Name: pa48320 Date: 06/03/2002
I am reporting this againt Java Web Start 1.2. This version is not
yet available at the partner site for bug filing.
If a user wants to use "https" to download jar files and subsequently
use the "https" to connect to the server, he/she has to import
the certificate to the client manually first. Otherwise en exception
would be raised like "certificate is not found in the keystore and
can not be trusted".
If a browser encounters https site and finds the certificate is not
in it's keystore, it imports the certificate and asks the user if it
can be trusted. It will be put in the keystore if the user trusts it.
We want similar kind of dynamically importing certificates in Java
Web Start. Otherwise it is practically very difficult to deploy
our application for large no. of users who want to use https as
the method of communication between the client and the server.
(Review ID: 148160)