Deployment of an infobus applet : access denied
When I deploy my program, I get the following errors after the
data login dialog:
Access denied (java.net.Socket Permission "hostname" resolve)
My applet try to read/write via an infobusdataform on the server
hostname
Thanks
null
Hi!
I solved the problem!
I got this messages because I used thr oracle14 - driver. This driver was already signed and i tried to sign the whole program again...
Thats it!
I just used another driver, which isnt signed... easy but effective!
Similar Messages
-
Applet access denied with Tomcat 4.1.29 -- Plz Help
I searched for answers in the forum and used the jarsigner to certify an applet that uses Oracle thin driver. Modified the catalina.policy to:
grant {
permission java.security.AllPermission;
permission java.net.SocketPermission "127.0.0.1:1024-", "accept, connect, listen, resolve";
}; I am still seeing this error:
access denied (java.net.SocketPermission 127.0.0.1:1521 connect, resolve)PLEASE HELP
MurthyThanks for the clarification! I created a java.policy file on the client. I'm now seeing null pointer for the connection variable. BTW, on the client I saved the java.policy at $HOME and the policy tool says it can't find it!!!
-
Problems deploying a simple Infobus Applet
Hi,
I am testing the infrastructure required to build an Infobus
Applet for our Web-based application using the Business Component
Framework in JDeveloper 3.0.
I have created a simple project based on the Scott schema, which
uses the Java Business Object framework to define Entity Objects,
Views, etc. for the Dept and Emp tables.
I have then created, using the Wizard, an Infobus Data Form to
create a master-detail Applet to display Employees within a
Department based on the above mentioned View Object. This works
fine when running within JDeveloper3.
However, when I try to deploy the applet to our Oracle
Application Server as a simple HTML file and JAR file (not using
EJB, etc. as we currently only have OAS 4.0.7.1 - waiting for OAS
4.0.8 to be available for download), the applet fails to start.
I have installed the Java Plug-in 1.2.2 from Sun as documented as
I'm using Swing controls.
After much frustration with the online 'Help', I managed to
create a deployment profile which included the appropriate
archives (See Packaging Source and Deployment Files in Help -
still refers to 'Rules' and 'Sources' pages ala JDeveloper 2 NOT
3.0).
Using the Console feature of the Java Plug-in, I was able to see
the progress of the Applets classes being loaded. It gets to the
point where it's trying to load the ResTable classes in
dacf.zip as found in the path:
oracle\dacf\control\swing\find
At this point, it just stops and nothing else happens.
Do I need to explicitly localize my Infobus Applet because I'm in
the United Kingdom and my PC has that as it's Regional Setting?
That is, do I need to define a ResTable_en_GB version of this
class?
Also, in attempting to create a localized version, I had errors
with JDeveloper stating that the text for the FIND_HELP_MESSAGE
exceeds the limit of JDeveloper (meaning that it's too long and I
needed to replace it with a shorter string). Could this be the
problem in the first place?
I have not been able to get the Applet to get beyond this point,
although I'm still trying the localization to Great Britain.
I know this is already a LONG email, but here is an extract from
the Java Console after which nothing else happens:
CacheHandler file name: null
Opening
http://dell_server.wsp.co.uk:4005/oracle/dacf/control/swing/find/
ResTable_en.properties no proxy
Opening
http://dell_server.wsp.co.uk:4005/oracle/dacf/control/swing/find/
ResTable_en.properties with cookie
"SITESERVER=ID=8e93834f82ef0710b78e5a4b087d6eed".
Regards
Gene Schneider
nullParameter passing in EJB must implement Serializable. One way to solve this is:
1. Define a new class which implements
Serializable.
2. Place whatever you want to pass inside
this class.
3. Now use the new class as your parameter.
eg.
public class Params implements java.io.Serializable {
String p1;
XmlDocmuent xdoc;,
etc, etc
Your program now have to use the class Params for parameter passing.
Hope this helps.
Tam
null -
InfoBus applet deployment steps
It seemed that some "users" have had success with the deployment
of the InfoBus applet, can someone be kind enough to post the
steps / process, ie to share their success stories
thanks in advance
nullMake sure below :
1.Only contain the application's class files,XML file,and
connection.properties file in your .jar file.
2.Distribute .jar file with runtime libaries for Infobus applet:
class111.zip,connectionmanager.zip,dacf.zip,infobus.jar,
javax_ejb.zip,jbomt.zip,jboremote.zip,jndi.jar,
jdev-rt.zip,swingall.jar,xmlparser.jar
3.Try your applet with IE browser.
null -
Applet Error:java.security.AccessControlException: access denied
Hi,
I just successful deploy an business component project to oralce 8.1.6 as an EJB Session bean, and
the test of application module is successful. In the same workspace, I create an new project with
an applet(which contains only an grid control)as a client of the business component. Everything works
fine within the Applet viewer, however, when I trying to load the applet in IE5.5 I got the following
error message in java console:
Java(TM) Plug-in
Using JRE version 1.2.1
User home directory = D:\Documents and Settings\ERic
Proxy Configuration: no proxy
JAR cache enabled.
Failed to query environment: 'access denied (java.util.PropertyPermission jbo.debugoutput read)'
Diagnostics: Silencing all diagnostic output (use -Djbo.debugoutput=console to see it)
Failed to query environment: 'access denied (java.util.PropertyPermission jbo.logging.show.timing read)'
Failed to query environment: 'access denied (java.util.PropertyPermission jbo.logging.show.function read)'
Failed to query environment: 'access denied (java.util.PropertyPermission jbo.logging.show.level read)'
Failed to query environment: 'access denied (java.util.PropertyPermission jbo.logging.show.linecount read)'
Failed to query environment: 'access denied (java.util.PropertyPermission jbo.logging.trace.threshold read)'
Failed to query environment: 'access denied (java.util.PropertyPermission jbo.jdbc.driver.verbose read)'
java.lang.ExceptionInInitializerError: java.security.AccessControlException: access denied (java.util.PropertyPermission org.omg.CORBA.ORBClass read)
at java.security.AccessControlContext.checkPermission(Compiled Code)
at oracle.aurora.jndi.orb_dep.Orb.<clinit>(Orb.java:24)
at oracle.aurora.jndi.sess_iiop.sess_iiopURLContext.<clinit>(sess_iiopURLContext.java:9)
at javax.naming.spi.NamingManager.getURLObject(NamingManager.java:588)
at javax.naming.spi.NamingManager.getURLContext(NamingManager.java:537)
at javax.naming.InitialContext.getURLOrDefaultInitCtx(InitialContext.java:274)
at javax.naming.InitialContext.lookup(InitialContext.java:349)
at oracle.jbo.client.remote.ejb.aurora.AuroraEJBAmHomeImpl.connectToService(AuroraEJBAmHomeImpl.java:179)
at oracle.jbo.client.remote.ejb.aurora.AuroraEJBAmHomeImpl.createSession(AuroraEJBAmHomeImpl.java:152)
at oracle.jbo.client.remote.ejb.aurora.AuroraEJBAmHomeImpl.initRemoteHome(AuroraEJBAmHomeImpl.java:123)
at oracle.jbo.client.remote.ejb.aurora.AuroraEJBAmHomeImpl.<init>(AuroraEJBAmHomeImpl.java:59)
at oracle.jbo.client.remote.ejb.aurora.AuroraEJBInitialContext.createJboHome(AuroraEJBInitialContext.java:47)
at oracle.jbo.common.JboInitialContext.lookup(JboInitialContext.java:72)
at javax.naming.InitialContext.lookup(InitialContext.java:349)
at oracle.dacf.dataset.SessionInfo._createAppModule(SessionInfo.java:2330)
at oracle.dacf.dataset.SessionInfo.connect(SessionInfo.java:1799)
at oracle.dacf.dataset.SessionInfo.openProducerObject(SessionInfo.java:1848)
at oracle.dacf.dataset.ProducerObject.open(ProducerObject.java:94)
at oracle.dacf.dataset.SessionInfo.publishSession(SessionInfo.java:1305)
at oracle.dacf.dataset.SessionInfo.publishSession(SessionInfo.java:1287)
at broadcastapplet.myBroadCastApplet.init(myBroadCastApplet.java:70)
at sun.applet.AppletPanel.run(Compiled Code)
at java.lang.Thread.run(Thread.java:479)
The Oracle 8.1.6 runs on Win2000, I put the JAR & related zip files in the same machine's IIS webserver.
Is anyone can help?
ERicHi Shaji,
Are you calling a webservice from within an Xacute Query for your applet? On first glance, it looks like a web service call is being rejected due to security permissions. If you have a webservice call (or HTTP post/get), can you test it separately with the same credentials as the webpage is using?
Regards,
Mike -
I'm trying to embed a Java program called ImageJA [http://pacific.mpi-cbg.de/wiki/index.php/ImageJA] into a webpage. I'm using ASP.NET with XHTML 1.0. Since I'm embedding it as an object in the html code, it should not cause any issues from that end. Unforunately, when I try I get an error saying "java.security.AccessControlException: access denied (java.util.PropertyPermission jnlp read)". The weird thing is, there is no jnlp file anywhere (including the .jar and codebase).
I'm able to run it successfully if I change the permissions in my java.policy file, but that solution only works for my local machine.
The .jar file (the only one) has been signed (I believe). I followed the steps as suggested [http://download.oracle.com/docs/cd/E17476_01/javase/1.4.2/docs/guide/plugin/developer_guide/rsa_signing.html], with the exception of contacting VeriSign/Thawte (I wish to have this be self signed).
This seems like a very odd issue to me, and I'm running out of hair. Can anyone help?
Here's my html code:
<html xmlns="http://www.w3.org/1999/xhtml" >
<head runat="server">
<title>Untitled Page</title>
</head>
<body>
<form id="form1" runat="server">
<div>
<object
classid = "clsid:8AD9C840-044E-11D1-B3E9-00805F499D93"
codebase = "[http://java.sun.com/update/1.5.0/jinstall-1_5-windows-i586.cab]"
width="500" height="500">
<param name = "code" value = "ij.ImageJApplet.class" />
<param name = "codebase" value = "ImageJA" />
<param name = "archive" value = "ij-1.44a.jar" />
<param name="type" value="application/x-java-applet;jpi-version=1.4.2" />
<param name="scriptable" value="true" />
</object>
</div>
</form>
</body>
</html>
Edited by: Sythion on Jul 13, 2010 2:19 PMSythion wrote:
I'm trying to embed a Java program called ImageJA [http://pacific.mpi-cbg.de/wiki/index.php/ImageJA] ..
I suggest you take up the problem through the [channels suggested by the API developers|http://pacific.mpi-cbg.de/wiki/index.php/Help:Contents]. -
Access Denied error while opening the deployed Application
Hi,
When I try to open my deployed application I get the following error:
weblogic.net.http.SOAPHttpsURLConnection
Im using the following code in my application:
URL wsURL = new URL(wsLocation + "?command=login");
So I went ahead and changed my code to this:
java.net.URL wsURL = new URL(null, wsLocation + "?command=login",new sun.net.www.protocol.https.Handler());
But I got the following error:
access denied (java.lang.RuntimePermission accessClassInPackage.sun.net.www.protocol.https)
Also I believe sun.* packages are not supported anymore on cloud. I think it might be because of this it failed the second time.
Is there any workaround for this?
Regards,
AbhishekAccess denied indicates the user account uploading the file doesn't have access to the library, or sometimes it means there's already a document in the library with the same name that was never checked in. It's also possible that your template contains
custom code that tries to do something that is not allowed.
Kind regards,
Margriet Bruggeman
Lois & Clark IT Services
web site: http://www.loisandclark.eu
blog: http://www.sharepointdragons.com -
We deployed a SharePoint hosted app then used it for a while then we needed to upgrade it to be provider hosted app.
we used the same AppID and name with the new package then uploaded the package to the app catalog.
the old app in the site contents now has a note that there is a newer version and prompts to upgrade.
the upgrade fails with access denied even for site collection administrator.
is there really some permission issue or the upgrade can't be done?
We are volunteers, if the reply help you mark it as your answer. thanks!!Hi,
According to your post, my understanding is that you got access denied error when upgrade the SharePoint hosted app to provider hosted app.
How did you upgrade a SharePoint hosted app to a provider hosted app?
They are two different type apps, why not just create a new provider hosted app?
To create a provider hosted app, we should create a certificate that is used as “security token issuer”.
There are two articles about creating provider hosted high trust app, you can have a look at them.
http://blog.karstein-consulting.com/2013/01/08/create-provider-hosted-high-trust-app-for-sharepoint-2013-short-guide/
http://msdn.microsoft.com/en-us/library/fp179901.aspx
What’s more, there is an topic about the troubleshooting tips for SharePoint high trust app, you can refer to it.
http://blogs.technet.com/b/speschka/archive/2012/11/01/more-troubleshooting-tips-for-high-trust-apps-on-sharepoint-2013.aspx
Thanks & Regards,
Jason
Jason Guo
TechNet Community Support -
File read access denied for signed applet
Hi:
I have a signed applet with a certificate generated with the keytool. Yet, I keep getting this error:
java.lang.Exception: java.security.AccessControlException:
access denied (java.io.FilePermission C:\WINDOWS\system32\aetpkss1.dll read)The error is produced when the method loadKeyStore(pin) below is called.
private KeyStore ks;
private Provider provider;
private static final String providerName = "PKCS11";
private static final String providerLibrary = "aetpkss1.dll";
public void loadKeyStore(String pin) throws IOException,
CertificateException, KeyStoreException, NoSuchAlgorithmException {
if (provider == null)
registerProvider(providerLibrary);
try {
ks = KeyStore.getInstance(providerName,provider);
} catch (Exception e) {
throw new KeyStoreException("Failed get keystore instance\n"
+ e.getMessage());
try {
ks.load(null, pin.toCharArray());
} catch (Exception e) {
throw new KeyStoreException("Failed load keystore\n"
+ e.getMessage());
public void registerProvider(String library)
throws FileNotFoundException, KeyStoreException {
String fileName;
if (new File(library).isAbsolute())
fileName = library;
else
fileName = getAbsolutePath(library);
if (!(new File(fileName).exists()))
throw new FileNotFoundException("No such file: " + fileName);
String config = "name = " + providerName + "\n"
+ "library = " + fileName;
ByteArrayInputStream confStream =
new ByteArrayInputStream(config.getBytes());
try {
provider = new sun.security.pkcs11.SunPKCS11(confStream);
Security.addProvider(provider);
} catch (Exception e) {
throw new KeyStoreException("Can initialize " +
"Sun PKCS#11 provider. Reason: " +
e.getCause().getMessage());
private String getAbsolutePath(String lib) throws FileNotFoundException {
String[] searchPath;
/* NOTE: This should be modified to suit different versions of *
* Windows and not just Windows XP */
if (System.getProperty("os.name").matches("^(?i)Windows.*")) {
searchPath = new String[] { "C:\\WINDOWS\\system32" ,
"C:\\java" };
} else {
searchPath = new String[] { "/usr/local/lib/" };
for (int i = 0; i < searchPath.length; i++) {
if ((new File(searchPath[i] + File.separator + lib).exists()))
return (searchPath[i] + File.separator + lib);
throw new FileNotFoundException("Library not in search path " + lib);
}The above code is called by a java script, the class' constructor is empty.
The error appears not to be caught by my code. I have tried to insert try/catch statements everywhere to figure out where this error is produced.
The code is write off of the applet for signing with a smart card by Svetlin Nakov - and his applet works!
I have also made a CLI application that uses the above code and it works perfectly.
So: Something is wrong either with my certificate, the signing method, signature verification or something completely different. Any hints?
The certificate I generated with
keytool -genkey -keystore mystore -alias me
keytool -seflcert -keystore mystore -alias meI have tired both with and without the selfcert step.
Thanks! ErikThe problem has been identified: Placing registerProvider() in the constructor the error no longer occurs, instead an error is produced when the key store is loaded.
It appears that the javascript code is not trusted and so, even though the applet is signed, access privileges are restricted to those of the java script.
A solution to this problem is not clear, but possibly, serving the pages from a trusted server, the java script will be trusted, some documentation seem to indicate. -
Access denied to a security provider on a signed applet
Hi,
I'm having permissions problems to work with a security provider.
The security provider is already installed at java.security. In fact, at Netbeans when debbuging the app it's working perfectly.
If I'm working the provider in an signed applet, then there are errors.
Even, I have created a .jar file and I have saved in the /ext directory, wich by default in the java.policy file has got all security permissions.
grant codeBase "file:${{java.ext.dirs}}/*" {
permission java.security.AllPermission;
Even with these granted permissions, I'm getting problems to work with the security provider that I have installed. Also, with these permissions I should be able to install the security provider.
log:
<record>
<date>2012-03-13T12:13:39</date>
<millis>1331637219126</millis>
<sequence>17</sequence>
<logger>appletpdf.appletPdf</logger>
<level>SEVERE</level>
<class>appletpdf.appletPdf</class>
<method>applTest</method>
<thread>11</thread>
<message>excepcion: {0} </message>
<exception>
<message>java.security.AccessControlException: access denied (java.security.SecurityPermission authProvider.SunPKCS11-Provider-name)</message>
<frame>
<class>java.security.AccessControlContext</class>
<method>checkPermission</method>
<line>393</line>
</frame>
<frame>
<class>java.security.AccessController</class>
<method>checkPermission</method>
<line>553</line>
</frame>
<frame>
<class>java.lang.SecurityManager</class>
<method>checkPermission</method>
<line>549</line>
</frame>
<frame>
<class>net.sourceforge.jnlp.runtime.JNLPSecurityManager</class>
<method>checkPermission</method>
<line>250</line>
</frame>
<frame>
<class>sun.security.pkcs11.SunPKCS11</class>
<method>login</method>
<line>1036</line>
</frame>
<frame>
<class>sun.security.pkcs11.P11KeyStore</class>
<method>login</method>
<line>874</line>
</frame>
<frame>
<class>sun.security.pkcs11.P11KeyStore</class>
<method>engineLoad</method>
<line>764</line>
</frame>
<frame>
<class>java.security.KeyStore</class>
<method>load</method>
<line>1201</line>
</frame>
<frame>
<class>apppdf.appPdf</class>
<method>tPKCS11</method>
<line>174</line>
</frame>
<frame>
<class>appletpdf.appletPdf</class>
<method>applTest</method>
<line>137</line>
</frame>
<frame>
<class>appletpdf.appletPdf</class>
<method>initapplDPdf</method>
<line>116</line>
</frame>
<frame>
<class>sun.reflect.NativeMethodAccessorImpl</class>
<method>invoke0</method>
</frame>
<frame>
<class>sun.reflect.NativeMethodAccessorImpl</class>
<method>invoke</method>
<line>57</line>
</frame>
<frame>
<class>sun.reflect.DelegatingMethodAccessorImpl</class>
<method>invoke</method>
<line>43</line>
</frame>
<frame>
<class>java.lang.reflect.Method</class>
<method>invoke</method>
<line>616</line>
</frame>
<frame>
<class>sun.applet.PluginAppletSecurityContext$4</class>
<method>run</method>
<line>699</line>
</frame>
<frame>
<class>java.security.AccessController</class>
<method>doPrivileged</method>
</frame>
<frame>
<class>sun.applet.PluginAppletSecurityContext</class>
<method>handleMessage</method>
<line>696</line>
</frame>
<frame>
<class>sun.applet.AppletSecurityContextManager</class>
<method>handleMessage</method>
<line>69</line>
</frame>
<frame>
<class>sun.applet.PluginStreamHandler</class>
<method>handleMessage</method>
<line>273</line>
</frame>
<frame>
<class>sun.applet.PluginMessageHandlerWorker</class>
<method>run</method>
<line>82</line>
</frame>
</exception>
</record>
Fails in the line where the KeyStore is loading:(Pin is correct)
KeyStore myKeyStore=null;
Provider p = Security.getProvider("SunPKCS11-Provider-Name");
myKeyStore = KeyStore.getInstance("PKCS11",p);
char[] pinData = pin.toCharArray();
myKeyStore.load(null, pinData);
Any help would be apreciated.
Thank you.
ByeThank you for your information, Frank, as it clarifies part of my confusion. However, there are a couple more loose ends I'd love to address before I mark your responses as answers.
Do backup and restore privileges apply at all over a network mount created via "net use"?
The network mount requires a username and password for the destination machine. Assuming the destination machine is a Windows box with a simple CIFS share, how does this user affect our permissions and access? Do we end up effectively impersonating this
user, or is the access check still done with our sync process's run-as user?
