pkcs11
Thepkcs11 API enables an extension to enumeratePKCS #11 security modules and to make them accessible to the browser as sources of keys and certificates.
To use this API you need to have the "pkcs11"permission.
Using the Firefox Preferences Dialog to Install PKCS #11 Modules
Perform the following steps:
Save the PKCS #11 module to a permanent location on your local computer
SelectTools > Options or select theFirefox menu and thenOptions
Once the Options page opens, selectPrivacy & Security
Scroll down to the bottom of the page and underCertificates click or tap onSecurity Devices…
Click or tap theLoad button
Enter a name for the security module, such as "My Client Database"
Warning:Be careful about using international characters as there is currently a bug in Firefox where international characters may cause problems.
ChooseBrowse… to find the location of the PKCS #11 module on your local computer, and then click or tapOK to confirm.
Provisioning PKCS #11 modules
Note:Starting with Firefox 58, extensions can use this API to enumerate PKCS #11 modules and make them accessible to the browser as sources of keys and certificates.
There are two environmental prerequisites for using thisAPI:
- One or more
PKCS #11modules must be installed on the user's computer - For each installed
PKCS #11module, there must be anative manifest file that enables the browser to locate the module.
Most probably, the user or device administrator would install thePKCS #11 module, and its installer would install the native manifest file at the same time.
However, the module and manifest can't be installed as part of the extension's own installation process.
For details about the manifest file's contents and location, seeNative manifests.
Functions
pkcs11.getModuleSlots()For each slot in a module, get its name and whether it contains a token.
pkcs11.installModule()Installs the named PKCS #11 module.
pkcs11.isModuleInstalled()Checks whether the named PKCS #11 module is installed.
pkcs11.uninstallModule()Uninstalls the named PKCS #11 module.