Deployment of an infobus applet : access denied

Similar Messages

• Applet access denied  with Tomcat 4.1.29 -- Plz Help

  I searched for answers in the forum and used the jarsigner to certify an applet that uses Oracle thin driver. Modified the catalina.policy to:
  grant {
          permission java.security.AllPermission;
  permission java.net.SocketPermission "127.0.0.1:1024-", "accept, connect, listen, resolve";
            }; I am still seeing this error:
  access denied (java.net.SocketPermission 127.0.0.1:1521 connect, resolve)PLEASE HELP
  Murthy

  Thanks for the clarification! I created a java.policy file on the client. I'm now seeing null pointer for the connection variable. BTW, on the client I saved the java.policy at $HOME and the policy tool says it can't find it!!!

• Problems deploying a simple Infobus Applet

  Hi,
  I am testing the infrastructure required to build an Infobus
  Applet for our Web-based application using the Business Component
  Framework in JDeveloper 3.0.
  I have created a simple project based on the Scott schema, which
  uses the Java Business Object framework to define Entity Objects,
  Views, etc. for the Dept and Emp tables.
  I have then created, using the Wizard, an Infobus Data Form to
  create a master-detail Applet to display Employees within a
  Department based on the above mentioned View Object. This works
  fine when running within JDeveloper3.
  However, when I try to deploy the applet to our Oracle
  Application Server as a simple HTML file and JAR file (not using
  EJB, etc. as we currently only have OAS 4.0.7.1 - waiting for OAS
  4.0.8 to be available for download), the applet fails to start.
  I have installed the Java Plug-in 1.2.2 from Sun as documented as
  I'm using Swing controls.
  After much frustration with the online 'Help', I managed to
  create a deployment profile which included the appropriate
  archives (See Packaging Source and Deployment Files in Help -
  still refers to 'Rules' and 'Sources' pages ala JDeveloper 2 NOT
  3.0).
  Using the Console feature of the Java Plug-in, I was able to see
  the progress of the Applets classes being loaded. It gets to the
  point where it's trying to load the ResTable classes in
  dacf.zip as found in the path:
  oracle\dacf\control\swing\find
  At this point, it just stops and nothing else happens.
  Do I need to explicitly localize my Infobus Applet because I'm in
  the United Kingdom and my PC has that as it's Regional Setting?
  That is, do I need to define a ResTable_en_GB version of this
  class?
  Also, in attempting to create a localized version, I had errors
  with JDeveloper stating that the text for the FIND_HELP_MESSAGE
  exceeds the limit of JDeveloper (meaning that it's too long and I
  needed to replace it with a shorter string). Could this be the
  problem in the first place?
  I have not been able to get the Applet to get beyond this point,
  although I'm still trying the localization to Great Britain.
  I know this is already a LONG email, but here is an extract from
  the Java Console after which nothing else happens:
  CacheHandler file name: null
  Opening
  http://dell_server.wsp.co.uk:4005/oracle/dacf/control/swing/find/
  ResTable_en.properties no proxy
  Opening
  http://dell_server.wsp.co.uk:4005/oracle/dacf/control/swing/find/
  ResTable_en.properties with cookie
  "SITESERVER=ID=8e93834f82ef0710b78e5a4b087d6eed".
  Regards
  Gene Schneider
  null

  Parameter passing in EJB must implement Serializable. One way to solve this is:
  1. Define a new class which implements
  Serializable.
  2. Place whatever you want to pass inside
  this class.
  3. Now use the new class as your parameter.
  eg.
  public class Params implements java.io.Serializable {
  String p1;
  XmlDocmuent xdoc;,
  etc, etc
  Your program now have to use the class Params for parameter passing.
  Hope this helps.
  Tam
  null

• InfoBus applet deployment steps

  It seemed that some "users" have had success with the deployment
  of the InfoBus applet, can someone be kind enough to post the
  steps / process, ie to share their success stories
  thanks in advance
  null

  Make sure below :
  1.Only contain the application's class files,XML file,and
  connection.properties file in your .jar file.
  2.Distribute .jar file with runtime libaries for Infobus applet:
  class111.zip,connectionmanager.zip,dacf.zip,infobus.jar,
  javax_ejb.zip,jbomt.zip,jboremote.zip,jndi.jar,
  jdev-rt.zip,swingall.jar,xmlparser.jar
  3.Try your applet with IE browser.
  null