We require that both our configured run-as user for our sync process *and* the credentials passed to the network mount be administrator users of the local system and destination system, respectively, meaning they're in of the "BUILTIN\Administrators,
S-1-5-32-544" group.
On re-syncs, the destination file will exist and since we don't have the ability to read the ACL in all cases (we're running as one user, the file is owned by another user, and we aren't specified in the ACL in any way), we aren't able to determine if the
file has changed. Is it possible to determine the owner of this file in this case? Preferably, we'd obtain the entire SDDL.
My proposed plan is to interpret access denied as a difference requiring re-sync, resulting in us taking ownership of the file, granting ourselves access, determining if there are data differences, and then re-syncing the metadata as appropriate. -
Access denied when deploying task details to non-soa server
Jdev 11g.
I am deploying task details to non-soa server following this guideline:
http://aseng-wiki.us.oracle.com/asengwiki/display/ATG/Deploying+Human+Task+Detail+Page+on+Remote+NonSOA+Server+In+Drop+7
The error is:
Access to internal workflow context is denied.
Requested access to internal workflow context is not allowed according to security policy.
Ensure that correct security policy is used. If the error persists, contact Oracle Support Services.
at oracle.bpel.services.workflow.verification.impl.VerificationService.createTaskDisplayInternalWorkflowContext(VerificationService.java:995)
at oracle.bpel.services.workflow.client.worklist.servlet.TaskFlowDeployerThread$1.run(TaskFlowDeployerThread.java:318)
at java.security.AccessController.doPrivileged(Native Method)
at oracle.bpel.services.workflow.client.worklist.servlet.TaskFlowDeployerThread.getInternalWorkflowContext(TaskFlowDeployerThread.java:311)
at oracle.bpel.services.workflow.client.worklist.servlet.TaskFlowDeployerThread.registerTaskFlowWithTask(TaskFlowDeployerThread.java:232)
at oracle.bpel.services.workflow.client.worklist.servlet.TaskFlowDeployerThread.run(TaskFlowDeployerThread.java:113)
at java.lang.Thread.run(Thread.java:619)
Caused by: java.security.AccessControlException: access denied (oracle.security.jps.JpsPermission VerificationService.createInternalWorkflowContext)
at java.security.AccessControlContext.checkPermission(AccessControlContext.java:323)
at java.security.AccessController.checkPermission(AccessController.java:546)
at oracle.security.jps.util.JpsAuth$AuthorizationMechanism$3.checkPermission(JpsAuth.java:339)
at oracle.security.jps.util.JpsAuth$Diagnostic.checkPermission(JpsAuth.java:266)
at oracle.security.jps.util.JpsAuth$AuthorizationMechanism$6.checkPermission(JpsAuth.java:363)
at oracle.security.jps.util.JpsAuth.checkPermission(JpsAuth.java:399)
at oracle.security.jps.util.JpsAuth.checkPermission(JpsAuth.java:422)
at oracle.bpel.services.workflow.verification.impl.VerificationService.createTaskDisplayInternalWorkflowContext(VerificationService.java:988)
... 6 more
May 28, 2009 2:37:18 PM oracle.bpel.services.common.ServicesLogger __log
SEVERE: <oracle.bpel.services.workflow.client.worklist.servlet.TaskFlowDeployerThread.run> java.lang.Exception: ORABPEL-30515
Access to internal workflow context is denied.
Requested access to internal workflow context is not allowed according to security policy.
Ensure that correct security policy is used. If the error persists, contact Oracle Support Services.
at oracle.bpel.services.workflow.client.worklist.servlet.TaskFlowDeployerThread.registerTaskFlowWithTask(TaskFlowDeployerThread.java:285)
at oracle.bpel.services.workflow.client.worklist.servlet.TaskFlowDeployerThread.run(TaskFlowDeployerThread.java:113)
at java.lang.Thread.run(Thread.java:619)
Caused by: ORABPEL-30515
Access to internal workflow context is denied.
Requested access to internal workflow context is not allowed according to security policy.
Ensure that correct security policy is used. If the error persists, contact Oracle Support Services.
at oracle.bpel.services.workflow.verification.impl.VerificationService.createTaskDisplayInternalWorkflowContext(VerificationService.java:995)
at oracle.bpel.services.workflow.client.worklist.servlet.TaskFlowDeployerThread$1.run(TaskFlowDeployerThread.java:318)
at java.security.AccessController.doPrivileged(Native Method)
at oracle.bpel.services.workflow.client.worklist.servlet.TaskFlowDeployerThread.getInternalWorkflowContext(TaskFlowDeployerThread.java:311)
at oracle.bpel.services.workflow.client.worklist.servlet.TaskFlowDeployerThread.registerTaskFlowWithTask(TaskFlowDeployerThread.java:232)
... 2 more
Caused by: java.security.AccessControlException: access denied (oracle.security.jps.JpsPermission VerificationService.createInternalWorkflowContext)
at java.security.AccessControlContext.checkPermission(AccessControlContext.java:323)
at java.security.AccessController.checkPermission(AccessController.java:546)
at oracle.security.jps.util.JpsAuth$AuthorizationMechanism$3.checkPermission(JpsAuth.java:339)
at oracle.security.jps.util.JpsAuth$Diagnostic.checkPermission(JpsAuth.java:266)
at oracle.security.jps.util.JpsAuth$AuthorizationMechanism$6.checkPermission(JpsAuth.java:363)
at oracle.security.jps.util.JpsAuth.checkPermission(JpsAuth.java:399)
at oracle.security.jps.util.JpsAuth.checkPermission(JpsAuth.java:422)
at oracle.bpel.services.workflow.verification.impl.VerificationService.createTaskDisplayInternalWorkflowContext(VerificationService.java:988)
... 6 more
Any idea?I encountered the same error.
