JAAS1.0 Sample - LoginContext - AccessControlException

I am getting the following exception when I tried out the Sample application with JAAS1.0
Exception in thread "main" java.lang.ExceptionInInitializerError: java.security.AccessControlException: access denied (java.security.SecurityPermission getProperty.combiner.provider)
at java.security.AccessControlContext.checkPermission(AccessControlContext.java:272)
at java.security.AccessController.checkPermission(AccessController.java:399)
at java.lang.SecurityManager.checkPermission(SecurityManager.java:545)
at java.security.Security.getProperty(Security.java:879)
at javax.security.auth.Subject$2.run(Subject.java:148)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.Subject.<clinit>(Subject.java:144)
at Sample.main(Sample.java:39)
I get this when I try to run with "-Djava.security.manager" option, else it works fine. So I believe that it is failing in security authentication somewhere.
I have checked the "/" in the path of the config and policy files and everything seems to be in order and still it seems to be failing when trying to create an instance of LoginContext.
I would appreciate any kind of input for this problem.
Thanks
- HP

hi..
i think that when you dont set the property java.security.manager there s no securityManger installed (you can check that at runtime). however when you set it, you need special permissions that you dont have unless you specify a basic policy file (i mean not the jaas one). in that policy try to grant your code the correct permissions and see if that works.
-- rhill

Similar Messages

JAAS 1.0 sample error

I was trying to run the JAAS1.0 sample on win2000, jdk1.3. I have followd the steps with regard to the classpath and editing the policy files (with '/') etc. But when I run it I get this error:
C:\jaas>java -classpath lib\jaas.jar;doc\samples\sample.jar;doc\samples\sample
action.jar;doc\samples\samplemodule.jar -Djava.security.manager -Djava.securit
y.policy=doc\samples\config\sample_java2.policy -Djava.security.auth.policy=doc\
samples\config\sample_jaas.policy -Djava.security.auth.login.config=doc\samples
\config\sample_jaas.config sample.Sample
Exception in thread "main" java.lang.ExceptionInInitializerError: java.security.
AccessControlException: access denied (java.util.PropertyPermission java.securit
y.auth.debug read)
at java.security.AccessControlContext.checkPermission(Unknown Source)
at java.security.AccessController.checkPermission(Unknown Source)
at java.lang.SecurityManager.checkPermission(Unknown Source)
at java.lang.SecurityManager.checkPropertyAccess(Unknown Source)
at java.lang.System.getProperty(Unknown Source)
at javax.security.auth.login.Debug$1.run(Debug.java:27)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.login.Debug.<clinit>(Debug.java:24)
at javax.security.auth.login.LoginContext.<clinit>(LoginContext.java:147
at sample.Sample.main(Sample.java:41)
Thanks a lot,
Sanjay

Can you post your conf and policy files.
Problems are often form there.
Yann

How to Use Weblogic6.1 JAAS Sample in Servlet???

