Jean-Marc Desperrier wrote:
Jean-Marc Desperrier wrote:
The current Mozilla expects *XPI* files to have this form to be signed.
There's usually a jar inside the xpi, but the samples in http://www.mozilla.org/projects/xpinstall/signed/testcases/index.html have the signature on the xpi, not on the jar, so it seems I'm right the two case are really seperated.
Well they are and arent. It all depends on the developer. Some like to have a JAR file for all the content of the package others like the google toolbar extension just have all the files in the XPI file. From what I saw in the code it doesn't care if the files in a JAR contained in the XPI are signed, it only cares that all the listed files within the XPI are signed.
Jeff Klawiter _______________________________________________ mozilla-crypto mailing list [EMAIL PROTECTED] http://mail.mozilla.org/listinfo/mozilla-crypto
