[RFC] netx: dont prompt the user repeatedly for the same jar certificate
Omair Majid
omajid at redhat.com
Thu Jul 29 12:31:48 PDT 2010
Hi,
The attached patch makes it so the user is not prompted repeatedly to
accept the same certificate when running a JNLP application.
The test case I have used is SweeHome3D [1]. Without the patch, the user
is prompted to accept a certificate by "Emmanuel Puybaret" and then
prompted 3 times to accept certificates from "Sun Microsystems Inc"
With the patch, the user is only prompted 2 times: once for each
certificate publisher.
The updated code keeps a list of certificates the user has accepted.
Before prompting the user, it checks if the user has already trusted the
certificate before.
One thing I am unsure about is where to store the list of temporarily
trusted certificates. VariableX509TrustManager, which handles HTTPS
certificates (but not JAR certificatess) keeps a separate list.
Any comments?
Cheers,
Omair
[1] http://www.sweethome3d.com/SweetHome3D.jnlp
-------------- next part --------------
A non-text attachment was scrubbed...
Name: icedtea6-jnlp-dont-prompt-for-same-jar-certificates.patch
Type: text/x-patch
Size: 4250 bytes
Desc: not available
Url : http://mail.openjdk.java.net/pipermail/distro-pkg-dev/attachments/20100729/6bc27e75/icedtea6-jnlp-dont-prompt-for-same-jar-certificates.patch
More information about the distro-pkg-dev
mailing list