• Applet Error:java.security.AccessControlException: access denied

  Hi,
  I just successful deploy an business component project to oralce 8.1.6 as an EJB Session bean, and
  the test of application module is successful. In the same workspace, I create an new project with
  an applet(which contains only an grid control)as a client of the business component. Everything works
  fine within the Applet viewer, however, when I trying to load the applet in IE5.5 I got the following
  error message in java console:
  Java(TM) Plug-in
  Using JRE version 1.2.1
  User home directory = D:\Documents and Settings\ERic
  Proxy Configuration: no proxy
  JAR cache enabled.
  Failed to query environment: 'access denied (java.util.PropertyPermission jbo.debugoutput read)'
  Diagnostics: Silencing all diagnostic output (use -Djbo.debugoutput=console to see it)
  Failed to query environment: 'access denied (java.util.PropertyPermission jbo.logging.show.timing read)'
  Failed to query environment: 'access denied (java.util.PropertyPermission jbo.logging.show.function read)'
  Failed to query environment: 'access denied (java.util.PropertyPermission jbo.logging.show.level read)'
  Failed to query environment: 'access denied (java.util.PropertyPermission jbo.logging.show.linecount read)'
  Failed to query environment: 'access denied (java.util.PropertyPermission jbo.logging.trace.threshold read)'
  Failed to query environment: 'access denied (java.util.PropertyPermission jbo.jdbc.driver.verbose read)'
  java.lang.ExceptionInInitializerError: java.security.AccessControlException: access denied (java.util.PropertyPermission org.omg.CORBA.ORBClass read)
  at java.security.AccessControlContext.checkPermission(Compiled Code)
  at oracle.aurora.jndi.orb_dep.Orb.<clinit>(Orb.java:24)
  at oracle.aurora.jndi.sess_iiop.sess_iiopURLContext.<clinit>(sess_iiopURLContext.java:9)
  at javax.naming.spi.NamingManager.getURLObject(NamingManager.java:588)
  at javax.naming.spi.NamingManager.getURLContext(NamingManager.java:537)
  at javax.naming.InitialContext.getURLOrDefaultInitCtx(InitialContext.java:274)
  at javax.naming.InitialContext.lookup(InitialContext.java:349)
  at oracle.jbo.client.remote.ejb.aurora.AuroraEJBAmHomeImpl.connectToService(AuroraEJBAmHomeImpl.java:179)
  at oracle.jbo.client.remote.ejb.aurora.AuroraEJBAmHomeImpl.createSession(AuroraEJBAmHomeImpl.java:152)
  at oracle.jbo.client.remote.ejb.aurora.AuroraEJBAmHomeImpl.initRemoteHome(AuroraEJBAmHomeImpl.java:123)
  at oracle.jbo.client.remote.ejb.aurora.AuroraEJBAmHomeImpl.<init>(AuroraEJBAmHomeImpl.java:59)
  at oracle.jbo.client.remote.ejb.aurora.AuroraEJBInitialContext.createJboHome(AuroraEJBInitialContext.java:47)
  at oracle.jbo.common.JboInitialContext.lookup(JboInitialContext.java:72)
  at javax.naming.InitialContext.lookup(InitialContext.java:349)
  at oracle.dacf.dataset.SessionInfo._createAppModule(SessionInfo.java:2330)
  at oracle.dacf.dataset.SessionInfo.connect(SessionInfo.java:1799)
  at oracle.dacf.dataset.SessionInfo.openProducerObject(SessionInfo.java:1848)
  at oracle.dacf.dataset.ProducerObject.open(ProducerObject.java:94)
  at oracle.dacf.dataset.SessionInfo.publishSession(SessionInfo.java:1305)
  at oracle.dacf.dataset.SessionInfo.publishSession(SessionInfo.java:1287)
  at broadcastapplet.myBroadCastApplet.init(myBroadCastApplet.java:70)
  at sun.applet.AppletPanel.run(Compiled Code)
  at java.lang.Thread.run(Thread.java:479)
  The Oracle 8.1.6 runs on Win2000, I put the JAR & related zip files in the same machine's IIS webserver.
  Is anyone can help?
  ERic

  Hi Shaji,
  Are you calling a webservice from within an Xacute Query for your applet?  On first glance, it looks like a web service call is being rejected due to security permissions.  If you have a webservice call (or HTTP post/get), can you test it separately with the same credentials as the webpage is using?
  Regards,
  Mike

• ".. access denied: ... jnlp read" error in applet with NO .jnlp file!

  I'm trying to embed a Java program called ImageJA [http://pacific.mpi-cbg.de/wiki/index.php/ImageJA] into a webpage. I'm using ASP.NET with XHTML 1.0. Since I'm embedding it as an object in the html code, it should not cause any issues from that end. Unforunately, when I try I get an error saying "java.security.AccessControlException: access denied (java.util.PropertyPermission jnlp read)". The weird thing is, there is no jnlp file anywhere (including the .jar and codebase).
  I'm able to run it successfully if I change the permissions in my java.policy file, but that solution only works for my local machine.
  The .jar file (the only one) has been signed (I believe). I followed the steps as suggested [http://download.oracle.com/docs/cd/E17476_01/javase/1.4.2/docs/guide/plugin/developer_guide/rsa_signing.html], with the exception of contacting VeriSign/Thawte (I wish to have this be self signed).
  This seems like a very odd issue to me, and I'm running out of hair. Can anyone help?
  Here's my html code:
  <html xmlns="http://www.w3.org/1999/xhtml" >
  <head runat="server">
  <title>Untitled Page</title>
  </head>
  <body>
  <form id="form1" runat="server">
  <div>
  <object
  classid = "clsid:8AD9C840-044E-11D1-B3E9-00805F499D93"
  codebase = "[http://java.sun.com/update/1.5.0/jinstall-1_5-windows-i586.cab]"
  width="500" height="500">
  <param name = "code" value = "ij.ImageJApplet.class" />
  <param name = "codebase" value = "ImageJA" />
  <param name = "archive" value = "ij-1.44a.jar" />
  <param name="type" value="application/x-java-applet;jpi-version=1.4.2" />
  <param name="scriptable" value="true" />
  </object>
  </div>
  </form>
  </body>
  </html>
  Edited by: Sythion on Jul 13, 2010 2:19 PM

  Sythion wrote:
  I'm trying to embed a Java program called ImageJA [http://pacific.mpi-cbg.de/wiki/index.php/ImageJA] ..
  I suggest you take up the problem through the [channels suggested by the API developers|http://pacific.mpi-cbg.de/wiki/index.php/Help:Contents].

• Access Denied error while opening the deployed Application

  Hi,
  When I try to open my deployed application I get the following error:
  weblogic.net.http.SOAPHttpsURLConnection
  Im using the following code in my application:
  URL wsURL = new URL(wsLocation + "?command=login");
  So I went ahead and changed my code to this:
  java.net.URL wsURL = new URL(null, wsLocation + "?command=login",new sun.net.www.protocol.https.Handler());
  But I got the following error:
  access denied (java.lang.RuntimePermission accessClassInPackage.sun.net.www.protocol.https)
  Also I believe sun.* packages are not supported anymore on cloud. I think it might be because of this it failed the second time.
  Is there any workaround for this?
  Regards,
  Abhishek

  Access denied indicates the user account uploading the file doesn't have access to the library, or sometimes it means there's already a document in the library with the same name that was never checked in. It's also possible that your template contains
  custom code that tries to do something that is not allowed.
  Kind regards,
  Margriet Bruggeman
  Lois & Clark IT Services
  web site: http://www.loisandclark.eu
  blog: http://www.sharepointdragons.com

• Access denied when upgrade SharePoint app in on premise deployment while it succeeds in fresh deployment

  We deployed a SharePoint hosted app then used it for a while then we needed to upgrade it to be provider hosted app.
  we used the same AppID and name with the new package then uploaded the package to the app catalog.
  the old app in the site contents now has a note that there is a newer version and prompts to upgrade.
  the upgrade fails with access denied even for site collection administrator.
  is there really some permission issue or the upgrade can't be done?
  We are volunteers, if the reply help you mark it as your answer. thanks!!

  Hi,
  According to your post, my understanding is that you got access denied error when upgrade the SharePoint hosted app to provider hosted app.
  How did you upgrade a SharePoint hosted app to a provider hosted app?
  They are two different type apps, why not just create a new provider hosted app?
  To create a provider hosted app, we should create a certificate that is used as “security token issuer”.
  There are two articles about creating provider hosted  high trust app, you can have a look at them.
  http://blog.karstein-consulting.com/2013/01/08/create-provider-hosted-high-trust-app-for-sharepoint-2013-short-guide/
  http://msdn.microsoft.com/en-us/library/fp179901.aspx
  What’s more, there is an topic about the troubleshooting tips for SharePoint high trust app, you can refer to it.
  http://blogs.technet.com/b/speschka/archive/2012/11/01/more-troubleshooting-tips-for-high-trust-apps-on-sharepoint-2013.aspx
  Thanks & Regards,
  Jason
  Jason Guo
  TechNet Community Support

• File read access denied for signed applet

  Hi:
  I have a signed applet with a certificate generated with the keytool. Yet, I keep getting this error:
  java.lang.Exception: java.security.AccessControlException:
      access denied (java.io.FilePermission C:\WINDOWS\system32\aetpkss1.dll read)The error is produced when the method loadKeyStore(pin) below is called.
      private KeyStore ks;
      private Provider provider;
      private static final String providerName    = "PKCS11";
      private static final String providerLibrary = "aetpkss1.dll";
      public void loadKeyStore(String pin) throws IOException,
       CertificateException, KeyStoreException, NoSuchAlgorithmException {
       if (provider == null)
           registerProvider(providerLibrary);
       try {
           ks = KeyStore.getInstance(providerName,provider);
       } catch (Exception e) {
           throw new KeyStoreException("Failed get keystore instance\n"
                           + e.getMessage());
       try {
           ks.load(null, pin.toCharArray());
       } catch (Exception e) {
           throw new KeyStoreException("Failed load keystore\n"
                           + e.getMessage());
      public void registerProvider(String library)
       throws FileNotFoundException, KeyStoreException {
       String fileName;
       if (new File(library).isAbsolute())
           fileName = library;
       else
           fileName = getAbsolutePath(library);
       if (!(new File(fileName).exists()))
           throw new FileNotFoundException("No such file: " + fileName);
       String config = "name = " + providerName + "\n"
           + "library = " + fileName;
       ByteArrayInputStream confStream =
           new ByteArrayInputStream(config.getBytes());
       try {
           provider = new sun.security.pkcs11.SunPKCS11(confStream);
           Security.addProvider(provider);
       } catch (Exception e) {
           throw new KeyStoreException("Can initialize " +
                           "Sun PKCS#11 provider. Reason: " +
                           e.getCause().getMessage());
      private String getAbsolutePath(String lib) throws FileNotFoundException {
       String[] searchPath;
       /* NOTE: This should be modified to suit different versions of   *
        *       Windows and not just Windows XP                         */
       if (System.getProperty("os.name").matches("^(?i)Windows.*")) {
           searchPath = new String[] { "C:\\WINDOWS\\system32" ,
                           "C:\\java" };
       } else {
           searchPath = new String[] { "/usr/local/lib/" };
       for (int i = 0; i < searchPath.length; i++) {
           if ((new File(searchPath[i] + File.separator + lib).exists()))
            return (searchPath[i] + File.separator + lib);
       throw new FileNotFoundException("Library not in search path " + lib);
      }The above code is called by a java script, the class' constructor is empty.
  The error appears not to be caught by my code. I have tried to insert try/catch statements everywhere to figure out where this error is produced.
  The code is write off of the applet for signing with a smart card by Svetlin Nakov - and his applet works!
  I have also made a CLI application that uses the above code and it works perfectly.
  So: Something is wrong either with my certificate, the signing method, signature verification or something completely different. Any hints?
  The certificate I generated with
  keytool -genkey -keystore mystore -alias me
  keytool -seflcert -keystore mystore -alias meI have tired both with and without the selfcert step.
  Thanks! Erik

  The problem has been identified: Placing registerProvider() in the constructor the error no longer occurs, instead an error is produced when the key store is loaded.
  It appears that the javascript code is not trusted and so, even though the applet is signed, access privileges are restricted to those of the java script.
  A solution to this problem is not clear, but possibly, serving the pages from a trusted server, the java script will be trusted, some documentation seem to indicate.

• Access denied to a security provider on a signed applet

  Hi,
  I'm having permissions problems to work with a security provider.
  The security provider is already installed at java.security. In fact, at Netbeans when debbuging the app it's working perfectly.
  If I'm working the provider in an signed applet, then there are errors.
  Even, I have created a .jar file and I have saved in the /ext directory, wich by default in the java.policy file has got all security permissions.
  grant codeBase "file:${{java.ext.dirs}}/*" {
  permission java.security.AllPermission;
  Even with these granted permissions, I'm getting problems to work with the security provider that I have installed. Also, with these permissions I should be able to install the security provider.
  log:
  <record>
  <date>2012-03-13T12:13:39</date>
  <millis>1331637219126</millis>
  <sequence>17</sequence>
  <logger>appletpdf.appletPdf</logger>
  <level>SEVERE</level>
  <class>appletpdf.appletPdf</class>
  <method>applTest</method>
  <thread>11</thread>
  <message>excepcion: {0} </message>
  <exception>
  <message>java.security.AccessControlException: access denied (java.security.SecurityPermission authProvider.SunPKCS11-Provider-name)</message>
  <frame>
  <class>java.security.AccessControlContext</class>
  <method>checkPermission</method>
  <line>393</line>
  </frame>
  <frame>
  <class>java.security.AccessController</class>
  <method>checkPermission</method>
  <line>553</line>
  </frame>
  <frame>
  <class>java.lang.SecurityManager</class>
  <method>checkPermission</method>
  <line>549</line>
  </frame>
  <frame>
  <class>net.sourceforge.jnlp.runtime.JNLPSecurityManager</class>
  <method>checkPermission</method>
  <line>250</line>
  </frame>
  <frame>
  <class>sun.security.pkcs11.SunPKCS11</class>
  <method>login</method>
  <line>1036</line>
  </frame>
  <frame>
  <class>sun.security.pkcs11.P11KeyStore</class>
  <method>login</method>
  <line>874</line>
  </frame>
  <frame>
  <class>sun.security.pkcs11.P11KeyStore</class>
  <method>engineLoad</method>
  <line>764</line>
  </frame>
  <frame>
  <class>java.security.KeyStore</class>
  <method>load</method>
  <line>1201</line>
  </frame>
  <frame>
  <class>apppdf.appPdf</class>
  <method>tPKCS11</method>
  <line>174</line>
  </frame>
  <frame>
  <class>appletpdf.appletPdf</class>
  <method>applTest</method>
  <line>137</line>
  </frame>
  <frame>
  <class>appletpdf.appletPdf</class>
  <method>initapplDPdf</method>
  <line>116</line>
  </frame>
  <frame>
  <class>sun.reflect.NativeMethodAccessorImpl</class>
  <method>invoke0</method>
  </frame>
  <frame>
  <class>sun.reflect.NativeMethodAccessorImpl</class>
  <method>invoke</method>
  <line>57</line>
  </frame>
  <frame>
  <class>sun.reflect.DelegatingMethodAccessorImpl</class>
  <method>invoke</method>
  <line>43</line>
  </frame>
  <frame>
  <class>java.lang.reflect.Method</class>
  <method>invoke</method>
  <line>616</line>
  </frame>
  <frame>
  <class>sun.applet.PluginAppletSecurityContext$4</class>
  <method>run</method>
  <line>699</line>
  </frame>
  <frame>
  <class>java.security.AccessController</class>
  <method>doPrivileged</method>
  </frame>
  <frame>
  <class>sun.applet.PluginAppletSecurityContext</class>
  <method>handleMessage</method>
  <line>696</line>
  </frame>
  <frame>
  <class>sun.applet.AppletSecurityContextManager</class>
  <method>handleMessage</method>
  <line>69</line>
  </frame>
  <frame>
  <class>sun.applet.PluginStreamHandler</class>
  <method>handleMessage</method>
  <line>273</line>
  </frame>
  <frame>
  <class>sun.applet.PluginMessageHandlerWorker</class>
  <method>run</method>
  <line>82</line>
  </frame>
  </exception>
  </record>
  Fails in the line where the KeyStore is loading:(Pin is correct)
  KeyStore myKeyStore=null;
  Provider p = Security.getProvider("SunPKCS11-Provider-Name");
  myKeyStore = KeyStore.getInstance("PKCS11",p);
  char[] pinData = pin.toCharArray();
  myKeyStore.load(null, pinData);
  Any help would be apreciated.
  Thank you.
  Bye

