Jarsigner

Jarsigner is a tool that allows you to sign and verify .jar files.

Integrate Jarsigner with Sign with SMCTL for simplified signing. Alternatively, you can sign directly with Jarsigner and reference your private key stored in Software Trust Manager.

Sugerencia

Jarsigner is compatible for signing on Windows, macOS, and Linux.

Software Trust Manager supports JDK version 8 to 17.

What can Jarsigner be used to sign?

Use Jarsigner to sign, timestamp, and verify the following file types:

.ear
.jar
.sar
.war

Install Jarsigner

Nota

The Java Development Kit (JDK) includes jarsigner and keytool.

ejemplo 1. Windows

To download the JDK from Oracle:

Navigate to Oracle > JDK 17 > Windows.
Download x64 MSI Installer.
Run the jdk-17_windows_x64_bin.msi file that was downloaded.
Follow the instructions in the wizard to complete the installation.
Sugerencia
Jarsigner.exe should be located in the file path: C:\Program Files\Java\jdk-17\bin.

Alternatively, you can download and install the JDK from OpenJDK.

ejemplo 2. Linux

On Debian and Ubuntu Linux distributions:

Open the Terminal application.
To install Java, run:
```
sudo apt install -y default-jdk
```
To verify the Java version, run:
```
java -version
```

On RHEL, CentOS, and Fedora Linux distributions:

Open the Terminal application.
To install Java, run:
```
yum install java-1.8.0-openjdk.x86_64 
```
To verify the Java version, run:
```
java -version
```

ejemplo 3. macOS

To download the JDK from Oracle:

Navigate to Oracle > JDK 17 > macOS.
Download x64 DMG Installer.
Run the jdk-17_macos_x64_bin.dmg file that was downloaded.
Follow the instructions in the wizard to complete the installation.

Set PATH environment variable

Operating systems use the environment variable called PATH to determine where executable files are stored on your system. Use the PATH environment variable to store the file path to your signing tools to ensure that the CLI can reference these signing tools.

You can set the PATH environment variable to Jarsigner using command line or environment variables.

To set the path to your signing tools:

ejemplo 4. Windows

You can configure the signing tools using command line or environment variables.

To set the path to your signing tools via command line:

set PATH=%path%;<path to signing tool folder>

To set the path to your signing tools for your system or account:

Search for environment variables in the Windows start menu.
Select Edit environment variables for your account or Edit system environment variables.
Double click on the Path variable.
Click New.
Select Browse.
Select the path to the signing tool.
Click OK to save the path.
Click on OK to close the dialog.

ejemplo 5. Linux

To set the path to your signing tools via command line:

Launch the Terminal application.
Open the file in an editor:
```
nano ~/.profile
```
Add any exports definitions you need:
```
export PATH=<Path to Jarsigner>
```
Click CTRL+X to exit.
Click Y to save.
Click Enter to keep the same file name.
Execute the new .profile by restarting Terminal or using:
```
 source ~/.profile
```

ejemplo 6. macOS

To set the path to your signing tools via command line:

Launch the Terminal application.
Create a profile file:
```
touch ~/.zprofile
```
Open the file in an editor:
```
open ~/.zprofile
```
Add any exports definitions you need, such as:
```
export PATH=<Path to Jarsigner>
```
To save the new .zprofile, click File > Save (CMD + S).
Close the terminal window and reopen to use new saved variables.

Download and configure libraries

There are two libraries that Jarsigner integrates with depending on the type of signing you want to do. Identify the type of signing you want to enable and install the associated library.

PKCS11 library

Jarsigner uses a configuration file to integrate with Software Trust Manager PKCS11 library.

Follow these instructions to download Software Trust Manager PKCS11 library and create the configuration file.

KSP library

Jarsigner integrates with Software Trust Manager KSP library to sign.

Follow these instructions to download and register Software Trust Manager KSP library.

Sign with Jarsigner

You can sign directly with Jarsigner or via DigiCert's signing tools integrated with Jarsigner:

ejemplo 7. Sign via DigiCert signing tools

Sign with SMCTL
SMCTL is a command line interface (CLI) that offers simplified signing with Jarsigner.
Sign with DigiCert® Click-to-sign
DigiCert® Click-to-sign is a graphic user interface (GUI) that offers simplified signing with Jarsigner.

ejemplo 8. Sign directly with Jarsigner

En esta sección:

Jarsigner

Sugerencia

What can Jarsigner be used to sign?

Install Jarsigner

Nota

Sugerencia

Set PATH environment variable

Download and configure libraries

PKCS11 library

KSP library

Sign with Jarsigner

Resultados de la búsqueda