Dynamically adding JRE for IE, Java Security Warnings, & Next Gen Plugin.

I wrote an portal application to control the environment for a third party application, the portal uses a JRE version that I supply with it, this was to ensure that users are using the same JRE so any issues can be limited to one version of Java. The only piece of the application that I could not specify the JRE version and path was for Internet Explorer. Please keep in mind that I do not control when the system JRE is updated or not, this is pushed to our systems and the latest JRE would be enabled automatically. I wanted to be able to dynamically add and enable the version of the JRE that Microsoft Internet Explorer uses for applets. So I was digging around recently and if I have the next-generation plugin enabled I could programmatically update the deployment.properties file prior to launching Internet Explorer(assuming I have closed all prior instances of IE that were running) to add and enable a version of the JRE which I choose to use. When I launch IE and run an applet I see that it is using the JRE I had dynamically supplied. However everytime I run the applet a Java security warning comes up saying "The application requires an earlier version of Java", I wanted to suppress this message but after research I tried adding 'deployment.security.mixcode=HIDE_RUN' to the deployment.properties, that did not work. I tried disabling the Next Generation Plugin, that worked to suppress the message however internet explorer was no longer using my dynamically supplied JRE for applets in IE, so that was not going to work for my purposes. My questions are:
1. Is there a reliable way(not using ssvagent) to programmatically enable and disable Java's Next Generation Plugin option? (I want to make sure it is enabled when launching third party application from the portal)
2. Is there a programmatic way to suppress the Java Security Warning "The application requires an earlier version of Java", without disabling Java's Next Generation Plugin option?
deployment.properties entries after addition of my jre entry:
#deployment.properties
#Fri Sep 28 14:09:24 PDT 2012
deployment.javapi.lifecycle.exception=true
deployment.trace=true
deployment.javaws.viewer.bounds=323,144,720,360
deployment.javaws.autodownload=NEVER
deployment.version=6.0
deployment.browser.path=C\:\\Program Files (x86)\\Internet Explorer\\iexplore.exe
deployment.security.mixcode=HIDE_RUN
deployment.log=true
deployment.console.startup.mode=SHOW
deployment.capture.mime.types=true
#Java Deployment jre's
#Fri Sep 28 14:09:24 PDT 2012
deployment.javaws.jre.0.registered=true
deployment.javaws.jre.0.platform=1.6
deployment.javaws.jre.0.osname=Windows
deployment.javaws.jre.0.path=C\:\\Program Files (x86)\\Java\\jre6\\bin\\javaw.exe
deployment.javaws.jre.0.product=1.6.0_33
deployment.javaws.jre.0.osarch=x86
deployment.javaws.jre.0.location=http\://java.sun.com/products/autodl/j2se
deployment.javaws.jre.0.enabled=false
deployment.javaws.jre.0.args=
deployment.javaws.jre.1.enabled=true
deployment.javaws.jre.1.registered=true
deployment.javaws.jre.1.osname=Windows
deployment.javaws.jre.1.location=http\\\://java.sun.com/products/autodl/j2se
deployment.javaws.jre.1.osarch=x86
deployment.javaws.jre.1.path=C\:\\Portal\\dist\\java\\jre6\\bin\\javaw.exe
deployment.javaws.jre.1.platform=1.6
deployment.javaws.jre.1.product=1.6.0_29
Note: The reason not to use most recent version of Java is the necessity to test the third party application prior to deployment of a new Java version and since I do not control when a new version of Java is deployed and enabled to our machines, I am required to find an transparent solution. I understand the security issues by doing so, but the time between testing and acceptance of a new Java version for our application is within an acceptable timeframe. On exiting the application, I would restore the JRE settings and restore previous settings, to minimize the exposure of a potential security risk. Also any manual configurations are trying to be avoided as to maintain transparency to the user.

I'm having a similar problem and I think it is related with this.
If, after a Java--->Javascript call, a Javascript--->Java call isn't made soon after the first, it works. But, if the Java--->Javascript call triggers a Javascript--->Java call, any Java--->Javascript call that is made after that doesn't reach Javascript :/
I have a method that handles the Java--->Javascript calls and goes something like this:
System.out.println("Calling Javascript...");
JSObject win = JSObject.getWindow(this);
win.call(jsEventHandler, new Object[] { json.toString() });
System.out.println("Done.");I further found out that, after looking at the Java debug console in the scenario where a Java--->Javascript call triggers a Javascript--->Java call, only after this last method returns is the "Done" message printed, even though the respective Javascript call was already invoked.
Could you explain in more detail the queue based solution you found? Any other ideas?
Regards,
André Tavares.

Similar Messages

  • JRE msi - how to disable next-gen plugin ?

    Is anyone familiar with a method to modify the JRE 6u13 msi's tables such that the next-generation plugin (and auto-update if possible) are disabled? Thanks for your time and attention in advance.

    btenney,
    Thanks very much for your suggestion. Can you explain what the parameters are on the ssvagent.exe that you noted -high -jpisetup -old? I can't seem to find any information on the parameters. Also, will this set the configuration just for the user logged on (current user) OR for all users existing and future?
    We are having trouble getting next-gen java shut off for all possible users that may logon to a machine in future .. thus looking at putting in bootup login script, but hoping there is a better way to have it take affect at the machine level. Or to at least automate at the user level (existing and future windows users/profiles)

  • Dynamically creating policies for Row-level security (RLS)

    Hi everybody,
    I’m looking for suggestions on how to configure Row-level security (RLS).
    I have a large number of tables (about 500) and about 100 database users. Each user must see a portion of the data, filtered on a specific field. The field used to filter the data is a Client Id (let’s assume for simplicity that this field is present in all tables and has the same name everywhere).
    Some users must be able to see just one client, other users must be able to see a group of clients, and some other users must be able to see all the clients. The association between Users and Client Id’s is stored in separate database tables.
    I’d like to avoid having to manually create a policy for each table, so I’m looking for a solution that makes use of pl/sql programs to create policies dynamically.
    Has anybody already implemented anything similar? Can you share your approach? Of course I’m looking for the easiest / most robust / most flexible way to implement this.
    Andrea

    It sounds like you would want a single policy function and that you would then apply that policy function to all 500 tables (at least given the simplifying assumptions you make in your question). If your policy function simply returned the `WHERE` clause
    client_id IN (
        SELECT client_id
          FROM table_mapping_user_to_client
         WHERE user_id = <<something that identifies the current user>> )Then you would simply apply that policy to all the tables
    FOR x IN (SELECT * FROM dba_tables WHERE <<condition to find the 500 tables>>)
    LOOP
      dbms_rls.add_policy(
        x.owner,
        x.table_name,
        'Restrict by client_id', -- name of policy
        <<owner of function above>>,
        <<name of function above>> );
    END LOOP;Justin

  • Alternative to set  "java.security.auth.login.config" ?

    In all examples of using JASS, it uses the following way.
    System.setProperty("java.security.auth.login.config", fileName)
    Is there a way I can specify the policies in code, not in a file? That way I don't have to worry about file permissions.
    p.s. Thanks for Seema-1 who anwsered my last question.
    Message was edited by:
    maqiang9111

    Has anyone done the same thing for the java.security.krb5.conf setting? I tried setting it using the same form of URL that I use for java.security.auth.login.config, and I get this error when the kerberos code attempts to use it:
    Could not load configuration file jar:file:\C:\dev\workspace\myapp\client-data.jar!\krb5.ini (The filename, directory name, or volume label syntax is incorrect)
    The corresponding login context conf file in the same jar loads fine.

