New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Code signing not working #387
Comments
At first glance I would say that maven is not configured to use the right JDK. What does |
Maven home: /Users/k.beckers/Library/Application Support/JetBrains/Toolbox/apps/IDEA-U/ch-0/211.7142.45/IntelliJ IDEA.app/Contents/plugins/maven/lib/maven3
Java version: 1.8.0_292, vendor: Azul Systems, Inc., runtime: /Library/Java/JavaVirtualMachines/zulu-8.jdk/Contents/Home/jre
Default locale: en_NL, platform encoding: UTF-8
OS name: "mac os x", version: "10.16", arch: "x86_64", family: "mac"
Process finished with exit code 0 I had to run it in intellij because that's what i always do. |
IntelliJ, as far as I am aware, brings its own JRE, but maven needs some JDK. I'm using Netbeans (hehe) but I encountered that more often that users were not aware of the bundled JRE of IntelliJ making "big surprises" sometimes. Regarding the AZUL JDK, I'm not yet testing with other JDKs .... I'm kinda working on getting back to JDK-development in the background (with my local gitlab instance), will take that on my "todo"-list. |
Hmm, after talking it over with a coworker, it seems that we don't actually have a valid code-signing certificate (i was under the impression that we did). Using jarsigner i've verified that that jars weren't actually signed, however i'm not sure if that can distinguish between a self-signed certificate or an unsigned jar. |
Despite of jarsigner, you could look into the generated JAR-file, if the signing-files inside the META-INF folder do exist. |
@K-4U Did you get the chance to check for the signature inside the generated JAR-files? Meanwhile I am trying to get some |
I tried using a Will wait until some feedback from our side. |
We've been running the javafx-maven-plugin for a while now, but due to some problems with me having to update java on my new laptop... i couldn't get javafx running anymore, let alone webstart.
Eventually managed to get webstart sorta running, but it doesn't work with the application we use.
I found openwebstart, which is based on icedtea-webstart.
However, your maven plugin doesn't play well with it.
The issue is that "proper" jnlp requires an application-desc tag, rather than an fx:app-desc.
That's easily fixed.
My main concern at this moment is that the plugin says that it's signing all the jars (dependencies) but openwebstart (and jarsigner) say they haven't.
My configuration is as follows, although i honestly have no idea anymore how i generated the keystore. it's been a while:
I've been trying loads of things, so this isn't how we used to have it, but i feel there's barely any change to what it does now.
The logs however still do show:
Any insight you can give me to what i'm doing wrong would be really amazing. Thank you in advance :)
The text was updated successfully, but these errors were encountered: