Page 2 of 2

Re: [Announcement] New Code Signer tool

PostPosted: Mon Feb 17, 2014 3:02 pm
by ptalbot
The tool is looking for jars on your entire hard disk. I suppose it's because it was launched from /
Try placing the jar in the /application_server/ folder, cd to that folder and launch the tool from there.

Re: [Announcement] New Code Signer tool

PostPosted: Tue Feb 18, 2014 12:22 pm
by rioba
Thanks, problem solved.

Re: [Announcement] New Code Signer tool

PostPosted: Tue Feb 18, 2014 8:31 pm
by ptalbot
I've released a v1.0.1 of the tool, with a packaged CodeSigner7.jar to be used with Java 7.

Re: [Announcement] New Code Signer tool

PostPosted: Tue Feb 18, 2014 8:51 pm
by Hans Nieuwenhuis
Thanks again Patrick.

I tested it and I get some warnings in the cmd box where i started the tool :

Code: Select all
Warning:
No -tsa or -tsacert is provided and this jar is not timestamped. Without a times
tamp, users may not be able to validate this jar after the signer certificate's
expiration date (2015-01-24) or after any future revocation date.


These warnings wher not issued in the previous version.

Regards,

Re: [Announcement] New Code Signer tool

PostPosted: Tue Feb 18, 2014 9:10 pm
by ptalbot
Yep, that's Java 7 being picky. I suppose they'll soon add some more security restriction and I'll see what I can do to workaround that, but for now, you can safely ignore the warnings.

Re: [Announcement] New Code Signer tool

PostPosted: Wed Feb 19, 2014 12:02 am
by ptalbot
I've released a v1.1 which adds Timestamping capabilities, using https://timestamp.geotrust.com/tsa Time Stamping Authority.

It is optional because this will add an extra call to the URL, and thus require internet access and adds a little bit of time to the signing process, so it is not activated by default, but you can check the 'Use TSA' in the preferences to activate it.
You can also provide another TSA URL in the preferences, just note that the Timestamp server must comply with the RFC 3161 protocol and that the TSA must be one of JRE's trusted roots CA (usually your certificate provider should be able to provide you with a TSA URL).

Re: [Announcement] New Code Signer tool

PostPosted: Wed Feb 19, 2014 12:12 am
by Hans Nieuwenhuis
Nice !!

The warnings are gone now.