  • Java.security.ProviderException: Internal error: lose session with active o

    Our ap server is crashing unexpectedly after running for a period of time. The system is Solaris 10 and Sun App Server 8.1 EE.
    The stack trace is:
    java.security.ProviderException: Internal error: close session with active objects
         sun.security.pkcs11.SessionManager.closeSession(SessionManager.java:197)
         sun.security.pkcs11.SessionManager.access$000(SessionManager.java:48)
         sun.security.pkcs11.SessionManager$Pool.release(SessionManager.java:253)
         sun.security.pkcs11.SessionManager.releaseSession(SessionManager.java:155)
         sun.security.pkcs11.Token.releaseSession(Token.java:245)
         sun.security.pkcs11.P11SecureRandom.engineNextBytes(P11SecureRandom.java:98)
         java.security.SecureRandom.nextBytes(SecureRandom.java:413)
         java.security.SecureRandom.next(SecureRandom.java:435)
         java.util.Random.nextInt(Random.java:188)
         com.sun.enterprise.util.uuid.UuidUtil.getNextInt(UuidUtil.java:142)
         com.sun.enterprise.util.uuid.UuidUtil.getNextRandomString(UuidUtil.java:146)
         com.sun.enterprise.util.uuid.UuidUtil.generateUuid(UuidUtil.java:50)
         com.sun.enterprise.util.uuid.UuidGeneratorImpl.generateUuid(UuidGeneratorImpl.java:25)
         org.apache.catalina.session.ManagerBase.generateSessionId(ManagerBase.java:993)
         org.apache.catalina.session.ManagerBase.createSession(ManagerBase.java:796)
         org.apache.catalina.session.StandardManager.createSession(StandardManager.java:292)
         org.apache.coyote.tomcat5.CoyoteRequest.doGetSession(CoyoteRequest.java:2365)
         org.apache.coyote.tomcat5.CoyoteRequest.getSession(CoyoteRequest.java:2202)
         org.apache.coyote.tomcat5.CoyoteRequestFacade.getSession(CoyoteRequestFacade.java:838)
         javax.servlet.http.HttpServletRequestWrapper.getSession(HttpServletRequestWrapper.java:265)
         com.localmatters.mvc.web.filter.AptasServletRequestWrapper.getSession(AptasServletRequestWrapper.java:184)
         com.localmatters.mvc.web.filter.AptasServletRequestWrapper.getSession(AptasServletRequestWrapper.java:170)
         com.aptas.etosha.web.handler.ExceptionResolver.getModelAndView(ExceptionResolver.java:76)
         org.springframework.web.servlet.handler.SimpleMappingExceptionResolver.resolveException(SimpleMappingExceptionResolver.java:174)
         com.aptas.etosha.web.handler.ExceptionResolver.resolveException(ExceptionResolver.java:96)
         org.springframework.web.servlet.DispatcherServlet.processHandlerException(DispatcherServlet.java:915)
         org.springframework.web.servlet.DispatcherServlet.doDispatch(DispatcherServlet.java:739)
         org.springframework.web.servlet.DispatcherServlet.doService(DispatcherServlet.java:663)
         org.springframework.web.servlet.FrameworkServlet.processRequest(FrameworkServlet.java:394)
         org.springframework.web.servlet.FrameworkServlet.doGet(FrameworkServlet.java:348)
         javax.servlet.http.HttpServlet.service(HttpServlet.java:747)
         javax.servlet.http.HttpServlet.service(HttpServlet.java:860)
         com.aptas.etosha.filters.InterceptorFilter.doFilter(InterceptorFilter.java:56)
         org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:137)
         com.localmatters.mvc.web.filter.AbstractSpiderFilter.doFilter(AbstractSpiderFilter.java:94)
         org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:137)
         com.localmatters.mvc.web.filter.EtoshaFilter.doFilter(EtoshaFilter.java:107)
    Any help most welcome
    Thanks
    Mikebros

    This issue seems like either a JDK bug or a JVM bug. Do you see any hs_err_pidxxxx.txt files created when appserver gets crashed? If so this is a JVM bug. You could try to upgrade your appserver's jdk to the latest version - 1.5.0_09 and/or ask for help in Java security related forum.

  • Added support for Nokia 6300

    I have just added support for the new Nokia 6300 to my plugins.
    You can get it and others free here www.s60themes.co.uk

    Hi Paul
    thanks very much. I've installed the plug-ins from your site and it works great. Now isync can recognise my Nokia 6300 and sync it with no problem.
    one question though, I was able to send text messages from address book by right clicking using bluetooth with my 6300, but I can't receive text messages on my Mac screen. My question is can you receive sms on your Mac with your 6300?
    MacBook Pro   Mac OS X (10.4.9)  

  • Difference in JRE 1.6.0_14 Classic Plug-in & JRE 1.6.0_14 Next Gen Plug-in

    Using the "Next Gen Plug-in", when a method argument is passed as a "blank" from Javascript to Java, it is treated as NULL in Java, whereas if we use "Classic Plug-in", there is no change to the argument value and a blank argument is always treated as a blank in Java.
    This "Next Gen Plug-in" is causing problem in our Application as "blank" value is treated as NULL when passed from javaScript to Java, thus throwing Null Pointer Exception.
    Any idea to come out of this...