  Thank you for your information, Frank, as it clarifies part of my confusion. However, there are a couple more loose ends I'd love to address before I mark your responses as answers.
  Do backup and restore privileges apply at all over a network mount created via "net use"?
  The network mount requires a username and password for the destination machine. Assuming the destination machine is a Windows box with a simple CIFS share, how does this user affect our permissions and access? Do we end up effectively impersonating this
  user, or is the access check still done with our sync process's run-as user?
  We require that both our configured run-as user for our sync process *and* the credentials passed to the network mount be administrator users of the local system and destination system, respectively, meaning they're in of the "BUILTIN\Administrators,
  S-1-5-32-544" group.
  On re-syncs, the destination file will exist and since we don't have the ability to read the ACL in all cases (we're running as one user, the file is owned by another user, and we aren't specified in the ACL in any way), we aren't able to determine if the
  file has changed. Is it possible to determine the owner of this file in this case? Preferably, we'd obtain the entire SDDL.
  My proposed plan is to interpret access denied as a difference requiring re-sync, resulting in us taking ownership of the file, granting ourselves access, determining if there are data differences, and then re-syncing the metadata as appropriate.

• Access denied when deploying task details to non-soa server

  Jdev 11g.
  I am deploying task details to non-soa server following this guideline:
  http://aseng-wiki.us.oracle.com/asengwiki/display/ATG/Deploying+Human+Task+Detail+Page+on+Remote+NonSOA+Server+In+Drop+7
  The error is:
  Access to internal workflow context is denied.
  Requested access to internal workflow context is not allowed according to security policy.
  Ensure that correct security policy is used. If the error persists, contact Oracle Support Services.
       at oracle.bpel.services.workflow.verification.impl.VerificationService.createTaskDisplayInternalWorkflowContext(VerificationService.java:995)
       at oracle.bpel.services.workflow.client.worklist.servlet.TaskFlowDeployerThread$1.run(TaskFlowDeployerThread.java:318)
       at java.security.AccessController.doPrivileged(Native Method)
       at oracle.bpel.services.workflow.client.worklist.servlet.TaskFlowDeployerThread.getInternalWorkflowContext(TaskFlowDeployerThread.java:311)
       at oracle.bpel.services.workflow.client.worklist.servlet.TaskFlowDeployerThread.registerTaskFlowWithTask(TaskFlowDeployerThread.java:232)
       at oracle.bpel.services.workflow.client.worklist.servlet.TaskFlowDeployerThread.run(TaskFlowDeployerThread.java:113)
       at java.lang.Thread.run(Thread.java:619)
  Caused by: java.security.AccessControlException: access denied (oracle.security.jps.JpsPermission VerificationService.createInternalWorkflowContext)
       at java.security.AccessControlContext.checkPermission(AccessControlContext.java:323)
       at java.security.AccessController.checkPermission(AccessController.java:546)
       at oracle.security.jps.util.JpsAuth$AuthorizationMechanism$3.checkPermission(JpsAuth.java:339)
       at oracle.security.jps.util.JpsAuth$Diagnostic.checkPermission(JpsAuth.java:266)
       at oracle.security.jps.util.JpsAuth$AuthorizationMechanism$6.checkPermission(JpsAuth.java:363)
       at oracle.security.jps.util.JpsAuth.checkPermission(JpsAuth.java:399)
       at oracle.security.jps.util.JpsAuth.checkPermission(JpsAuth.java:422)
       at oracle.bpel.services.workflow.verification.impl.VerificationService.createTaskDisplayInternalWorkflowContext(VerificationService.java:988)
       ... 6 more
  May 28, 2009 2:37:18 PM oracle.bpel.services.common.ServicesLogger __log
  SEVERE: <oracle.bpel.services.workflow.client.worklist.servlet.TaskFlowDeployerThread.run> java.lang.Exception: ORABPEL-30515
  Access to internal workflow context is denied.
  Requested access to internal workflow context is not allowed according to security policy.
  Ensure that correct security policy is used. If the error persists, contact Oracle Support Services.
       at oracle.bpel.services.workflow.client.worklist.servlet.TaskFlowDeployerThread.registerTaskFlowWithTask(TaskFlowDeployerThread.java:285)
       at oracle.bpel.services.workflow.client.worklist.servlet.TaskFlowDeployerThread.run(TaskFlowDeployerThread.java:113)
       at java.lang.Thread.run(Thread.java:619)
  Caused by: ORABPEL-30515
  Access to internal workflow context is denied.
  Requested access to internal workflow context is not allowed according to security policy.
  Ensure that correct security policy is used. If the error persists, contact Oracle Support Services.
       at oracle.bpel.services.workflow.verification.impl.VerificationService.createTaskDisplayInternalWorkflowContext(VerificationService.java:995)
       at oracle.bpel.services.workflow.client.worklist.servlet.TaskFlowDeployerThread$1.run(TaskFlowDeployerThread.java:318)
       at java.security.AccessController.doPrivileged(Native Method)
       at oracle.bpel.services.workflow.client.worklist.servlet.TaskFlowDeployerThread.getInternalWorkflowContext(TaskFlowDeployerThread.java:311)
       at oracle.bpel.services.workflow.client.worklist.servlet.TaskFlowDeployerThread.registerTaskFlowWithTask(TaskFlowDeployerThread.java:232)
       ... 2 more
  Caused by: java.security.AccessControlException: access denied (oracle.security.jps.JpsPermission VerificationService.createInternalWorkflowContext)
       at java.security.AccessControlContext.checkPermission(AccessControlContext.java:323)
       at java.security.AccessController.checkPermission(AccessController.java:546)
       at oracle.security.jps.util.JpsAuth$AuthorizationMechanism$3.checkPermission(JpsAuth.java:339)
       at oracle.security.jps.util.JpsAuth$Diagnostic.checkPermission(JpsAuth.java:266)
       at oracle.security.jps.util.JpsAuth$AuthorizationMechanism$6.checkPermission(JpsAuth.java:363)
       at oracle.security.jps.util.JpsAuth.checkPermission(JpsAuth.java:399)
       at oracle.security.jps.util.JpsAuth.checkPermission(JpsAuth.java:422)
       at oracle.bpel.services.workflow.verification.impl.VerificationService.createTaskDisplayInternalWorkflowContext(VerificationService.java:988)
       ... 6 more
  Any idea?

