pdf_plus
A Dart library for PDF generation and manipulation, based on dart_pdf, with additional focus on digital signatures, validation, and PKI workflows.
fork from https://github.com/DavBfr/dart_pdf
What this package provides
- High-level PDF creation API (
widgets.dart) and low-level PDF object model (pdf.dart) - Incremental digital signing (PAdES/CMS) with visible signature support
- External signing flow for tokens, HSM, and custom signers
- Signature validation with integrity checks, certificate-chain validation, and revocation support (CRL/OCSP)
- PKI utilities for certificates, keystores, and PKCS#12 handling
Requirements
- Dart SDK
^3.6.0
Installation
In your project's pubspec.yaml:
dependencies:
pdf_plus: ^3.14.0
Then run:
dart pub get
Package entry points
package:pdf_plus/widgets.dart— high-level document compositionpackage:pdf_plus/pdf.dart— low-level PDF APIpackage:pdf_plus/signing.dart— signing, validation, parsing, and security inspectionpackage:pdf_plus/pki.dart— PKI and keystore helpers
Common imports
import 'package:pdf_plus/widgets.dart' as pw; // high-level PDF widgets
import 'package:pdf_plus/pdf.dart'; // low-level PDF APIs
import 'package:pdf_plus/signing.dart'; // signing and validation
import 'package:pdf_plus/pki.dart'; // PKI helpers
Quick start: generate a PDF
import 'dart:io';
import 'package:pdf_plus/widgets.dart' as pw;
Future<void> main() async {
final pdf = pw.Document();
pdf.addPage(
pw.Page(
build: (context) => pw.Center(
child: pw.Text('Hello World!'),
),
),
);
await File('example.pdf').writeAsBytes(await pdf.save());
}
Basic example: sign an existing PDF (PAdES)
import 'dart:io';
import 'package:pdf_plus/signing.dart';
Future<void> main() async {
final inputBytes = await File('input.pdf').readAsBytes();
final p12Bytes = await File('certificate.p12').readAsBytes();
final signer = await PdfSignatureSigner.fromPkcs12Bytes(
pkcs12Bytes: p12Bytes,
password: 'your-certificate-password',
);
final doc = PdfLoadedDocument.fromBytes(inputBytes);
await doc.addSignature(
PdfSignatureRequest(
pageNumber: 1,
fieldName: 'Signature1',
signer: signer,
bounds: PdfSignatureBounds.topLeft(
left: 40,
top: 80,
width: 220,
height: 70,
),
reason: 'Approval',
location: 'Brazil',
),
);
final signedBytes = await doc.save();
await File('signed.pdf').writeAsBytes(signedBytes);
doc.dispose();
}
Basic example: validate signatures
import 'dart:io';
import 'package:pdf_plus/signing.dart';
Future<void> main() async {
final bytes = await File('signed.pdf').readAsBytes();
final report = await PdfSignatureValidator().validateAllSignatures(
bytes,
includeCertificates: true,
includeSignatureFields: true,
);
for (final sig in report.signatures) {
print(
'Signature #${sig.signatureIndex}: '
'status=${sig.validationStatus} '
'cms=${sig.cmsValid} digest=${sig.digestValid} intact=${sig.intact}',
);
}
}
Validation options
PdfSignatureValidator().validateAllSignatures(...) supports common verification scenarios:
- Trusted roots from PEM or custom providers
- Optional online chain completion (
certificateFetcher) - Optional revocation checks (
fetchCrls,fetchOcsp,strictRevocation) - Temporal validation options (
validateTemporal,validationTime, signing-time mode) - Certificate and signature-field extraction in reports
Signing workflow summary
- Load or generate PDF bytes.
- Create a signer (
fromPkcs12Bytes, PEM, or external signer). - Add signature fields and metadata (
reason,location, timestamp, DocMDP). - Save signed bytes incrementally.
- Validate signed output and inspect reports.
Additional project documentation
fonts-management.md
Run tests
dart test
License
This project is distributed under Apache-2.0. See LICENSE.