    Our Application is standalone browser based (IE 6.0) application which communicates between JavascScript to Java using Applet. Below is the code snippet which gives problem when passing a blank value from java script to Java using Next Gen Plug-in -
    JavaScript code -
    var state = document.PrimaryInsured.DeliveryState.value;
    The above code takes the value from a dropdown into variable 'state' and then calls the below Java method GetMaxJuvenileAge() with string parameter-
    var juvenileAge = GetEALifeJavaUtils().GetMaxJuvenileAge(state);
    Java code -
    public int GetMaxJuvenileAge(String state)
    if(state.equals("ABC"))
    return 15;
    else
    return 16;
    Now when variable state is blank (e.g. "") in javaScript and same is passed to java method then, java method take this value as blank when use 'Classic Plug-in' which is correct.
    However when use 'Next Gen Plug-in' value comes in Java as null and we get null pointer exception in java.
    We checked in javaScript that value is blank (not null) as state.length returns 0. So please help me in resolving this...

  • For a signed applet am getting java.security.PrivilegedActionException:

    I have a signed applet,now for testing it's a self signed applet.
    It used for adding files using JFilechooser.
    It works fine in my machine with JRE version 1.5.0_12 .
    In other machines having jre version with 1.5 onwards it's working fine.
    But one problem am facing now is ,whenever we call a method in applet
    thorugh javascript it is giving security error . This problem comes only when the applet is running in some other machine having a diff jre (in that system the applet loads well,problem comes only when we access any applet method from a javascript).
    Is it due to the diff of java enabled in javascript (at client browser) and in applet (when complied and created the singed jar )
    bellow shows part of the error.
    java.security.PrivilegedActionException: java.lang.reflect.InvocationTargetException
    at java.security.AccessController.doPrivileged(Native Method)
    at sun.plugin.liveconnect.SecureInvocation$2.run(Unknown Source)
    at java.security.AccessController.doPrivileged(Native Method)
    at sun.plugin.liveconnect.SecureInvocation.CallMethod(Unknown Source)
    Caused by: java.lang.reflect.InvocationTargetException
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
    at java.lang.reflect.Method.invoke(Unknown Source)
    at sun.plugin.javascript.JSInvoke.invoke(Unknown Source)
    at sun.reflect.GeneratedMethodAccessor5.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
    at java.lang.reflect.Method.invoke(Unknown Source)
    at sun.plugin.javascript.JSClassLoader.invoke(Unknown Source)
    at sun.plugin.liveconnect.PrivilegedCallMethodAction.run(Unknown Source)
    ... 4 more
    Caused by: java.security.AccessControlException: access denied (java.io.FilePermission C:\Documents and Settings\dnixon\My Documents\photos\astro1.jpg read)
    at java.security.AccessControlContext.checkPermission(Unknown Source)
    at java.security.AccessController.checkPermission(Unknown Source)
    at java.lang.SecurityManager.checkPermission(Unknown Source)
    at java.lang.SecurityManager.checkRead(Unknown Source)
    at java.io.File.exists(Unknown Source)
    Please any one help.
    thanks in advance
    It's very urgent

    [http://forums.sun.com/thread.jspa?forumID=421&threadID=5308353]

  • Java.security entry for login module configuration

    I am running JAAS-Example from SUN with Tomcat.
    When I am creating an object in my servlet by LoginContext = lc = new LoginContext(�SampleLoginModule�); getting *�cannot create Logincontext. Unable to locate a login configuration�* Exception.
    Before that i am doing below setting:
    In JAVA_HOME/jre/lib/security/java.security I am defining login.config.url.1=file:${java.home}/lib/security/jaas.config
    After that I put �jaas.config� file at ${java.home}/lib/security/
    Jaas.config
    ===========
    SampleLoginModule {
    sample.module.SampleLoginModule required debug=true;
    Do anybody have solution for my this problem,why I am getting this error?
    Thanks for your help and understand !!!

