Signing an applet for Netscape and IE

Posted on 2001-06-04
Last Modified: 2010-03-31
I am currently developing a small applet. It needs to be able to create some shortcuts on the client's machine, in the user's Start Menu and Desktop (The applet is intended only for use on Windows machines).

As the applet needs to create files, and access the user.home system property, it needs to be signed, which is where I'm experiencing difficulty.

Originally, I intended to implement the applet for the Java plug in, as I felt that would provide the best cross browser solution. Plus, I'd only have to sign the applet once, for all browsers.

However, as I later discovered, the plug in consists of a 4MB download. Which is basically too large, considering the small size and simple purpose of the applet.

Thus, unless anyone can suggest any better ideas, I'm forced to implement the applet for the internal JVMs offered by IE and Netscape.

So, I have some questions:

1. Would I need to provide two applets, one signed for netscape, and one for IE, or is there a way to sign a 1.1 applet for both browsers?

2. What is the best certificate to use?

3. Can I use the same certificate for both browsers?

4. What software should I use to sign the applet?

5. Can I use Microsoft's Java SDK to sign a Sun applet?

Any information would be great, as I'm really stuck on this one.

Many thanks,

Question by:robbiemorgan
LVL 92

Accepted Solution

objects earned 150 total points
ID: 6154318
Here are a couple of references that might help.

Sorry I couldn't be of more assistance, good luck :)
LVL 14

Expert Comment

ID: 6155015
What Applets Can and Can't Do

How to Sign Java Code

Signed Applet Example

Security and Signed Applets

Creating Signed, Persistent Java Applets

Security and Signed Applets

Signing applets :- 

Code signing resources:

Creating Signed, Persistent Java Applets 



NN: Bypass the need for a certificate
Netscape provides a way to accept a codebase as trusted (then a certificate is not needed). This can
be useful during development or in a private Intranet. In the Netscape Users directory, there is a file
called prefs.js. Adding the line user_pref("signed.applets.codebase_principal_support", true);

will enable JAR file without a certificate to request privileges on your machine. If you agree, it will
be possible for an Applet to lauch a program, write a file on your hard disk or print on the printer.
You will still have to ask for privileges in your program using the Netscape capabilites classes.
Another way is to lower general security setting to more allow more freedom when running applets locally.
Add or modify the following entries in the prefs.js: user_pref("unsigned.applets.low_security_for_local_classes",
user_pref("signed.applets.local_classes_have_30_powers", true);
user_pref("signed.applets.low_security_for_local_classes", true);
user_pref("signed.applets.verbose_security_exception", true);

Then you don't need to asked for privileges for local classes.
When adding or modifying the file prefs.js, Netscape must not be running because your modification will
be overwritten. So shut down Netscape, edit the prefs.js and then restart Netscape.

Running signed applets with the JavaTM Plug-in 




Author Comment

ID: 6171950
Just the ticket :)

Featured Post

On Demand Webinar - Networking for the Cloud Era

This webinar discusses:
-Common barriers companies experience when moving to the cloud
-How SD-WAN changes the way we look at networks
-Best practices customers should employ moving forward with cloud migration
-What happens behind the scenes of SteelConnect’s one-click button

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Java contains several comparison operators (e.g., <, <=, >, >=, ==, !=) that allow you to compare primitive values. However, these operators cannot be used to compare the contents of objects. Interface Comparable is used to allow objects of a cl…
Basic understanding on "OO- Object Orientation" is needed for designing a logical solution to solve a problem. Basic OOAD is a prerequisite for a coder to ensure that they follow the basic design of OO. This would help developers to understand the b…
Viewers will learn about arithmetic and Boolean expressions in Java and the logical operators used to create Boolean expressions. We will cover the symbols used for arithmetic expressions and define each logical operator and how to use them in Boole…
This video teaches viewers about errors in exception handling.

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question