Signs JAR files with the jarsigner command line tool. It will take a named file in the jar attribute, and an optional destDir or signedJar attribute. Nested filesets are also supported; here only an (optional) destDir is allowed. If a destination directory or explicit JAR file name is not provided, JARs are signed in place.
Dependency rules
When checking signatures, the actual signatory itself is not verified. This means that "lazy" checks do not work if a JAR is signed by multiple authors.
| Attribute | Description | Required |
| jar | the jar file to sign | Yes, unless nested filesets have been used. |
| alias | the alias to sign under | Yes. |
| storepass | password for keystore integrity. | Yes. |
| keystore | keystore location | No |
| storetype | keystore type | No |
| keypass | password for private key (if different) | No |
| sigfile | name of .SF/.DSA file | No |
| signedjar | name of signed JAR file. This can only be set when the jar attribute is set. | No. |
| verbose | (true | false) verbose output when signing | No; default false |
| internalsf | (true | false) include the .SF file inside the signature block | No; default false |
| sectionsonly | (true | false) don't compute hash of entire manifest | No; default false |
| lazy | flag to control whether the presence of a signature file means a JAR is signed. This is only used when the target JAR matches the source JAR | No; default false |
| maxmemory | Specifies the maximum memory the jarsigner VM will use. Specified in the style of standard java memory specs (e.g. 128m = 128 MBytes) | No |
| preservelastmodified | Give the signed files the same last modified time as the original jar files. | No; default false. |
| Attribute | Description | Required |
| fileset | fileset of JAR files to sign. | No |
<signjar jar="${dist}/lib/ant.jar"
alias="apache-group" storepass="secret"/>
signs the ant.jar with alias "apache-group" accessing the keystore and private key via "secret" password.
Copyright © 2000-2005 The Apache Software Foundation. All rights Reserved.