Java Web Start & JNLP - disable certificate selector java web start
We are about to deploy an application using web start. In the server.xml file (Tomcat 5.5) we have enabled client authentication. As we understand it, the user has to place the client certificate (which is of type PKCS12) in the java console or in the standard web browser. Is there any way to avoid this step as our clients find it "difficult". In the previous version of our application (applet), where java web start was not used, we had programmatically written a certificate selector to point to a location on the client's local machine, i.e. the certificate did not have to be imported anywhere.
So to sum up, our question is if it is really necessary to import the client certificate into the standard browser for java web start to work with client authentication enabled.
Any help would be greatly appreciated!
[838 byte] By [
olapalomaa] at [2007-11-26 23:27:52]
# 1
We are about to deploy an application using web start.
In the server.xml file (Tomcat 5.5) we have enabled client
authentication. As we understand it, the user has to
place the client certificate (which is of type PKCS12) in
the java console or in the standard web browser
Is this the same sort of certificate as used to
digitally sign code (usually used so that the
application can request permissions normally
denied to a sandboxed app.)? If so, it can be
very easy for the end user, but.. *
...
In the previous version of our application (applet),
where java web start was not used, we had
programmatically written a certificate selector
to point to a location on the client's local machine,
i.e. the certificate did not have to be imported anywhere.
* ..even if that is not the case, you might invoke the
current code you have, that puts the certificate in the
right place, from a web start 'installer'. Installers are
only run once, the first time the application is invoked.