Did somebody know how to solve the issue?
Where our Gurus? -
Java.io.File causes "access denied" exception in a signed applet
Hi,
New to these forums and not entirely where it's appropriate to post this issue, so I'll stick it here for now until told otherwise.
The problem:
My applet throws the following exception.
INFO: Exception Message: access denied (java.io.FilePermission C:\Some Dir With Spaces\AnotherDir\FinalDir read)
The psuedo-code:
java.io.File RootPath = new java.io.File( "C:\" );
private boolean doesSubdirectoryExist(String directory) {
boolean mResult = false;
try
java.io.File tmpPath = new java.io.File( RootPath.toString() + java.io.File.separatorChar + directory );
mResult = tmpPath.isDirectory();
tmpPath = null;
catch (Exception e)
... error handling code
return mResult;
private void btnCheckPathActionPerformed(java.awt.event.ActionEvent evt) {
....some other stuff....
doesSubdirectoryExist(.. a text field value from the GUI form..);
....some other stuff....
} The conditions:
1) The applet is signed.
2) The applet runs fine in the AppletViewer.
3) I am using JDK1.5.0_09.
4) When I click the button the event handler is tied to, it works correctly the first time.
5) If I click a second time, with the same value in the text field (i.e. testing for the same subdirectory again) I get the exception error.
I'm pulling my hair out trying to figure this one out. If it were a security issue with the applet running from a browser, why does it work the first time?
Am I failing to release some lock that creating a java.io.File instance creates?
I would appreciate any help.I've identified the issue. I was attempting to access the filesystem from two different thread and/or contexts.
It seems that if I use the SwingWorker class from https://swingworker.dev.java.net/ to perform background tasks in the Worker thread, I don't get the security privileges required to modify the filesystem. Even though I have signed the jar correctly.
However I can access the filesystem quite happily from the Event Dispatcher thread. If my jar is signed correctly.
So, I have the following questions:
1. Why doesn't SwingWorker worker threads get the same security context as the event dispatcher thread?
2. Is there anyway I can give the worker thread the necessary security privileges?
3. Is there anyway to do this without having to write my own thread handling code and creating my own thread pools?
Message was edited by:
Fidotas
Message was edited by:
Fidotas -
Access denied on applet in broswer - fine in applet viewer
I have written an applet that access a php file and sends a post message. I have tested the applet with the applet viewer and it succeeds each time. When I put the applet on a web page I get the following error:
access denied (java.net.SocketPermission libraries.cjt-design.com:80 connect,resolve)
Any help is appreciated.
The code is as follows:
try {
message = code + "&" + toMessage + "&" + fromMessage + "&" + subjectMessage + "&" + bodyMessage;
URL url;
HttpURLConnection urlConn;
PrintWriter out;
url = new URL(target);
urlConn = (HttpURLConnection) url.openConnection();
urlConn.setRequestMethod("POST");
urlConn.setRequestProperty("Referer", "http://libraries.cjt-design.com/index.html");
urlConn.setDoOutput(true);
urlConn.setDoInput(true);
urlConn.setUseCaches(false);
out = new PrintWriter(urlConn.getOutputStream());
out.print(message);
out.close();
InputStream is = urlConn.getInputStream();
// any response?
InputStreamReader isr = new InputStreamReader(is);
BufferedReader br = new BufferedReader(isr);
String s = "";
String response = "";
while ( (s = br.readLine()) != null)
response += s;
is.close();
statusLabel.setText(response);
statusLabel.invalidate();
} catch (Exception e) {
String error = e.getMessage();
jEditorPane1.setText(error);
error = "Server Exception Occurred - Please try again later.";
statusLabel.setText(error);
statusLabel.invalidate();
}1. Why does it work from the applet viewer and not
the webpage.Appletviewer is in effect a Java application so it runs using the Java application security manager which by default gives an application almost unlimited access to the machine it runs on.
Running an Applet from a Web page runs the Applet constrained by the Applet security manager. By default, the Applet security manager assumes that anything that is downloaded from the web is untrusted so severely limits what an Applet can do. A signed Applet is assumed to be trusted if the certificate chain points back to one of the certificate roots such as Verisign.
You can use self signing for test purposes and then a client will be asked whether or not he trusts the Applet.
