javakey

Ortmann, Volker (OrtmannV@lsv-gartenbau.de)
Mon, 17 Aug 1998 14:39:23 +0200

Message-Id: <199808171307.GAA22622@mail.java.sun.com>
From: "Ortmann, Volker" <OrtmannV@lsv-gartenbau.de>
To: "'sun.com@Internet'" <java-security@java.sun.com>
Subject: javakey
Date: Mon, 17 Aug 1998 14:39:23 +0200

Hi,

since a few days I am trying to get access from an java applet to an
informix database. So I have written an applet,
which works in the JDK appletwiewer very well. But if I try it with any
Browser, I only get many security exceptions.

Using the Netscape Communicator 4.5 I get f.e. the following message :

"netscape.security.AppletSecurityException: security.Couldn't connect to
'rm1901' with origin from 'local-classpath-classes'."

I think now I have to "sign" my applet, and import its certificate into my
browser. So I tried the tool JAVAKEY, about which
I've read many documentations ! I followed all the instructions step by
step, but always if I wanted to create a certificate, one
error occurs. I tried the command:

javakey -gc cert_directive_Duke

... and always I got the messages:

"Error parsing issuer.cert number." or "No such cert ... ".

This example I followed step by step, comes from the sun homepage. These are
the instructions, which I followed exactly :

Steps for creating and signing a JAR file, short version
Set up path
% setenv PATH ~/java/bin:$PATH
Create an identity.
% javakey -cs "duke" true
Generate DSA key pair for the identity.
% javakey -gk "duke" DSA 512 duke_pub duke_priv
Generate certificate
Create a cert_directive file (See example, below)
% javakey -gc cert_directive
Create a jar file (syntax is like tar.)
% jar cf demo.jar PhoneServlet.class
Sign the jar file
Create a sign_directive file (See example, below)
% javakey -gs sign_directive demo.jar
The signed jar file will be written to a file named "demo.jar.sig."
Rename this file so that it has the suffix .jar, so that it can be read and
unjar-ed by the applet classloader.
By default, the jar tool doesn't overwrite your original jar file.
% mv demo.jar.sig demo.jar


At this moment I am very disappointed !!! So, please help me, and send me
some step-by-step-instructions,
how to solve my problem !
Thanks a lot, ... bye !