Re: Code signing WAR and verification

2017-02-14 Thread Mark Thomas
On 14 February 2017 13:55:33 GMT+00:00, ramnar wrote: >Is this feature implemented in tomcat 8 or still in pipeline https://bz.apache.org/bugzilla/show_bug.cgi?id=52489 Mark - To unsubscribe, e-mail:

Re: Code signing WAR and verification

2017-02-14 Thread ramnar
Is this feature implemented in tomcat 8 or still in pipeline -- View this message in context: http://tomcat.10.x6.nabble.com/Code-signing-WAR-and-verification-tp5053711p5060436.html Sent from the Tomcat - User mailing list archive at Nabble.com

Re: Code signing WAR and verification

2016-08-09 Thread Stefan Mayr
Am 09.08.2016 um 19:48 schrieb Mark Thomas: On 09/08/2016 18:29, Stefan Mayr wrote: Hi, two colleagues came with an idea that our new java platform should only run signed code. In the java world I've only seen signed java applets. From a bit of internet research it looks like any JAR, WAR or

Re: Code signing WAR and verification

2016-08-09 Thread Mark Thomas
On 09/08/2016 18:29, Stefan Mayr wrote: > Hi, > > two colleagues came with an idea that our new java platform should only > run signed code. In the java world I've only seen signed java applets. > From a bit of internet research it looks like any JAR, WAR or EAR can be > signed with jarsigner

Code signing WAR and verification

2016-08-09 Thread Stefan Mayr
Hi, two colleagues came with an idea that our new java platform should only run signed code. In the java world I've only seen signed java applets. From a bit of internet research it looks like any JAR, WAR or EAR can be signed with jarsigner (maybe all zip files?). Some sources indicate