  I encountered the same error.
  Did somebody know how to solve the issue?
  Where our Gurus?

• Java.io.File causes "access denied" exception in a signed applet

  Hi,
  New to these forums and not entirely where it's appropriate to post this issue, so I'll stick it here for now until told otherwise.
  The problem:
  My applet throws the following exception.
  INFO: Exception Message: access denied (java.io.FilePermission C:\Some Dir With Spaces\AnotherDir\FinalDir read)
  The psuedo-code:
  java.io.File RootPath = new java.io.File( "C:\" );
  private boolean doesSubdirectoryExist(String directory) {
          boolean mResult = false;
          try
              java.io.File tmpPath = new java.io.File( RootPath.toString() + java.io.File.separatorChar + directory );
              mResult = tmpPath.isDirectory();
              tmpPath = null;
          catch (Exception e)
              ... error handling code
          return mResult;
  private void btnCheckPathActionPerformed(java.awt.event.ActionEvent evt) {
          ....some other stuff....
          doesSubdirectoryExist(.. a text field value from the GUI form..);
          ....some other stuff....
  }                                       The conditions:
  1) The applet is signed.
  2) The applet runs fine in the AppletViewer.
  3) I am using JDK1.5.0_09.
  4) When I click the button the event handler is tied to, it works correctly the first time.
  5) If I click a second time, with the same value in the text field (i.e. testing for the same subdirectory again) I get the exception error.
  I'm pulling my hair out trying to figure this one out. If it were a security issue with the applet running from a browser, why does it work the first time?
  Am I failing to release some lock that creating a java.io.File instance creates?
  I would appreciate any help.

  I've identified the issue. I was attempting to access the filesystem from two different thread and/or contexts.
  It seems that if I use the SwingWorker class from https://swingworker.dev.java.net/ to perform background tasks in the Worker thread, I don't get the security privileges required to modify the filesystem. Even though I have signed the jar correctly.
  However I can access the filesystem quite happily from the Event Dispatcher thread. If my jar is signed correctly.
  So, I have the following questions:
  1. Why doesn't SwingWorker worker threads get the same security context as the event dispatcher thread?
  2. Is there anyway I can give the worker thread the necessary security privileges?
  3. Is there anyway to do this without having to write my own thread handling code and creating my own thread pools?
  Message was edited by:
  Fidotas
  Message was edited by:
  Fidotas

• Access denied on applet in broswer - fine in applet viewer

  I have written an applet that access a php file and sends a post message. I have tested the applet with the applet viewer and it succeeds each time. When I put the applet on a web page I get the following error:
  access denied (java.net.SocketPermission libraries.cjt-design.com:80 connect,resolve)
  Any help is appreciated.
  The code is as follows:
                 try {
                      message = code + "&" + toMessage + "&" + fromMessage + "&" + subjectMessage + "&" + bodyMessage;
                      URL url;
                      HttpURLConnection urlConn;
                      PrintWriter out;
                      url = new URL(target);
                      urlConn = (HttpURLConnection) url.openConnection();
                      urlConn.setRequestMethod("POST");
                      urlConn.setRequestProperty("Referer", "http://libraries.cjt-design.com/index.html");
                      urlConn.setDoOutput(true);
                      urlConn.setDoInput(true);
                      urlConn.setUseCaches(false);     
       out = new PrintWriter(urlConn.getOutputStream());
       out.print(message);
       out.close();
            InputStream is = urlConn.getInputStream();
            // any response?
            InputStreamReader isr = new InputStreamReader(is);
            BufferedReader br = new BufferedReader(isr);
                           String s = "";
                           String response = "";
            while ( (s = br.readLine()) != null)
                                response += s;
            is.close();
                      statusLabel.setText(response);
                      statusLabel.invalidate();
                 } catch (Exception e) {
                      String error = e.getMessage();
                      jEditorPane1.setText(error);
                      error = "Server Exception Occurred - Please try again later.";
                      statusLabel.setText(error);
                      statusLabel.invalidate();
                 }

