Hi Kim,
Have made the ‘mistake’ to go with this global sign option last year.
There’s really no way to use the code signer with the USB token.
The only way to sign jar files is manually through command-line as described in their documentation (and only on one of your local machines), which is basically undoable for all jars.
An easier way would be to start using Servoy’s bootstrap.jar, which requires only 1 jar file to be signed (the bootstrapper is the only file that will be checked by Java webstart, all the other files can do without code signing or even a mixture of signatures). Still have to do it manually, but at least it’s only 1 file.
Using bootstrap will make you solution initial download a bit faster as well, but your users will need to launch the solution in a slightly different way.
https://wiki.servoy.com/pages/viewpage. … d=23856169
If you don’t want to go this way at all, try to return the USB token and start using a certificate through ‘Sectigo’ (previously Comodo).
They will deliver a certificate ‘on disk’, which only requires a bit of conversion to turn it into a java keystore.
Probably not the news you were waiting for on the weekend, but hope it helps to decide what’s best for you.