API specificities for the QES level
Find here the specificities related to the Qualified Electronic Signature (QES).
Signature Requests with QES level have intrinsic security and compliance constraints. They must hence follow these rules:
- There can be only 1 field of type
signature
per Signer and Document to sign. - Signers must be ordered (use
ordered_signers : true
on Initiate Signature Request). Note that this holds true even when there is only one Signer in the Signature Request. Learn more about signers ordering. - All Signers must use the same signature level
qualified_electronic_signature
(you can omit the fieldsignature_authentication_mode
or set it asnull
). Refer to Set the signature level for an API call example. - The signing flow cannot be iFramed. This limitation is linked to security constraints around identity verification. You should instead use redirect URLs to set up your signature user journey. Learn more about redirecting signers.
Updated 3 months ago