Hi there,
I am now developing JAAS security service based on weblogic. Here is the problem I met with:
1. There is no problem when invoking JAAS sample from application.
But Subject.doAs() is denied when moving the application to servlet.
2. It is said that when invoking JAAS from servlet,
an authenticated subject will be returned using:
Subject subjectTest = loginContext.getSubject();
How can I store the subject into the session and be called later?
3. getUserPrincipal(), isUserInRole() are two important
methods in authenticaion on web services.
How is the user principal and role stored in the session?
4. Where can I find some tutorials on invoking JAAS service from servlet?
Thanks.
============================================================
This is my source code
package examples.security.jaas;
import javax.servlet.*;
import javax.servlet.http.*;
import javax.naming.Context;
import javax.naming.InitialContext;
import java.io.*;
import java.util.*;
import javax.security.auth.Subject;
import javax.security.auth.callback.Callback;
import javax.security.auth.callback.CallbackHandler;
import javax.security.auth.callback.TextOutputCallback;
import javax.security.auth.callback.TextInputCallback;
import javax.security.auth.callback.NameCallback;
import javax.security.auth.callback.PasswordCallback;
import javax.security.auth.callback.UnsupportedCallbackException;
import javax.security.auth.login.LoginContext;
import javax.security.auth.login.LoginException;
import javax.security.auth.login.FailedLoginException;
import javax.security.auth.login.AccountExpiredException;
import javax.security.auth.login.CredentialExpiredException;
public class SampleServlet extends HttpServlet
public void doGet(HttpServletRequest req, HttpServletResponse res)
throws ServletException, IOException
doPost(req, res);
System.out.println("1\n");
public void doPost(HttpServletRequest req, HttpServletResponse res)
throws ServletException, IOException
HttpSession session = req.getSession(true);
res.setContentType("text/html");
PrintWriter out = res.getWriter();
System.out.println("2\n");
String username = req.getParameter("username");
String password = req.getParameter("password");
String url = req.getParameter("url");
LoginContext loginContext = null;
Context ctx = null;
try
// Set server url for SampleLoginModule
Properties property = new Properties(System.getProperties());
property.put("weblogic.security.jaas.ServerURL", "http://localhost:7001");
System.setProperties(property);
property = new Properties(System.getProperties());
property.put("weblogic.security.SSL.ignoredHostnameVerification", "TRUE");
System.setProperties(property);
// Set configuration class name to load SampleConfiguration
property = new Properties(System.getProperties());
property.put("weblogic.security.jaas.Configuration", "examples.security.jaas.SampleConfig");
System.setProperties(property);
// Set configuration file name to load sample configuration policy file
property = new Properties(System.getProperties());
property.put("weblogic.security.jaas.Policy", "Sample.policy");
System.setProperties(property);
// Create LoginContext; specify username/password login module
loginContext = new LoginContext("SamplePolicy", new MyCallbackHandler());
catch(SecurityException se)
se.printStackTrace();
System.exit(-1);
catch(LoginException le)
le.printStackTrace();
System.exit(-1);
System.out.println("SampleServlet:" + username + "\n");
// Attempt authentication
try
// If we return without an exception, authentication succeeded
loginContext.login();
catch(FailedLoginException fle)
out.println("Authentication Failed, " + fle.getMessage());
System.exit(-1);
catch(AccountExpiredException aee)
out.println("Authentication Failed: Account Expired");
System.exit(-1);
catch(CredentialExpiredException cee)
out.println("Authentication Failed: Credentials Expired");
System.exit(-1);
catch(Exception e)
out.println("Authentication Failed: Unexpected Exception, " + e.getMessage());
e.printStackTrace();
System.exit(-1);
// Retrieve authenticated subject, perform SampleAction as Subject
out.println("Authentication succeeded " );
System.out.println("===============start to trace333\n");
Subject subject = loginContext.getSubject();
System.out.println("Subject:"+subject.toString()+"\n");
System.out.println("Subject.getclass:" + subject.getClass().getName());
SampleAction sampleAction = new SampleAction();
Subject.doAs(subject, sampleAction);
System.out.println("4\n");
// System.exit(0);
========================================================
void doPost(
HttpServletRequest req,
HttpServletResponse resp) {
Principal p =
req.getUserPrincipal();
auditCall(p.getName());
if (req.isUserInRole(
"ManagersRole")) {
// Do some Manager stuff
} else if
(ctx.isUserInRole(
"SalesRole")) {
// Do some Sales stuff
I'll describe where JAAS fits in to the web app model but please note that some of this should be automatically handled by your Servlet container.
Servlet engine (or your MVC servlet controller) receives a request for a protected resource.
It then checks for the existence of an "authenticated" token in the HttpSession.
If that token doesn't exist then it forwards the user to the login page.
The user fills in the form, and the login servlet receives the username and password at which point the JAAS Login Module is called with two callback objects: one that returns the username and one that returns the password.
The JAAS Module checks to see if the credentials are valid, if not, it throws an authentication exception.
Once control is returned to the Login Servlet, the Login Servlet would add the authenticated "Subject" to the HttpSession and if necessary, an authentication "token".
So, JAAS is really only called ONCE, not for every web request, and it's called
by the "logical" Login Servlet AFTER the user submits their login information.
JAAS is not used to check for whether the user is authenticated already or not.
the weblogic 6.1 server side exception
username: joeuser
password: joepass
<May 25, 2002 11:05:20 PM PDT> <Error> <HTTP> <[WebAppServletContext(2169486,exa
mplesWebApp,/examplesWebApp)] Servlet failed with Exception
java.lang.SecurityException: Attempting Privileged Action With Unauthenticated S
ubject
at javax.security.auth.Subject.doAs(Subject.java:74)
at examples.security.jaas.SampleClient.startWeb(SampleClient.java:200)
at jsp_servlet.__poc1._jspService(__poc1.java:92)
at weblogic.servlet.jsp.JspBase.service(JspBase.java:27)
at weblogic.servlet.internal.ServletStubImpl.invokeServlet(ServletStubIm
pl.java:265)
at weblogic.servlet.internal.ServletStubImpl.invokeServlet(ServletStubIm
pl.java:200)
at weblogic.servlet.internal.WebAppServletContext.invokeServlet(WebAppSe
rvletContext.java:2495)
at weblogic.servlet.internal.ServletRequestImpl.execute(ServletRequestIm
pl.java:2204)
at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:139)
at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:120)
>

If anyone of you, has got any answers related to the above mentioned problem, Post it here, Will folks from SUN respond to this at any time.
Regards
Jayendran

How to authorize my Login.jsp file to create LoginContext, deployed in war

I am currently doing a login process and I need to know how to give my Login.jsp file the permission to create a LoginContext. I packaged everything in a war file and deployed it to the server.
Specifically this is the error that I am getting:
type Exception report
message
description The server encountered an internal error () that prevented it from fulfilling this request.
exception
org.apache.jasper.JasperException: access denied (javax.security.auth.AuthPermission createLoginContext.studentportal)
     org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:384)
     org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:297)
     org.apache.jasper.servlet.JspServlet.service(JspServlet.java:247)
     javax.servlet.http.HttpServlet.service(HttpServlet.java:860)
     sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
     sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
     sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
     java.lang.reflect.Method.invoke(Method.java:585)
     org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:249)
     java.security.AccessController.doPrivileged(Native Method)
     javax.security.auth.Subject.doAsPrivileged(Subject.java:517)
     org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:282)
     org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:165)
root cause
java.security.AccessControlException: access denied (javax.security.auth.AuthPermission createLoginContext.studentportal)
     java.security.AccessControlContext.checkPermission(AccessControlContext.java:264)
     java.security.AccessController.checkPermission(AccessController.java:427)
     java.lang.SecurityManager.checkPermission(SecurityManager.java:532)
     javax.security.auth.login.LoginContext.init(LoginContext.java:224)
     javax.security.auth.login.LoginContext.(LoginContext.java:403)
     org.apache.jsp.Login_jsp._jspService(Login_jsp.java:55)
     org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:105)
     javax.servlet.http.HttpServlet.service(HttpServlet.java:860)
     org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:336)
     org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:297)
     org.apache.jasper.servlet.JspServlet.service(JspServlet.java:247)
     javax.servlet.http.HttpServlet.service(HttpServlet.java:860)
     sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
     sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
     sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
     java.lang.reflect.Method.invoke(Method.java:585)
     org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:249)
     java.security.AccessController.doPrivileged(Native Method)
     javax.security.auth.Subject.doAsPrivileged(Subject.java:517)
     org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:282)
     org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:165)
note The full stack trace of the root cause is available in the Sun-Java-System/Application-Server logs.
In my code in Login.jsp this is what I have at the top of the page:
<%@ page language="Java" import="portal.*,javax.security.auth.login.*" %>
<%
String s = request.getParameter("loginButton");
if (s != null) {
out.println("The user attempted to login");
String user = request.getParameter("username");
String psw = request.getParameter("psw");
AscCallbackHandler cbh = new AscCallbackHandler(user,psw);
LoginContext ctx;
try {
ctx = new LoginContext("studentportal",cbh);
} catch (LoginException le) {
out.println("Sorry, could NOT create context");
}The admin page tells me that portal is deployed at location:
${com.sun.aas.instanceRoot}/applications/j2ee-modules/portal
My entry in the server.policy file looks like so:
grant codeBase "file:/home/jay/sun/Creator2_1/SunAppServer8/domains/creator/applications/j2ee-modules/portal/WEB-INF/-" {
permission javax.security.auth.AuthPermission "createLoginContext.studentportal";
permission javax.security.auth.AuthPermission "modifyPrincipals";
permission javax.security.auth.AuthPermission "getLoginConfiguration";
Which gives the error shown above
Please help
Message was edited by:
jay_dawg
Placing code tags

