This week's book giveaway is in the OO, Patterns, UML and Refactoring forum. We're giving away four copies of Refactoring for Software Design Smells: Managing Technical Debt and have Girish Suryanarayana, Ganesh Samarthyam & Tushar Sharma on-line! See this thread for details.
I have a signed applet that users access in IE. Most use the Microsoft JVM, and the applet works since it's in a signed cab file. With MS support of Java at an end, users are starting to access this site with a Sun plug-in rather than the MS VM. I created a jar file with the same classes, and followed Thawte's instructions for using an Authenticode certificate to sign jar files. I have the certificate in an external pkcs12 keystore, and I signed the jar files using the jarsigner tool. I can verify the signature, but when I deploy the jar file and switch to the Java plug-in, it acts as if it wasn't signed and is still confined by the sandbox. It prompts the user if they want to accept the certificate, which is valid, but it doesn't grant them any permissions, so it throws a SecurityException because the applet tries to access the file system. I'm wondering if I overlooked something or if I signed the applet incorrectly. I realize this isn't a lot of detail, but I've checked the Sun tutorials, forums, and anywhere else I could think of, but I can't seem to find any ideas about what is wrong. If you need more info or have any ideas, please let me know. TIA, Alex
Joined: Jul 12, 2001