博主遇到的问题是,自从上次Java更新后,其签名的Java Applet出现了新的安全警告,提示应用程序将在未来的Java安全更新中被阻止,原因在于JAR文件的清单缺少Permissions属性。解决方案是不需要购买证书,只需修改manifest文件,添加'permissions: all-permissions'或根据需求添加'permissions:sandbox'行。
I have a Java Applet which needs access to the local filesystem of the client. I have created a simple certificate for my own (it is NOT certified by Verisign,Commodo, ...). I signed the jar with the following template:
del \Users\koalabruder\.keystore
"C:\Program Files\Java\jdk1.7.0_45\bin\keytool" -genkey -alias %1 -keypass kp -dname "cn=inin" -storepass ab987c
"C:\Program Files\Java\jdk1.7.0_45\bin\jarsigner.exe" -storepass abc -keypass kp %2 %1
"C:\Program Files\Java\jdk1.7.0_45\bin\keytool" -export -storepass abc -alias %1 -file %3
The simple security warning that I have "no signed certificate" has been in existence for years and is not my problem.
My problem is, that the security warning changed because one of the last Java updates:
This application will be blocked in a future Java security update because the JAR file manifest does not contain the Permissions attribute. Please contact the Publisher for more Information.
What does it mean? How can I fix it? Do I have to buy a certificate? Do I have to fix the Manifest (MANIFEST.MF)? What is the Permission attribute?
Update: Here is my Manifest from the jar file
Manifest-Version: 1.0
Ant-Version: Apache Ant 1.8.4
Application-Name: inin
Permissions: all-permissions
Created-By: 1.7.0_45-b18 (Oracle Corporation)
Name: net/inin/transfer/ul/UlPanel.class
SHA-256-Digest: asdfasddddddddddddddddddddddddddddddddd=
解决方案
You don't need to buy a certificate, just fix the manifest file.
Add this line:
permissions: all-permissions
Or this line if you need only limited access:
permissions: sandbox
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
