Posted by gouessej on
URL: https://forum.jogamp.org/code-signing-cert-expired-tp4036295p4036546.html

This is the kind of thing I do at work and it has worked flawlessly for several years but you need to be 100% sure that absolutely all JARs mentioned in a single JNLP file use the same "trusted" certificate. Moreover, you need to remove the existing signature files (RSA and DSA files). Personally, I prefer making a single fat JAR with the correct information, the correct manifest with the mandatory attributes especially about the permissions, the application name, etc.