Re: packaging an applet

Jan Luehe (luehe@laguna.eng.sun.com)
Thu, 8 Oct 1998 14:24:16 -0700 (PDT)

Steve:

> Now, I'm giving the researchers a copy of my source code along with my
> compiled, signed jar file. I am also giving them a copy of my
> .java.policy file so they know how to configure their policy file.
>
> What else do I send them then? Do I export the certificate for this so
> they can import it into their keystore?

Yes, your researchers need to import your signer certificate
into their keystore. If you want them to use your policy
without any modifications, they need to import your signer
certificate under the same alias that is referenced in your
policy.

> They should be able to run the
> applet and possibly be able to recompile and resign it as well. Any
> thoughts ...

Note that in order to resign a jar file, you need not recompile it.
You can simply resign it with the "jarsigner" command in the same
fashion as if it were signed for the 1st time.

Jan