Uploaded image for project: 'Maven Shared Components'
  1. Maven Shared Components
  2. MSHARED-303

Jar Signer does not support protected authentication path

    XMLWordPrintableJSON

Details

    • Task
    • Status: Closed
    • Major
    • Resolution: Fixed
    • maven-jarsigner-1.0, maven-jarsigner-1.1
    • maven-jarsigner-1.2
    • None
    • None

    Description

      The jarsigner tool has an option "-protected" (see http://docs.oracle.com/javase/6/docs/technotes/tools/windows/jarsigner.html#Options, documentation for option -storetype): a PCKS#11 token may have a protected authentication path (such as a dedicated PIN-pad or a biometric reader). In such case the -protected option must be specified and no password options can be specified.

      The current version does not support this option. Please find patches for maven-jarsigner-1.0 and maven-jarsigner-plugin (Version 1.3-SNAPSHOT) attached.

      Testcases are left out because a pin reader, a PCKS#11 smart card and human interaction would be necessary to test this scenario. However, the patched version works fine in my environment.

      Attachments

        Issue Links

          is depended upon by

          Bug - A problem which impairs or prevents the functions of the product. MJARSIGNER-26 Jar Signer does not support protected authentication path

          • Major - Major loss of function.
          • Closed

          Activity

            People

              tchemit Tony Chemit
              tchemit Tony Chemit
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: