General J2EE: Tough problem - Secure, signed PDF download
Ok, so here's a real tough one. We have a server that has pdf's on it. There is a struts/jsp/servlet web app on the box. When a verified user clicks a link to download a file, it calls a servlet that then streams the bytes to that user. We want to be able to keep good track of our pdf's. It's important that if anyone distributes them, we can track down who downloaded the original copy. So, we'd like to be able to somehow sign the pdf that is being downloaded somehow. That way if that person gives the doc to a customer, we can see where it originated from. Seems really hard to do this. Any ideas?
- Posted by: A. Ritchie
- Posted on: December 22 2005 16:55 EST
Using iText (freely available at http://www.lowagie.com/iText/) to dynamically create a new PDF document, using the original PDF data and then appending more to it. Have this new appended version sent to the client. You could add a footer that says "Distributed to XXXX on XX/XX/XXXX" or something like that.