参见New security requirements for RIAs in 7u51 (January 2014) .
RIAs must contain two things:
- Code signatures from a trusted authority. All code for Applets and Web Start applications must be signed,regardless of its Permissions attributes.
- Manifest Attributes
Permissions– Introduced in 7u25,and required as of 7u51. Indicates if the RIA should run within the sandbox or require full-permissions.Codebase– Introduced in 7u25 and optional/encouraged as of 7u51. Points to the known location of the hosted code (e.g. intranet.example.com).
关于stackoverflow的另一篇文章,我有同样的担心,证书对内网使用来说是昂贵的.
Sign applet and deploy it in intranet.
我打算开始一个新的内部网项目,我应该放弃对applet的考虑吗?
我所有的内网用户都无法连接外网,他们处于封闭网络,我高度怀疑是否需要签名applet ……?
最佳答案
I am planning to start a new intranet project,should I give up the
consideration on applet?
嗯,是.即使没有Oracles的最新变化,Applet在很长一段时间内都不是一个非常好的技术选择.如果你可以使用其他技术做同样的事情,那通常会更好.
一些原因:
>连续的漏洞流(这就是为什么它应该在浏览器上默认禁用)
>资源密集型
>从网页单独访问(接近插件)
>部署不是很简单
>没有替代品的工具
最严重的原因是漏洞问题,但其他人也发挥作用.
All of my intranet user do not have the ability to connect outside
internet,they are in closed network,I highly doubt the need of
signed applet……?
它是最新版本的java插件中的必需项,因此您无法真正帮助它.
如果您想继续使用applet,请参阅this discussion,了解所需的内容.如果你不这样做,它将无法在最新版本的java上运行.