Example of the Digital Signature Framework deployment as a cloud function / AWS Lambda for PDF signing
mvn clean package
mvn function:run
and
curl --data-binary "@document.pdf" -o signed.pdf localhost:8080
Either manually
gcloud functions deploy dss-sign-pdf-http --gen2 --entry-point=com.github.alexsc.dss.SignPdfHttp --runtime=java17 --region=us-east1 --trigger-http --allow-unauthenticated --source=target/deployment
or using Terraform
https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/cloudfunctions_function
curl --data-binary "@document.pdf" -o signed.pdf https://us-east1-alex-sc-test.cloudfunctions.net/dss-sign-pdf-http
mvn function:run
and
curl --data-binary "@document.pdf" -o signed.pdf localhost:8080
Make sure to build before deploying
Create
aws lambda create-function \
--function-name dss-sign-pdf-lambda \
--runtime java21 \
--handler com.github.alexsc.dss.SignPdfLambda \
--role arn:aws:iam::175379499180:role/service-role/fdfrf-role-keyh1pva \
--timeout 600 \
--memory-size 512 \
--zip-file fileb://target/deployment/dss-signing-cloud-function-1.0.jar Assign URL
aws lambda create-function-url-config \
--function-name dss-sign-pdf-lambda \
--auth-type NONEAssign permission
aws lambda add-permission \
--function-name dss-sign-pdf-lambda \
--statement-id FunctionURLAllowPublicAccess \
--action lambda:InvokeFunctionUrl \
--principal '*' \
--function-url-auth-type NONEUpdate
aws lambda update-function-code --function-name dss-sign-pdf-lambda --zip-file fileb://target/deployment/dss-signing-cloud-function-1.0.jar
terraform -chdir=terraform/aws/ initterraform -chdir=terraform/aws/ applyterraform -chdir=terraform/aws/ show | grep function_url
curl --data-binary "@document.pdf" -o signed.pdf https://6dagp34oy4i7f2e75viiy2kr440lifdz.lambda-url.us-east-1.on.aws/
Adjust Azure configuration in pom.xml and
mvn clean package azure-functions:deploy
curl -v --data "@document.base64" https://dss-sign-pdf-function.azurewebsites.net/api/dss-sign-pdf-function-port/ --output signed.pdf