    Hi,
    We also experienced that limitation when a vendor is connecting to our XI SOAP Sender Adapter. It is asking for basic username/password. What we did was to create a Generic XI user with a password on it and use SSL authentication at the same time. Our Scenario was PI --> XI --> SAP R3, with the PI system using an HTTP RFC destination with a Basic Logon and Active SSL option to connect to the same system as yours https://host:portnumber/XISOAPAdapter/MessageServlet
    Let me know if this helped...
    Regards,

  • A Short Recipe for Creating a secure Java Webserver

    This is a short note describing how I was able to implement a Java server on a secure website. I am writing this because I hope the rest of you will be able to navigate the SSL minefield more easily than I was able to do.
    I want to thank Brad Wetmore and Sean Mullan in the Sun Microsystems Java Security group. Without their help, I would never have been successful.
    For more detailed reading, see http://java.sun.com/javase/6/docs/technotes/tools/solaris/keytool.html#EXAMPLES
    1. Generate a public/private keypair and certificate for a webserver using keytool. The name of my product is FIRMS (Fully Integrated Resort Management System). You will see "firms" a lot in what follows. Fill in your own data under the "-dname" parameter. Note that if you run keytool so that it prompts you for this information, the first thing keytool will ask you to provide is your First Name and Last Name, although this field is also referred to as the Common Name. In SSL/TLS, the Common Name is the hostname of the website you'll be setting up. It probably would have been better if keytool had prompted for "Common Name" instead of First Name and Last Name. Just keep this in mind if you go through the keytool prompts. If you use the "-dname" parameter, as I have done here, you will not have to go through keytool's prompts. Also, note that the "-dname" information I provided is for a very small business, not a larger corporation.
    keytool -genkeypair -alias firms -keyalg RSA -dname "cn=www.firmsglobal.com, ou=FIRMSGlobal, o=James Morris, l=Scottsdale, st=Arizona, c=US" -keystore foo
    2. Generate a CSR (Certificate Signing Request).
    keytool -certreq -alias firms -file firmsglobal.csr -keystore foo
    3. Send the CSR to a trusted Certificate Authority (CA). I used GoDaddy. When the CA website asks you to provide a key, open the ".csr" file, copy it, and paste it into the website text area. Be sure to copy and paste the entire ".csr" file. Depending on the CA you are using, they will ask you what kind of server you are using. In most cases, choose "other". It really doesn't matter. Be absolutely sure you save the keystore file "foo". Back it up. Whatever you do, do not modify it or delete it. Save it. Got that?
    4. Eventually the CA will provide you with one or more "reply" files ending (most likely) in ".cer" or ".crt". You might have to go into a repository to get the right "cross" files and "intermediate" files.
    5. You must import the files provided by the CA back into your original keystore file. Remember that file? That is the one you saved. Above, I called it "foo".
    6. Use the following keytool commands to import the files back into your original keystore file "foo". My CA provided me with 1 root file, 1 cross file, and 1 intermediate file, as well as my "real" certification file, which is called "www.firmsglobal.com.crt". Look again in step 1 above. Note that I used the alias "firms" to generate the public/private keypairs. You must use the same alias when you import the "real" certification reply file from the CA into the keystore file "foo". Note that I can use any alias name I wish on the first three lines below, but the fourth line is the command that will replace the self-signed certificate I generated in step 1 with the "real" certification reply file from the CA. The alias used in the fourth line must always match the alias used in step 1. Note that it might not always be necessary to perform lines one through three.
    keytool -importcert -alias root -trustcacerts -keystore foo -file valicert_class2_root.cer"
    keytool -importcert -alias cross -trustcacerts -keystore foo �file gd_cross_intermediate.cer"
    keytool -importcert -alias intermed -trustcacerts -keystore foo -file gd_intermediate.cer"
    keytool -importcert -alias firms -trustcacerts -keystore foo -file "www.firmsglobal.com.crt"
    7. Here is the Java code I use to read the keystore. The string "keystore" holds the name of the keystore file. The string "keystorepass" is a char[] that holds the keystore password. The string "keypassword" is a char[] that holds the private key password. I might have these two passwords reversed. I used the same password for the keystore and the private key, but this is not recommended.
    try {
          KeyStore ks = KeyStore.getInstance("JKS");
          ks.load(new FileInputStream(keystore), keystorepass);
          KeyManagerFactory kmf = KeyManagerFactory.getInstance("SunX509");
          kmf.init(ks, keypassword);
          SSLContext sslcontext = SSLContext.getInstance("SSLv3");
          sslcontext.init(kmf.getKeyManagers(), null, null);
          SSLServerSocketFactory ssf = sslcontext.getServerSocketFactory();
          sslServerSocket = (SSLServerSocket) ssf.createServerSocket(securePortNumber);
    } catch (Exception e) {
          handleSocketException(e,"Server cannot listen on port ",securePortNumber);
    };

