views:

416

answers:

1

Is it possible to use a server certificate to sign a java web start app? What I want to know is if will it work. I have a trusted certificate for my server, and I would like to reuse the same certificate to sign an app.

Right now, I have this warning: This jar contains entries whose signer certificate's ExtendedKeyUsage extension doesn't allow code signing. This jar contains entries whose signer certificate's NetscapeCertType extension doesn't allow code signing.

Will I be able to launch my app without the warning that the certificate is not trusted?

+1  A: 

You will get warning if you don't use a code signing certificate. For most CA, code signing cert costs more than the server cert. In my opinion, this is just a marketing scheme to make you to pay for another cert. There is no technical difference between two certs. Some CA may provide combo deals with usage for both.

ZZ Coder
I already get a warning when signing the jars. You mean I will get a warning when running the app?
Miguel Ping
You will get a notification when you run the JAR even if you use the correct cert. But you will get a warning on top of that in your case. Unfortunately, most users don't see the difference :(
ZZ Coder
You'll need a real code signing cert. See http://stackoverflow.com/questions/155241/cheapest-java-code-signing-certificate-not-self-signed for great advice on where to obtain them for cheap.
CarlG