Signs JAR files with the jarsigner command line tool. It will take a named file in the jar attribute, and an optional destDir or signedJar attribute. Nested filesets are also supported; here only an (optional) destDir is allowed. If a destination directory or explicit JAR file name is not provided, JARs are signed in place.
Dependency rules
| Attribute | Description | Required |
| jar | the jar file to sign | Yes, unless nested filesets have been used. |
| alias | the alias to sign under | Yes. |
| storepass | password for keystore integrity. | Yes. |
| keystore | keystore location | No |
| storetype | keystore type | No |
| keypass | password for private key (if different) | No |
| sigfile | name of .SF/.DSA file | No |
| signedjar | name of signed JAR file. This can only be set when the jar attribute is set. | No. |
| verbose | (true | false) verbose output when signing | No; default false |
| internalsf | (true | false) include the .SF file inside the signature block | No; default false |
| sectionsonly | (true | false) don't compute hash of entire manifest | No; default false |
| lazy | flag to control whether the presence of a signature file means a JAR is signed. This is only used when the target JAR matches the source JAR | No; default false |
| maxmemory | Specifies the maximum memory the jarsigner VM will use. Specified in the style of standard java memory specs (e.g. 128m = 128 MBytes) | No |
| preservelastmodified | Give the signed files the same last modified time as the original jar files. | No; default false. |
| Attribute | Description | Required |
| fileset | fileset of JAR files to sign. | No |
| mapper | A mapper to rename jar files during signing | No, and only one can be supplied |
<signjar jar="${dist}/lib/ant.jar"
alias="apache-group" storepass="secret"/>
signs the ant.jar with alias "apache-group" accessing the keystore and private key via "secret" password.
Copyright © 2000-2005 The Apache Software Foundation. All rights Reserved.