  1. Why does it work from the applet viewer and not
  the webpage.Appletviewer is in effect a Java application so it runs using the Java application security manager which by default gives an application almost unlimited access to the machine it runs on.
  Running an Applet from a Web page runs the Applet constrained by the Applet security manager. By default, the Applet security manager assumes that anything that is downloaded from the web is untrusted so severely limits what an Applet can do. A signed Applet is assumed to be trusted if the certificate chain points back to one of the certificate roots such as Verisign.
  You can use self signing for test purposes and then a client will be asked whether or not he trusts the Applet.
  2. How do I make the jar file signed?http://java.sun.com/docs/books/tutorial/jar/sign/signing.html
  http://java.sun.com/j2se/1.5.0/docs/tooldocs/solaris/jarsigner.html
  http://java.sun.com/developer/onlineTraining/Security/Fundamentals/magercises/Signtool/help.html

• Access denied in an applet that uses the jai jars

  Hello there
  I have a problem while I am using
  ParameterBlockJAI pb = new ParameterBlockJAI("scale");
  Interpolation interp = Interpolation.getInstance(
  Interpolation.INTERP_BILINEAR);
  pb.addSource(orig);
  pb.setParameter("xScale", dScale);
  pb.setParameter("yScale", dScale);
  pb.setParameter("xTrans", 0.0F); //x Translate amount
  pb.setParameter("yTrans", 0.0F); //y Translate amount
  pb.setParameter("interpolation", interp);
  RenderingHints rh= new RenderingHints(RenderingHints.KEY_ANTIALIASING, RenderingHints.VALUE_ANTIALIAS_ON);
  rh.put(RenderingHints.KEY_ALPHA_INTERPOLATION, RenderingHints.VALUE_ALPHA_INTERPOLATION_QUALITY);
  rh.put(RenderingHints.KEY_RENDERING, RenderingHints.VALUE_RENDER_QUALITY);
  At the moment my application has a signed applet jar file with the MANIFEST file having the class path with the
  lib/jai_codec.jar lib/jai_core.jar lib/mlibwrapper_jai.jar files that are allocated on lib folder.
  I signed those files but I am still getting the following error while I am trying to scale down an image.
  Could you please give a help
  Thanks
  Aris
  Java.security.AccessControlException: access denied (java.util.PropertyPermission java.home read)
       at java.security.AccessControlContext.checkPermission(Unknown Source)
       at java.security.AccessController.checkPermission(Unknown Source)
       at java.lang.SecurityManager.checkPermission(Unknown Source)
       at java.lang.SecurityManager.checkPropertyAccess(Unknown Source)
       at java.lang.System.getProperty(Unknown Source)
       at com.sun.media.jai.util.PropertyUtil$1.run(PropertyUtil.java:99)
       at java.security.AccessController.doPrivileged(Native Method)
       at com.sun.media.jai.util.PropertyUtil.getFileFromClasspath(PropertyUtil.java:124)
       at com.sun.media.jai.util.PropertyUtil.getBundle(PropertyUtil.java:148)
       at com.sun.media.jai.util.PropertyUtil.getString(PropertyUtil.java:165)
       at javax.media.jai.operator.JaiI18N.getString(JaiI18N.java:19)
       at javax.media.jai.operator.AbsoluteDescriptor.<clinit>(AbsoluteDescriptor.java:65)
       at java.lang.Class.forName0(Native Method)
       at java.lang.Class.forName(Unknown Source)
       at javax.media.jai.RegistryFileParser.getInstance(RegistryFileParser.java:216)
       at javax.media.jai.RegistryFileParser.registerDescriptor(RegistryFileParser.java:352)
       at javax.media.jai.RegistryFileParser.parseFile(RegistryFileParser.java:287)
       at javax.media.jai.RegistryFileParser.loadOperationRegistry(RegistryFileParser.java:47)
       at javax.media.jai.OperationRegistry.initializeRegistry(OperationRegistry.java:363)
       at javax.media.jai.JAI.<clinit>(JAI.java:560)
       at javax.media.jai.ParameterBlockJAI.<init>(ParameterBlockJAI.java:178)
       at mpu.uploadingAreaPanel.scaleImage(uploadingAreaPanel.java:234)
       at mpu.uploadingAreaPanel.scale2Fit(uploadingAreaPanel.java:265)
       at mpu.uploadingAreaPanel.paintComponent(uploadingAreaPanel.java:107)
       at javax.swing.JComponent.paint(Unknown Source)
       at javax.swing.JComponent.paintToOffscreen(Unknown Source)
       at javax.swing.BufferStrategyPaintManager.paint(Unknown Source)
       at javax.swing.RepaintManager.paint(Unknown Source)
       at javax.swing.JComponent._paintImmediately(Unknown Source)
       at javax.swing.JComponent.paintImmediately(Unknown Source)
       at javax.swing.RepaintManager.paintDirtyRegions(Unknown Source)
       at javax.swing.RepaintManager.paintDirtyRegions(Unknown Source)
       at javax.swing.RepaintManager.seqPaintDirtyRegions(Unknown Source)
       at javax.swing.SystemEventQueueUtilities$ComponentWorkRequest.run(Unknown Source)
       at java.awt.event.InvocationEvent.dispatch(Unknown Source)
       at java.awt.EventQueue.dispatchEvent(Unknown Source)
       at java.awt.EventDispatchThread.pumpOneEventForFilters(Unknown Source)
       at java.awt.EventDispatchThread.pumpEventsForFilter(Unknown Source)
       at java.awt.EventDispatchThread.pumpEventsForHierarchy(Unknown Source)
       at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
       at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
       at java.awt.EventDispatchThread.run(Unknown Source)
  Exception in thread "AWT-EventQueue-2" java.lang.ExceptionInInitializerError
       at java.lang.Class.forName0(Native Method)
       at java.lang.Class.forName(Unknown Source)
       at javax.media.jai.RegistryFileParser.getInstance(RegistryFileParser.java:216)
       at javax.media.jai.RegistryFileParser.registerDescriptor(RegistryFileParser.java:352)
       at javax.media.jai.RegistryFileParser.parseFile(RegistryFileParser.java:287)
       at javax.media.jai.RegistryFileParser.loadOperationRegistry(RegistryFileParser.java:47)
       at javax.media.jai.OperationRegistry.initializeRegistry(OperationRegistry.java:363)
       at javax.media.jai.JAI.<clinit>(JAI.java:560)
       at javax.media.jai.ParameterBlockJAI.<init>(ParameterBlockJAI.java:178)
       at mpu.uploadingAreaPanel.scaleImage(uploadingAreaPanel.java:234)
       at mpu.uploadingAreaPanel.scale2Fit(uploadingAreaPanel.java:265)
       at mpu.uploadingAreaPanel.paintComponent(uploadingAreaPanel.java:107)
       at javax.swing.JComponent.paint(Unknown Source)
       at javax.swing.JComponent.paintToOffscreen(Unknown Source)
       at javax.swing.BufferStrategyPaintManager.paint(Unknown Source)
       at javax.swing.RepaintManager.paint(Unknown Source)
       at javax.swing.JComponent._paintImmediately(Unknown Source)
       at javax.swing.JComponent.paintImmediately(Unknown Source)
       at javax.swing.RepaintManager.paintDirtyRegions(Unknown Source)
       at javax.swing.RepaintManager.paintDirtyRegions(Unknown Source)
       at javax.swing.RepaintManager.seqPaintDirtyRegions(Unknown Source)
       at javax.swing.SystemEventQueueUtilities$ComponentWorkRequest.run(Unknown Source)
       at java.awt.event.InvocationEvent.dispatch(Unknown Source)
       at java.awt.EventQueue.dispatchEvent(Unknown Source)
       at java.awt.EventDispatchThread.pumpOneEventForFilters(Unknown Source)
       at java.awt.EventDispatchThread.pumpEventsForFilter(Unknown Source)
       at java.awt.EventDispatchThread.pumpEventsForHierarchy(Unknown Source)
       at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
       at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
       at java.awt.EventDispatchThread.run(Unknown Source)
  Caused by: java.lang.NullPointerException
       at com.sun.media.jai.util.PropertyUtil.getString(PropertyUtil.java:167)
       at javax.media.jai.operator.JaiI18N.getString(JaiI18N.java:19)
       at javax.media.jai.operator.AbsoluteDescriptor.<clinit>(AbsoluteDescriptor.java:65)
       ... 30 more

