Aspirant
Reputation: 1954
Sign jar with certificate but without private key
I have a basic question about signing a jar file with a provided certificate. I have a certificate(.pem file) that I wish to use to sign a jar. I do not have its private key.
The command that I used till now is: jarsigner -keystore /working/mystore -storepass <keystore password> -keypass <private key password> -signedjar sbundle.jar bundle.jar test. Is there a way to sign the jar without the private key?
Upvotes: 2
Views: 1699
Answers (1)
Maarten Bodewes
Reputation: 93968
No, by definition you need the private key to sign, that's the whole idea. You cannot sign with just the public certificate containing the public key, you can only verify with it.
Upvotes: 5
Related Questions
- Java Sign jars with server certificate
- jarsigner: The signer’s certificate chain is not validated
- How do I force jarsign to sign jarfiles?
- Error with signing jar files using jarsigner with a real certificate
- How to verify a jar signed with jarsigner programmatically
- Verify and Sign a Jar programmatically
- sign a Jar file
- Can I sign JAR files using existing certificate in certificate store?
- How to verify signature on self signed jar?
- How can I verifiy signed JARs with pure Java?