed docSanityCheckResult

cpReport – example

Note that this is only applicable for sign-transactions.

cpReport:

"[{"documentId":"signpk_tilsagnsbrevpdf-96eb2c7f-1dee-4a29-bfba-1ae265aec53d","messages":[{"type":"VALIDATOR","code":"100903","message":"Document conform to PDFA_2B","level":"INFO"},{"type":"VALIDATOR","code":"100902","message":"The required XMP property 'pdfaid:conformance' is missing.","level":"ERROR"},{"type":"VALIDATOR","code":"100901","message":"A device-specific color space (DeviceRGB) without an appropriate output intent is used.","level":"WARN"},{"type":"VALIDATOR","code":"100901","message":"The font MyriadPro-Bold must be embedded.","level":"WARN"},{"type":"VALIDATOR","code":"100900","message":"Validating document against the PDFA_2B specification","level":"INFO"},{"type":"VALIDATOR","code":"100901","message":"Unusual prefix 'xapMM:' for namespace 'http://ns.adobe.com/xap/1.0/mm/'. The preferred prefix is 'xmpMM:'.","level":"WARN"},{"type":"VALIDATOR","code":"100902","message":"The document does not conform to the requested standard.","level":"ERROR"},{"type":"VALIDATOR","code":"100901","message":"The font MyriadPro-Regular must be embedded.","level":"WARN"},{"type":"VALIDATOR","code":"100901","message":"Unusual prefix 'xap:' for namespace 'http://ns.adobe.com/xap/1.0/'. The preferred prefix is 'xmp:'.","level":"WARN"},{"type":"VALIDATOR","code":"100901","message":"The schema description for namespace 'desc:' (http://ns.adobe.com/xfa/promoted-desc/) is missing.","level":"WARN"},{"type":"VALIDATOR","code":"100902","message":"The required XMP property 'pdfaid:part' is missing.","level":"ERROR"},{"type":"VALIDATOR","code":"100802","message":"Validation time: 11ms","level":"INFO"},{"type":"CONVERTER","code":"100801","message":"Conversion time: 162ms","level":"INFO"},{"type":"CONVERTER","code":"100800","message":"BufferedImage to PNG time: 320ms","level":"INFO"}],"fullValidationReport":"[CODE",]