i have some unsigned third party jars.
i wanna use them in an application.
but i don’t want to sign them…
is there any way to launch this application using web start ( any how i will sign the jars i build and i need all-permissions ) ??
Don’t think you can do that, it kinda breaks the point. Those jars could contain potentially damaging stuff and you’re distributing them…
Why don’t you want to sign them exactly?
Kev
the application will be used in-house. so i that the application is not malicious and i can keep the users informed of this.
on the other hand, i don’t want them to be signed because those third party jars are updated by others who may forget to sign it. I know that there are other ways to take care of this but a better way is to avoid signing of these jars.
If you create jnlp files for the third-party jars, they do not need to be signed if they don’t require . This is independent of whether the main app jar is signed. For example, you can have a signed network game app jnlp bundled with an unsigned gage2d jar component-desc jnlp. The other advantage of component-desc jnlp files is that different apps can re-use the same component-desc jars.
as i mentioned earlier, the third party jars do require . Otherwise i would have used them as an extension in the main jnlp file.
then you gotta sign em! Put the process in a batch file, and it’ll take all of like 3 seconds to sign anything whenever you need to.