    Whenever the user selects a file, you can call the setCurrentDirectory method on the JFileChooser, with the getParentFile() method to return the directory of the selected file.
    For example :
    JFileChooser chooser = new JFileChooser();
    if (chooser.showOpenDialog(null) == JFileChooser.APPROVE_OPTION) {
       File f = chooser.getSelectedFile();
       if (f.isFile()) {
           chooser.setCurrentDirectory(f.getParentFile());

  • Java update (3 days ago) won't let me play yahoo games anymore.  I've tried moving java security to Medium and adding web address as "permissive use".  Still nothing.  I'd really like a fix.   Really, apple?  What's your beef with yahoo games?

    Installed Java update three days ago.  Now, can't play yahoo games as it's now blocked by security settings.  Already have tried moving Java security to Medium and adding yahoo.games.com (including web address of game) as a "Permissive exception".   Also tried removing java and installing older version.  Still nothing.  Really Apple?!?  What's your beef with yahoo games? 

    csnorth,
    all of the older update versions of Java SE 7 can be found here. If 7u45 also didn’t work with your Yahoo! games, you can choose from any of the even older versions there as well.

  • Java Security Model for Web Apllication Security

    Hi,
    Any one can tell me about Java Security model used in web site protection. what are th eAPI's used to implement this model on Websites.
    I am keen to know only about the Authentication and Authorization secutiry.
    Thanks,
    Vivek

    Hi Ram, thanks for reply. I appreciate your comments.
    This is a very interesting topic because we need to know how much flexibility we have in order to apply security policies to our services. After all, SOA is about flexibility (with appropriate level of control), isn't it? :-P
    Option 1 (WSDL files) is a reasonable one. We could create "views" of the same service using ESB. But I'm concerned if this approach ("Security Oriented Views" of a service) can lead to difficulties in operational governance and appropriate discovery and reuse of the service.
    Option 2 is also something to be concerned, as we could end up designing "Security Oriented Architecture" :-P
    Option 3 (Customization through OAM) is also reasonable, but I don't know if this is really possible to achieve since OAM is mostly related to web resources. It would be nice if we had a chance to implement this in WSM instead.
    Denis
    Message was edited by:
    [email protected]
    Message was edited by:
    [email protected]

  • HT1338 There is a lot of talk about the Java security issues and the ability to download a patch fix, do i need to do this or will software update pick this up for me?

    There is a lot of talk about the Java security issues and the ability to download an apple patch fix, do i need to do this or will software update pick this up for me?

    Thanks for that, how do I establish if I have Java installed as on Safari preferences it indicates the following
    Web content - Enable Java
                        - Enable JavaScript