2. How do I make the jar file signed?http://java.sun.com/docs/books/tutorial/jar/sign/signing.html
http://java.sun.com/j2se/1.5.0/docs/tooldocs/solaris/jarsigner.html
http://java.sun.com/developer/onlineTraining/Security/Fundamentals/magercises/Signtool/help.html -
Access denied in an applet that uses the jai jars
Hello there
I have a problem while I am using
ParameterBlockJAI pb = new ParameterBlockJAI("scale");
Interpolation interp = Interpolation.getInstance(
Interpolation.INTERP_BILINEAR);
pb.addSource(orig);
pb.setParameter("xScale", dScale);
pb.setParameter("yScale", dScale);
pb.setParameter("xTrans", 0.0F); //x Translate amount
pb.setParameter("yTrans", 0.0F); //y Translate amount
pb.setParameter("interpolation", interp);
RenderingHints rh= new RenderingHints(RenderingHints.KEY_ANTIALIASING, RenderingHints.VALUE_ANTIALIAS_ON);
rh.put(RenderingHints.KEY_ALPHA_INTERPOLATION, RenderingHints.VALUE_ALPHA_INTERPOLATION_QUALITY);
rh.put(RenderingHints.KEY_RENDERING, RenderingHints.VALUE_RENDER_QUALITY);
At the moment my application has a signed applet jar file with the MANIFEST file having the class path with the
lib/jai_codec.jar lib/jai_core.jar lib/mlibwrapper_jai.jar files that are allocated on lib folder.
I signed those files but I am still getting the following error while I am trying to scale down an image.
Could you please give a help
Thanks
Aris
Java.security.AccessControlException: access denied (java.util.PropertyPermission java.home read)
at java.security.AccessControlContext.checkPermission(Unknown Source)
at java.security.AccessController.checkPermission(Unknown Source)
at java.lang.SecurityManager.checkPermission(Unknown Source)
at java.lang.SecurityManager.checkPropertyAccess(Unknown Source)
at java.lang.System.getProperty(Unknown Source)
at com.sun.media.jai.util.PropertyUtil$1.run(PropertyUtil.java:99)
at java.security.AccessController.doPrivileged(Native Method)
at com.sun.media.jai.util.PropertyUtil.getFileFromClasspath(PropertyUtil.java:124)
at com.sun.media.jai.util.PropertyUtil.getBundle(PropertyUtil.java:148)
at com.sun.media.jai.util.PropertyUtil.getString(PropertyUtil.java:165)
at javax.media.jai.operator.JaiI18N.getString(JaiI18N.java:19)
at javax.media.jai.operator.AbsoluteDescriptor.<clinit>(AbsoluteDescriptor.java:65)
at java.lang.Class.forName0(Native Method)
at java.lang.Class.forName(Unknown Source)
at javax.media.jai.RegistryFileParser.getInstance(RegistryFileParser.java:216)
at javax.media.jai.RegistryFileParser.registerDescriptor(RegistryFileParser.java:352)
at javax.media.jai.RegistryFileParser.parseFile(RegistryFileParser.java:287)
at javax.media.jai.RegistryFileParser.loadOperationRegistry(RegistryFileParser.java:47)
at javax.media.jai.OperationRegistry.initializeRegistry(OperationRegistry.java:363)
at javax.media.jai.JAI.<clinit>(JAI.java:560)
at javax.media.jai.ParameterBlockJAI.<init>(ParameterBlockJAI.java:178)
at mpu.uploadingAreaPanel.scaleImage(uploadingAreaPanel.java:234)
at mpu.uploadingAreaPanel.scale2Fit(uploadingAreaPanel.java:265)
at mpu.uploadingAreaPanel.paintComponent(uploadingAreaPanel.java:107)
at javax.swing.JComponent.paint(Unknown Source)
at javax.swing.JComponent.paintToOffscreen(Unknown Source)
at javax.swing.BufferStrategyPaintManager.paint(Unknown Source)
at javax.swing.RepaintManager.paint(Unknown Source)
at javax.swing.JComponent._paintImmediately(Unknown Source)
at javax.swing.JComponent.paintImmediately(Unknown Source)
at javax.swing.RepaintManager.paintDirtyRegions(Unknown Source)
at javax.swing.RepaintManager.paintDirtyRegions(Unknown Source)
at javax.swing.RepaintManager.seqPaintDirtyRegions(Unknown Source)
at javax.swing.SystemEventQueueUtilities$ComponentWorkRequest.run(Unknown Source)
at java.awt.event.InvocationEvent.dispatch(Unknown Source)
at java.awt.EventQueue.dispatchEvent(Unknown Source)
at java.awt.EventDispatchThread.pumpOneEventForFilters(Unknown Source)
at java.awt.EventDispatchThread.pumpEventsForFilter(Unknown Source)
at java.awt.EventDispatchThread.pumpEventsForHierarchy(Unknown Source)
at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
at java.awt.EventDispatchThread.run(Unknown Source)
Exception in thread "AWT-EventQueue-2" java.lang.ExceptionInInitializerError
at java.lang.Class.forName0(Native Method)
at java.lang.Class.forName(Unknown Source)
at javax.media.jai.RegistryFileParser.getInstance(RegistryFileParser.java:216)
at javax.media.jai.RegistryFileParser.registerDescriptor(RegistryFileParser.java:352)
at javax.media.jai.RegistryFileParser.parseFile(RegistryFileParser.java:287)
at javax.media.jai.RegistryFileParser.loadOperationRegistry(RegistryFileParser.java:47)
at javax.media.jai.OperationRegistry.initializeRegistry(OperationRegistry.java:363)
at javax.media.jai.JAI.<clinit>(JAI.java:560)
at javax.media.jai.ParameterBlockJAI.<init>(ParameterBlockJAI.java:178)
at mpu.uploadingAreaPanel.scaleImage(uploadingAreaPanel.java:234)
at mpu.uploadingAreaPanel.scale2Fit(uploadingAreaPanel.java:265)
