Menu
I've compiled my applet, created a jar file, generated a keystore db with keytool, signed the jar with jarsigner, and exported the public key cert with keytool.
Now when I run my applet in the browser it does work, after prompting me if I'm sure I want it to run.
The problem is it says "Publisher: UNKNOWN" in the box. Is there anyway I can set that to my alias, since I coded the applet?
319
Digitally sign JARs with jarsignerCreate a JAR file with Java's JAR utility. Create public and private keys with Java's keytool. Export the server-side digital certificate with the keytool. Use the jarsigner tool to sign the JAR file digitally.
You use the JAR Signing and Verification Tool to sign JAR files and time stamp the signature. You invoke the JAR Signing and Verification Tool by using the jarsigner command, so we'll refer to it as "Jarsigner" for short. To sign a JAR file, you must first have a private key.
Signing a jar file, just like using certificates in other contexts, is done so that people using it know where it came from. People may trust that Chris Carruthers isn't going to write malicious code, and so they're willing to allow your applet access to their file system.
A 'self signed' certificate is not worth the bits it is written on. If you can make a certificate that claims it is you, I can just as easily forge one.
That is why the JRE lists the publisher as 'unknown'. It does not matter who they claim to be, it is ignored unless the certificate has been verified by a trusted authority.
91
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
