All my jars are signed properly (commodo), the manifest files have all been updated with the new All-Permissions and other attributes and all <property> names in JNLP file are prefixed by ".jnlp" and (finally!) in the main jar i have included a JNLP-INF/APPLICATION-TEMPLATE.jnlp.
My JNLP is generated by a servlet but as I have read on these forums that the wildcard stuff in the APPLICATION-TEMPLATE.jnlp is a bit flaky (especially for <property> tags) then I decided to first make a direct copy of a generated jnlp file and put that in the main .jar before signing. So the .jnlp file I click on is exactly the same as the one in the .jar - no wildcards. The idea being I would then add wildcards and re-test and work out what I could and couldn't wildcard in the APPLICATION-TEMPLATE.jnlp .
But even with an identical signed .jnlp file I still get the uknown Publisher and not signed .jnlp file warning.
Everytime the client clicks the .jnlp file (or desktop shortcut after first install) they get this harrowing warning (and more worrying for me as a developer a warning of more web start angst to come in the future).
What do I need to do to get rid of this? Has anyone managed to get a web start app that requires <all-permissions> to run under 7 u45 without any warning on any operating system?