trustFlags property of SignatureInfo object

Hi Chris,
I think this is one of those details that nobody ever uses, so it's never really been tested and is probably full of bugs. "65527" translates to 0xFFF7. That looks like a default, and possibly bogus, value to me. It indicates that it's trusted for everything except signatures.

But are you sure your using it correctly. The JS Reference states that this value is only valid when the signature is valid and the identity of the signer is valid. I don't know exactly that the last part means.

It's also not clear from the JS ref where the trust is set. You'd think it would be the trust manager, but the ref gives the Acrobat Address Book (adobe.AAB) as an example. whatever that is.

Hi Thom,

this is obscure indeed. What I have understood from it is as follows:

- the AAB is the list of trusted identities in Advanced> Manage Trusted Identities;- it is here that one can assign levels of trust to associated certificates (signing, certification, dynamic content, restricted JavaScript ) - it is this setting that I'm trying to access with script;

- if the signature is signed with a digital ID and the identity or root certificate is in the trusted identities list, then the status property of the associated SigInfo object will be 4, else it will be 3. So when it says the trustFlags value is "only valid when the signature is valid and the identity of the signer is valid", I understand this to mean that the status must be 4 and that one should run the signatureValidate() method before reading the value. In my investigations I get same trustFlags value regardless of what trust setting I have assigned in the trusted identities list, even though the status value is 4.

- Some info of the certificates in the AAB can be accessed through a script as roughly outlined in the JS reference:
var sh = security.getHandler( "Adobe.AAB" );
var dc = sh.directories[0].connect();
if( dc.canList ) {
var x = dc.search();
for( j=0; j