[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
Re: [cbi-dev] Configure digestAlgorithm for signing webservice

Hi Dennis,

Despite the CBI jarsigner plugin already supports this option, the currently deployed Eclipse signing webservice does not support it yet.

See bug https://bugs.eclipse.org/bugs/show_bug.cgi?id=483881for the new support in maven plugin and https://bugs.eclipse.org/bugs/show_bug.cgi?id=458597 for the deployment of the new version of the webservice with support for these options.


> Le 16 mars 2016 Ã 15:03, Dennis HÃbner <dennis.huebner@xxxxxxxxx> a Ãcrit :
> Hi all,
> in order to support eclipse indigo [1] I need to set the digest algorithm
> to SHA1 when using eclipse signing service.
> Iâv tried the following:
> <configuration>
> 	<resigningStrategy>DO_NOT_RESIGN</resigningStrategy>
> 	<digestAlgorithm>SHA1</digestAlgorithm>
> 	<signatureAlgorithm>SHA1withRSA</signatureAlgorithm>
> 	<excludeInnerJars>true</excludeInnerJars>
> </configuration>
> ...but it seems to have no effect, the jars still has SHA-256-Digest in MANIFEST.MF .
> Am I doing something wrong, or is SHA1 not supported by the eclipse signing webservice?
> [1] https://bugs.eclipse.org/bugs/show_bug.cgi?id=378155
> Kind regards,
> Dennis HÃbner
> _______________________________________________
> cbi-dev mailing list
> cbi-dev@xxxxxxxxxxx
> To change your delivery options, retrieve your password, or unsubscribe from this list, visit
> https://dev.eclipse.org/mailman/listinfo/cbi-dev

Attachment: signature.asc
Description: Message signed with OpenPGP using GPGMail