Java 7u51不接受带有自签名证书的JNLP吗？ [英] Java 7u51 will not accept JNLP with self-signed certificate?

问题描述

我在网上看到Java版本7u51（将于2014年1月发布）将不再接受我自签名的Java Webstart应用程序。

I read on the web that Java version 7u51 (to be released in January 2014) will no longer accept Java Webstart applications that are self-signed by me.

这是真的吗？

如果是真的，我是否有机会为我的JNLP应用程序构建一个变通方法，这样我就可以启动应用程序了2014年一月？

In case it is true, do I have any chance to build a workaround for my JNLP application, so that I am able to start the application even after January 2014?

我已经看到在7u40中删除了因使用自签名证书而取消安全警告的选项。

I have seen that the option to suppress the security warnings because of the usage of a self-signed certificate was removed in 7u40.

推荐答案

是的，这是真的。来自Oracle的此博客条目包含详细信息。

Yes, this is true. This blog entry from Oracle has the details.

根据我的理解，你有三种选择继续工作：

As I understand it, you have three options for continuing to work:

1. 用你的应用签名受信任的证书
   
   
   
   
   • 通常，这是通过从供应商，默认情况下，其根证书受Java信任。
   
   
   • 您还可以如果您的用户社区受到控制（例如所有用户），请使用自签名证书一个托管企业网络，或同一个编程课程介绍的所有学生。）
   
   

1. Sign your app with a trusted cert
   • Normally, this is done by acquiring a cert from one of the vendors whose root certs are trusted by Java by default.
   • You can also use a self-signed certificate if your community of users is controlled (e.g. all within a managed corporate network, or all students in the same intro to programming class).

• 来自部署规则集（Oracle的目的是仅在企业环境中使用DRS，您可以通过集中管理技术推出此配置更新）


• 通过例外网站列表（我认为这与DRS类似，但对于没有集中管理的个人最终用户而言）

• via deployment rule sets (Oracle's intention is that DRSs are only to be used in corporate environments, where you can push out this configuration update via a centralized management technology)
• via the exception site list (I believe this is intended to be analogous to DRSes, but for individual end users without centralized management)

另见我的问题关于获取pre-发布这些更新的版本以使用。

See also my question about obtaining pre-release versions of these updates to test with.

这篇关于Java 7u51不接受带有自签名证书的JNLP吗？的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！