Skip to main content
D
Deron Gordon Jr.
Participant
November 11, 2024
Answered

Read Only form fields are still editable by the signer(s)

  • November 11, 2024
  • 1 reply
  • 2339 views

Hello,

 

I'm trying to prep a simple contract to be signed by my client(s). I created a signature field (for myself) that marks all form fields as "read only" except for the signature fields for the client(s). However, when I go through the prompts for the signature requests, the fields that were "locked" show up as being able to edit by "anyone".

 

I know I can use the "prefill" text tag to assign myself, but this created an extra step in the sending process where I have to click "Start" and then "Send". I'd like to avoid this, if possible.

 

Once I sign (before requesting signature), the read only form fields shouldn't be editable by the signer(s), correct? However, they still are. Is there a way around this without using the prefill text tag?

Correct answer MikelKlink

To answer both questions:

 

Yes, I sent the contract to a test email and I was able to edit the fields as a signer.

 

See attached.


Using your test contract file I could reproduced the issue.

 

And the reason for the issue is simple, Adobe Acrobat Sign (at least if used via the Acrobat "Request e-signatures" tool) flattens existing digital signatures.

 

The field locking mechanism you employ essentially adds the information to the AcroForm signature field that once it is signed, the fields with the given names shall be considered locked.

 

But the Request e-signature / Acrobat Sign workflow starts by flattening that AcroForm signature field, i.e. it keeps just the appearance and throws away everything else, in particular the field locking information.

 

You can see that your signature (except the appearance) have been removed by clicking its visualization on the page. In your original file the Signature Validation Status dialog pops up. In the file versions you retrieved back from Adobe Sign it doesn't. Also you can see on the Acrobat Signatures panel that your signature now is missing and only a certification signature from Adobe Acrobat Sign is there.

 

Thus, the fields in the form shown to the client can be freely edited.

 

So when using Adobe Acrobat Sign, make sure that the PDF only contains fields for data the client shall be able to change. Furthermore, also consider including yourself in the Acrobat Sign signers instead of signing locally - as soon as you request e-signature, your former digital signatures are removed and only their visual representation remains and a historical remark on the audit report.

1 reply

MikelKlink
MikelKlink
Participating Frequently
November 11, 2024

Which kind of signing by you and your clients are you talking about exactly? Do you mean signing using locally installed X.509 certificates? Or do you mean signing using the above Acrobat Sign service? 

And how exactly did you prepare the contact PDF? 

Can you share an example before and after you sign for analysis?

D
Deron Gordon Jr.Author
Participant
November 11, 2024

Thank you for your reply. I use Acrobat Pro. I'm using locally installed certificates for my signature. I believe Acrobat uses the Sign service when it is sent for the client(s) signature (at least that's what i see on a properly executed contract).

 

See Attached screenshots. Hopefully this helps. As you can see, when I sign, the fields become read only except for the client signature fields. But when I go to request for signatures, they show as being editable by anyone.

Abambo
Community Expert
AbamboCommunity Expert
Community Expert
November 11, 2024

Did you check that they are modifiable, by modifying them?

ABAMBO | Hard- and Software Engineer | Photographer
    Terms & ConditionsAccessibility statement
    Using the community Terms of use Privacy Cookie preferences Do not sell or share my personal information ad choicesAdChoices