Documenso
ConfigurationSigning Certificate

Timestamp Server

Configure timestamp servers and signature appearance for document signing.

Timestamp servers add a trusted timestamp to signatures, proving when the document was signed. This enables Long-Term Validation (LTV) and archival timestamps.

Environment Variable

VariableDescription
NEXT_PRIVATE_SIGNING_TIMESTAMP_AUTHORITYComma-separated list of timestamp authority URLs

Configuration

NEXT_PRIVATE_SIGNING_TIMESTAMP_AUTHORITY=http://timestamp.digicert.com,http://timestamp.globalsign.com/tsa/r6advanced1

Free Timestamp Servers

ProviderURL
DigiCerthttp://timestamp.digicert.com
GlobalSignhttp://timestamp.globalsign.com/tsa/r6advanced1
FreeTSAhttps://freetsa.org/tsr
Sectigohttp://timestamp.sectigo.com

Timestamp servers add latency to the signing process. Each server in the list is tried in order until one succeeds.

Benefits of Timestamping

  • Proves when the document was signed
  • Signature remains valid after certificate expiration
  • Required for some compliance standards
  • Enables long-term archival

Signature Appearance

Contact Information

Set contact information embedded in PDF signatures:

NEXT_PUBLIC_SIGNING_CONTACT_INFO=support@example.com

If not set, defaults to your NEXT_PUBLIC_WEBAPP_URL.

Legacy Signature Format

For compatibility with older PDF readers, use the legacy signature subfilter:

NEXT_PRIVATE_USE_LEGACY_SIGNING_SUBFILTER=true
SubfilterDescriptionDefault
ETSI.CAdES.detachedModern CAdES-based signaturesYes
adbe.pkcs7.detachedLegacy PKCS#7 signaturesNo

Use the legacy format only if recipients report compatibility issues with older software.

On this page

Environment VariableConfigurationFree Timestamp ServersBenefits of TimestampingSignature AppearanceContact InformationLegacy Signature Format