Java Sign jars with server certificate

tags:

views:

416

answers:

1

Q:

Java Sign jars with server certificate

Is it possible to use a server certificate to sign a java web start app? What I want to know is if will it work. I have a trusted certificate for my server, and I would like to reuse the same certificate to sign an app.

Right now, I have this warning: This jar contains entries whose signer certificate's ExtendedKeyUsage extension doesn't allow code signing. This jar contains entries whose signer certificate's NetscapeCertType extension doesn't allow code signing.

Will I be able to launch my app without the warning that the certificate is not trusted?

+1 A:

You will get warning if you don't use a code signing certificate. For most CA, code signing cert costs more than the server cert. In my opinion, this is just a marketing scheme to make you to pay for another cert. There is no technical difference between two certs. Some CA may provide combo deals with usage for both.

ZZ Coder 2009-09-30 11:49:21

I already get a warning when signing the jars. You mean I will get a warning when running the app?

Miguel Ping 2009-09-30 13:10:24

You will get a notification when you run the JAR even if you use the correct cert. But you will get a warning on top of that in your case. Unfortunately, most users don't see the difference :(

ZZ Coder 2009-09-30 14:40:23

You'll need a real code signing cert. See http://stackoverflow.com/questions/155241/cheapest-java-code-signing-certificate-not-self-signed for great advice on where to obtain them for cheap.

CarlG 2009-10-22 03:32:09

ansaurus

tags:

views:

answers:

Java Sign jars with server certificate

related questions