|
The following manifest attributes are available to help ensure the security of the JAR file:
The Trusted-Only attribute is used to prevent untrusted components from being loaded. See Trusted-Only Attribute in the Java RIA Development and Deployment Guide for more information.
The Trusted-Library attribute is used to allow privileged applications to access untrusted components without prompting the user for permission. See Trusted-Library Attribute in the Java RIA Development and Deployment Guide for more information.
The Permissions attribute is used to ensure that the application requests only the level of permissions that is specified in the applet tag or JNLP file used to invoke the application. Use this attribute to help prevent someone from re-deploying an application that is signed with your certificate and running it at a different privilege level. Applications that are deployed without this attribute might not be allowed to run in some circumstances. See Permissions Attribute in the Java RIA Development and Deployment Guide for more information.
The Codebase attribute is used to ensure that the code base of the JAR is restricted to specific domains. Use this attribute to prevent someone from re-deploying your application on another website for malicious purposes. See Codebase Attribute in the Java RIA Development and Deployment Guide for more information.
See Modifying a Manifest File for information on adding these attributes to the manifest file.
|
