M
Matthijs Blaas
Hi All!
I found that it's possible to replace a cached applet by another one and run
that new applet instead of the original one
I decompiled my cached applet, changed some things, recompiled it and
renamed it to the cached name again (Test.jar-3eaeec54-5a78075f.zip). What I
though & hoped was that the JVM would detect that the cached file had
changed compared to the original one at the webserver (by checking the hash
3eaeec54-5a78075f). Obviously thats not the case. I was thinking signing the
jar file might just do the trick? Or would that simply throw the user an
warning message that the content doesnt match the signed hash?
Anyway I have a couple more questions concerning (signed) applets:
1.) If I sign my applet will this always popup a warning to the user asking
if they trust it (even if I use a real certificate)?
2.) Is there any way of making an unsigned applet instanciate a class file
from another jar? (I have a loader class that needs to load a library jar
and a game jar which uses that library). The loader needs to excecute the
game from the gamejar, this game needs methods from the library so it needs
to be in its classpath... I thought I needed to have a classloader to do
this. Currently Im doing this without the loader: I put all the jars in the
archive param (so the AppletClassLoader will tell the game where to find
them?). This works ok, but if I want to download the game jar & library jar
from the loader, is there a way I can start the game in an unsigned applet?
3.) Is it possible to cache files I download in my applet?
I'd greatly appreciate if anyone could help me with any of these questions!
I found that it's possible to replace a cached applet by another one and run
that new applet instead of the original one
I decompiled my cached applet, changed some things, recompiled it and
renamed it to the cached name again (Test.jar-3eaeec54-5a78075f.zip). What I
though & hoped was that the JVM would detect that the cached file had
changed compared to the original one at the webserver (by checking the hash
3eaeec54-5a78075f). Obviously thats not the case. I was thinking signing the
jar file might just do the trick? Or would that simply throw the user an
warning message that the content doesnt match the signed hash?
Anyway I have a couple more questions concerning (signed) applets:
1.) If I sign my applet will this always popup a warning to the user asking
if they trust it (even if I use a real certificate)?
2.) Is there any way of making an unsigned applet instanciate a class file
from another jar? (I have a loader class that needs to load a library jar
and a game jar which uses that library). The loader needs to excecute the
game from the gamejar, this game needs methods from the library so it needs
to be in its classpath... I thought I needed to have a classloader to do
this. Currently Im doing this without the loader: I put all the jars in the
archive param (so the AppletClassLoader will tell the game where to find
them?). This works ok, but if I want to download the game jar & library jar
from the loader, is there a way I can start the game in an unsigned applet?
3.) Is it possible to cache files I download in my applet?
I'd greatly appreciate if anyone could help me with any of these questions!