Hi everyone, Please tell me if I'm not posting on the right forum and where I can find the right place.
I'm writing a script that has to be signed since it needs access to the brother's (firefox 3.0.13) DOM. As far as I know, I need a certificate to sign the script so I generated one with certutils and then used signtools in order to generate a jar containing my script. I used the doc at http://www.mozilla.org/projects/security/components/jssec.html#signedscript to make it work. certutil -N -d sFolder signtool -G certname -d sFolder -p password signtool -d sFolder -k certname -p password -X -Z myOutputJar.jar (generated cert was imported to firefox) When I call it using jar:file:///...myjar.jar!/secure.html the browser opens it, asks for privileges, etc, no problem... BUT jar:HTTP:// localhost/...myjar.jar!/secure.html doesn't. Sometimes after refreshing several times it DOES but that's very unpredictable. Why does the "jar:HTTP://.." call fail? Do you think there is a problem with my certificate (security issue)? Or is there another configuration to do on the server to make it work (and thus where can I find some help concerning it)? I've tried the whole procedure to create root, distributors and signing certificates at : http://books.mozdev.org/chapters/ch12.html#77079 and succeeded in it. But I still can't access my secured scripts through "jar:http://...";! In firebug I've got the response "Failed to load source for: http://localhost/.../secure.jar"; when the jar is accessed. Any idea? Thanks for your help Adrian -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