  • MII Workbench and java security Issue for jdk7

    Hello all,
    I am using MII version 12.2.2 Build(234) and java version jdk7.
    Now,I am not able to open or create a transaction in workbench.
    In java console, an error is shown below:
    AWT-EventQueue-0 [ERROR] - java.lang.ExceptionInInitializerError
         at com.sap.lhcommon.expressioneval.ExpressionLoader.<clinit>(ExpressionLoader.java:282)
         at com.sap.xmii.bls.expressioneval.TransactionFunctions.<clinit>(TransactionFunctions.java:27)
         at com.sap.xmii.xacute.editors.common.FunctionsComboBox.createBox(FunctionsComboBox.java:45)
         at com.sap.xmii.xacute.editors.common.FunctionsComboBox.<init>(FunctionsComboBox.java:39)
         at com.sap.xmii.xacute.editors.transaction.dialogs.linkeditor.LinkEditorPanel.createExpressionEditorPanel(LinkEditorPanel.java:1033)
         at com.sap.xmii.xacute.editors.transaction.dialogs.linkeditor.LinkEditorPanel.initialize(LinkEditorPanel.java:316)
         at com.sap.xmii.xacute.editors.transaction.dialogs.linkeditor.LinkEditorPanel.<init>(LinkEditorPanel.java:198)
         at com.sap.xmii.xacute.editors.transaction.dialogs.linkeditor.LinkEditorBottomPanel.<clinit>(LinkEditorBottomPanel.java:28)
         at com.sap.xmii.Illuminator.gui.workbench.core.TransactionInfo.initDisplay(TransactionInfo.java:353)
         at com.sap.xmii.Illuminator.gui.workbench.core.TransactionInfo.createNewFile(TransactionInfo.java:149)
         at com.sap.xmii.Illuminator.gui.workbench.components.actions.actions.NewAction.createFileInfoObject(NewAction.java:194)
         at com.sap.xmii.Illuminator.gui.workbench.components.actions.actions.NewAction$1.construct(NewAction.java:115)
         at com.sap.lhcommon.gui.ThreadCreator$2.run(ThreadCreator.java:96)
         at java.lang.Thread.run(Unknown Source)
    Caused by: java.security.AccessControlException: access denied ("java.lang.RuntimePermission" "accessClassInPackage.sun.security.action")
         at java.security.AccessControlContext.checkPermission(Unknown Source)
         at java.security.AccessController.checkPermission(Unknown Source)
         at java.lang.SecurityManager.checkPermission(Unknown Source)
         at java.lang.SecurityManager.checkPackageAccess(Unknown Source)
         at sun.misc.Launcher$AppClassLoader.loadClass(Unknown Source)
         at java.lang.ClassLoader.loadClass(Unknown Source)
         at com.sun.jnlp.JNLPPreverifyClassLoader.loadClass0(Unknown Source)
         at com.sun.jnlp.JNLPPreverifyClassLoader.loadClass(Unknown Source)
         at com.sun.jnlp.JNLPPreverifyClassLoader.loadClass(Unknown Source)
         at java.lang.ClassLoader.loadClass(Unknown Source)
         at java.lang.ClassLoader.loadClass(Unknown Source)
         at com.sap.lhcommon.expressioneval.functions.DecodeFunction.<clinit>(DecodeFunction.java:83)
         ... 14 more
    I also modified the 'java.policy' file. But it did not work. I am still getting the same error.
    Kindly advise..
    Thanks,
    Ritwika.

    I do not yet know the security implications of doing what I did to fix this issue, but here is my solution.
    I added the following to the jre7 java.policy file in the section "grant {":
    permission java.lang.RuntimePermission "accessClassInPackage.sun.security.action";

  • TZupdater for the Java Runtime Environment for jdk/jre 1.6

    B"H
    Hi,
    I need the TZupdater for the Java Runtime Environment for 1.6, unfortunately the only one that I can find on the Oracle/Java site is :
    Java Time Zone Updater Tool 1.3.57
    The TZUpdater tool is to enable an Oracle JDK 7 or JRE 7 user to patch their installation with the most recent timezone data
    Can someone please point me to the relevant link for JDK 6 or JRE 6
    Thank you in advance
    Yechezkel

    Hello Yechezkel,
    You download any version from this link
    Timezone Data Versions in the JRE Software
    This gives the JRE Update Release release and the corresponding TZUpdater Version
    Regards,
    Debbie

Maybe you are looking for

  • Exception when starting sun studio

    when am starting sun studio, it is giving an error message (exception)-java.lang.out of memory error : java heap space. i cant able to start sun studio. What will do...? Thanks in advance vinod

  • Weird error with AFP shares

    Hi everyone, I am using an OS X 10.8.5 Server with mostly 10.6.8 Clients. The clients usually open, save, copy to and from AFP shares provided by the server. Sometimes it happens that a client gets thrown out of a folder it is currently viewing on th

  • SWF's and Flash Lite

    Hi there, I have a question in regards to development......The swf's that are produced, do they have to be run in the browser environment of the mobile or can they be run just stand-alone...In other words, the user uploads the swf into their mobile h

  • Graphics Tool set to use in our Windows Application

    I know I am most likely in the wrong forum, but I am unsure where to post. I am looking for information about using Fireworks or Photoshop type tools in our companies application. Licensing them or using open source graphics tools such as Paint Brush

  • WLS patching

    I went to your post and the docs on OTN, I don't see anywhere mentioned about backing up the WLS home before patching. Basically, in my env, I have several WLS servers; however, I only had one server to go to MOS to get and downloaded the patches and