How to update existing encrypted Tomcat Applications

The strucutre of Tomcat application generated by Protector4J

After using Protector4J to process your application, a complete Tomcat runtime environment will be output in the output folder. You can use the or startup.bat script in the bin directory to run the Tomcat program as in the past. Our customized version JRE is also in the bin directory, you can find a vlxjre folder there.


You can also find your application in the webapps directory, but the original WEB-INF/classes folder no longer exists. This is because in order to protect your application architecture so that external users cannot even obtain the name information of the class, we have packaged the content of WEB-INF/classes into WEB-INF/vlxapp.jar, which is a jarx format, It is the newly introduced format in Protector4J 2.0.

How to update existing applications

You may want to be able to update existing applications directly, without outputting a full Tomcat runtime environment each time


Protector4J will request a random and unique key from the server for every encryption task, and since the key is different for each task, the encrypted jar files obtained from different tasks cannot be used together. Therefore, we provide a KeySeed feature, the same KeySeed will generate the same key, and the jar files encrypted under the same KeySeed can be used together. Currently KeySeed is only available for licensed users.

Updating an existing tomcat application

1. Specify a KeySeed when generating the application for the first time

2. Select the war or jar file that needs to be updated and check “Only Encrypt Jar Files”

3. Specify the same KeySeed on the output page

4.Check the output folder and copy the newly generated application directory to webapps