  Not sure if this is the problem, but manifests are not appropriate ways to add jar's to an applet's classpath. Instead, add each jar to the archive attribute of the applet element in the web page.
  Something like..
  <applet
    class='JaiApplet'
    archive="our.jar,lib/jai_codec.jar,lib/jai_core.jar,lib/mlibwrapper_jai.jar"
    width='600'
    height='400'>
  </applet>

• Access denied error in feature receiver code when deploying-activating custom timer job feature

  hi,
  am creating a sp timer job for a updating a list.when i write this code in a  the event receiver featureactivated  method, and when i activate this feature , am getting access denied error.
  but, when i deploy this timer job [ without feature receiver] through powershell, it works.
  i didnt run  this feature receiver with runwithelevatedprivileges delegate - i think this wlll NOT solve the issue.
  from one of the posts i seen that, current logedin user needs to be part of config database roles. i didnt understand this point. how can i add my current loge din user into the sp_config database roles? is it through SSMS 2012?
  or
  is there any way to achieve without feature event receiver?
  otherwise i will be forced to write my business logic in a console appln and add this exe in a windows scheduler.!  
  help is appreciated! 

  hi Waqas,
  i have ran that powershell script you have pointed to me.
  function Set-RemoteAdministratorAccessDenied-False()
      [System.Reflection.Assembly]::LoadWithPartialName("Microsoft.SharePoint") > $null
      [System.Reflection.Assembly]::LoadWithPartialName("Microsoft.SharePoint.Administration") > $null
      # get content web service
      $contentService = [Microsoft.SharePoint.Administration.SPWebService]::ContentService
      # turn off remote administration security
      $contentService.RemoteAdministratorAccessDenied = $false
     $contentService.Update()         
  now i need to test the functionality from the event receiver after Activate feature button click.
  BTW, i have written a console appln for my business  logic and created  an exe.
  also, should i test it with a web application levels coped feature instead of  site collection level feature? this  thread talks abt the same:
  http://social.technet.microsoft.com/Forums/en-US/f41810ec-2348-436d-a574-c29656f3a567/access-denied-error-when-running-timer-job-from-feature-activated-event?forum=sharepointgeneralprevious
  thx