jarsigner: the signer's certificate is self signed warning
I was publishing an app to the Aptoide app store. They gave me a blank apk to sign it with the same Keystore used in my main app. I signed the app using command and jarsigner.
The app signing is successful but it shows a warning:
the signer's certificate is self-signed
I searched about it but most of the solutions available are for SSL certificate, not apk signing.
tldr; It has no implication for Android apps.
First, you should sign your APK with apksigner instead of jarsigner: apksigner has been created specifically for Android to sign APKs and is far more efficient, while jarsigner was designed to sign any JAR so some of the messages you see don't make much sense in Android world.
To explain this particular message, you have to understand that when creating a certificate (in a keystore), the certificate is cryptographically signed as well. If signed by a "trusted entity", people who see this certificate can verify that the certificate was effectively created by you. However, Android does not verify the signature of certificates (note: it does verify however the signature of the APK), so this signature is useless. Because the certificate needs to be signed, the easiest is to sign it with the private key the certificate was issued from: this is why it's called self-signing.
- Spring Rest Template Put method is void, why?
- How to install ursina on pydroid?
- FileNotFoundException: /storage/emulated/0/Android
- How to Align Items in a Vertical 2-Column Grid Row by the Tallest Item in Jetpack Compose?
- Play Store error message 'To view this content, install and set up a web browsing app'
- How to use aapt2, where is the documentation?
- Identity verification at Google Play for a government org
- Task app:compileDebugJavaWithJavac failed
- How to darken a given color (int)
- React Native: Failed to launch emulator - "The emulator quit before it finished opening"
- Spotify Android SDK authorization only works if Spotify app is active
- bottomSheetDialogFragment full screen
- Execution failed for task ':app:checkDebugDuplicateClasses'. due to Duplicate class com.mapbox.android.core.permissions.PermissionsListener
- TypeError: Cannot read property 'isConfigured' of undefined
- How to grant Android runtime & special permissions on GMD Android Test Device
- CMake add_subdirectory given source which is not an existing directory
- font size is not working when using from html
- How to make an animated splash screen for android app using kivy?
- How to choose only doc,docx files through intent?
- Android Kotlin ARCore GeoSpatial API Type Mismatch Error: Earth? but Earth is Expected
- Type 'State<List<User>?>' has no method 'getValue(Nothing?, KProperty<*>)' and thus it cannot serve as a delegate
- READ_EXTERNAL_STORAGE permission for Android
- Android Studio device list stuck on loading
- Issues with Dagger Hilt and KSP in Android Kotlin Project: Cannot Resolve Symbol ‘Inject’
- Error: (JetPack Compose) Type 'TypeVariable(T)' has no method 'getValue(Nothing?, KProperty<*>)
- How to load Flutter assets in Android
- What are the Material Design dark theme colors?
- Could not find androidx.compose.compiler:compiler:provider(?)
- Attempting to add Google Code Scanner to simple android app. Only example I've seen is ML Kit sample
- Only receive ServerAuthToken with Credential Manager?