This may be a stupid question, but I can't figure it out. Here it goes...
Does JRE do verification of signed JARs at runtime? I'm not talking about applets or WebStart, but on plain signed JAR on local disk. What I did is the following: created simple JAR and signed it, then it ran without any problem. After that I messed up some manifest entries and ran it again, also without problems.
So, obviously, JRE does not check signature. Is there some way to force JAR verification at runtime?
I tried with
java -jar -Djava.security.manager -Djava.security.policy=pol.policy synth-test.jar
but still nothing happens. However, I do get a little triangle icon next to frame upper right corner. When I mouse over it, it shows a tooltip "Aplet window". I guess this means I'm close? :-)