at mpu.uploadingAreaPanel.paintComponent(uploadingAreaPanel.java:107)
at javax.swing.JComponent.paint(Unknown Source)
at javax.swing.JComponent.paintToOffscreen(Unknown Source)
at javax.swing.BufferStrategyPaintManager.paint(Unknown Source)
at javax.swing.RepaintManager.paint(Unknown Source)
at javax.swing.JComponent._paintImmediately(Unknown Source)
at javax.swing.JComponent.paintImmediately(Unknown Source)
at javax.swing.RepaintManager.paintDirtyRegions(Unknown Source)
at javax.swing.RepaintManager.paintDirtyRegions(Unknown Source)
at javax.swing.RepaintManager.seqPaintDirtyRegions(Unknown Source)
at javax.swing.SystemEventQueueUtilities$ComponentWorkRequest.run(Unknown Source)
at java.awt.event.InvocationEvent.dispatch(Unknown Source)
at java.awt.EventQueue.dispatchEvent(Unknown Source)
at java.awt.EventDispatchThread.pumpOneEventForFilters(Unknown Source)
at java.awt.EventDispatchThread.pumpEventsForFilter(Unknown Source)
at java.awt.EventDispatchThread.pumpEventsForHierarchy(Unknown Source)
at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
at java.awt.EventDispatchThread.run(Unknown Source)
Caused by: java.lang.NullPointerException
at com.sun.media.jai.util.PropertyUtil.getString(PropertyUtil.java:167)
at javax.media.jai.operator.JaiI18N.getString(JaiI18N.java:19)
at javax.media.jai.operator.AbsoluteDescriptor.<clinit>(AbsoluteDescriptor.java:65)
... 30 moreNot sure if this is the problem, but manifests are not appropriate ways to add jar's to an applet's classpath. Instead, add each jar to the archive attribute of the applet element in the web page.
Something like..
<applet
class='JaiApplet'
archive="our.jar,lib/jai_codec.jar,lib/jai_core.jar,lib/mlibwrapper_jai.jar"
width='600'
height='400'>
</applet> -
Access denied error in feature receiver code when deploying-activating custom timer job feature
hi,
am creating a sp timer job for a updating a list.when i write this code in a the event receiver featureactivated method, and when i activate this feature , am getting access denied error.
but, when i deploy this timer job [ without feature receiver] through powershell, it works.
i didnt run this feature receiver with runwithelevatedprivileges delegate - i think this wlll NOT solve the issue.
from one of the posts i seen that, current logedin user needs to be part of config database roles. i didnt understand this point. how can i add my current loge din user into the sp_config database roles? is it through SSMS 2012?
or
is there any way to achieve without feature event receiver?
otherwise i will be forced to write my business logic in a console appln and add this exe in a windows scheduler.!
help is appreciated!hi Waqas,
i have ran that powershell script you have pointed to me.
function Set-RemoteAdministratorAccessDenied-False()
[System.Reflection.Assembly]::LoadWithPartialName("Microsoft.SharePoint") > $null
[System.Reflection.Assembly]::LoadWithPartialName("Microsoft.SharePoint.Administration") > $null
# get content web service
$contentService = [Microsoft.SharePoint.Administration.SPWebService]::ContentService
# turn off remote administration security
$contentService.RemoteAdministratorAccessDenied = $false
$contentService.Update()
now i need to test the functionality from the event receiver after Activate feature button click.
BTW, i have written a console appln for my business logic and created an exe.
also, should i test it with a web application levels coped feature instead of site collection level feature? this thread talks abt the same:
http://social.technet.microsoft.com/Forums/en-US/f41810ec-2348-436d-a574-c29656f3a567/access-denied-error-when-running-timer-job-from-feature-activated-event?forum=sharepointgeneralprevious
thx
Maybe you are looking for
-
Missing audio....sometimes
Audio works fine when I access Netflix or Youtube videos, but when I view friends' videos on Facebook or via links I don't hear audio. Any ideas?
-
ScrollRectToVisible don�t work after jpanel.add(component)
Hi, sorry if this question is allready solved but I coundn�t find a hind. I have a JPanel that is attached to an scrollPane. I add several JPanels depending on what data the user selects to this JPanel. Without intervention the Panel is then scrolled
-
Screensaver changes don't take effect
I went into System Preferences/Desktop&ScreenSaver/Screensaver/Options to change a couple of things, and then I went into Hot Corners to add hot corners, but after I exited the Screensaver screen, none of my changes took effect. There doesn't seem to
-
I just upgraded to Firefox 4 on my two laptops, but I'm only having this problem with one of them. When I click on Mozilla Firefox on my desktop, it immediately takes me to the last site I was on. I want to disable this feature so that it goes right
-
Could anybody check and tell me whether Function Module ENQUEUE_E_TABLE and DEQUEUE_E_TABLE are working fine and if it is so let me know the Parameters used for it. Full reward points for issue solver. Regards, Amol