java.lang.NoClassDefFoundError: org/jdom/JDOMException
     java.lang.Class.getDeclaredConstructors0(Native Method)
     java.lang.Class.privateGetDeclaredConstructors(Class.java:2357)
     java.lang.Class.getConstructor0(Class.java:2671)
     java.lang.Class.getConstructor(Class.java:1629)
     org.apache.jasper.compiler.Generator$GenerateVisitor.visit(Generator.java:1164)
     org.apache.jasper.compiler.Node$UseBean.accept(Node.java:1116)
     org.apache.jasper.compiler.Node$Nodes.visit(Node.java:2163)
     org.apache.jasper.compiler.Node$Visitor.visitBody(Node.java:2213)
     org.apache.jasper.compiler.Node$Visitor.visit(Node.java:2219)
     org.apache.jasper.compiler.Node$Root.accept(Node.java:456)
     org.apache.jasper.compiler.Node$Nodes.visit(Node.java:2163)
     org.apache.jasper.compiler.Generator.generate(Generator.java:3305)
     org.apache.jasper.compiler.Compiler.generateJava(Compiler.java:198)
     org.apache.jasper.compiler.Compiler.compile(Compiler.java:295)
     org.apache.jasper.compiler.Compiler.compile(Compiler.java:276)
     org.apache.jasper.compiler.Compiler.compile(Compiler.java:264)
     org.apache.jasper.JspCompilationContext.compile(JspCompilationContext.java:563)
     org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:303)
     org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:314)
     org.apache.jasper.servlet.JspServlet.service(JspServlet.java:264)
     javax.servlet.http.HttpServlet.service(HttpServlet.java:802)
     org.netbeans.modules.web.monitor.server.MonitorFilter.doFilter(MonitorFilter.java:368)and following by this

OLE not working in WU_TEST_106 sample form

Hi,
When I am running the WU_TEST_106.fmb sample form for the web util, Save to the file on Client (OLE) is
not working, no error.
When I debugg the form, it is getting hanged on the statement
result := GET_CUSTOM_PROPERTY(bean,1,propertyName);
So, I am not able to load data from data block to excel from the client machience.
Working with OC4J (not Application Server) , Forms 10g
Thanks in advance
Rizly

Hi,
Yes I got the errors , I am writing the erros down:
Oracle JInitiator: Version 1.3.1.22
Using JRE version 1.3.1.22-internal Java HotSpot(TM) Client VM
User home directory = C:\Documents and Settings\faisal
c: clear console window
f: finalize objects on finalization queue
g: garbage collect
h: display this help message
l: dump classloader list
m: print memory usage
q: hide console
s: dump system properties
t: dump thread list
x: clear classloader cache
0-5: set trace level to <n>
Exception occurred during event dispatching:
java.lang.ExceptionInInitializerError: java.security.AccessControlException: access denied (java.lang.RuntimePermission loadLibrary.jacob)
     at java.security.AccessControlContext.checkPermission(Unknown Source)
     at java.security.AccessController.checkPermission(Unknown Source)
     at java.lang.SecurityManager.checkPermission(Unknown Source)
     at java.lang.SecurityManager.checkLink(Unknown Source)
     at java.lang.Runtime.loadLibrary0(Unknown Source)
     at java.lang.System.loadLibrary(Unknown Source)
     at com.jacob.com.Dispatch.<clinit>(Dispatch.java:537)
     at oracle.forms.webutil.ole.OleFunctions.create_obj(Unknown Source)
     at oracle.forms.webutil.ole.OleFunctions.getProperty(Unknown Source)
     at oracle.forms.handler.UICommon.onGet(Unknown Source)
     at oracle.forms.engine.Runform.onGetHandler(Unknown Source)
     at oracle.forms.engine.Runform.processMessage(Unknown Source)
     at oracle.forms.engine.Runform.processSet(Unknown Source)
     at oracle.forms.engine.Runform.onMessageReal(Unknown Source)
     at oracle.forms.engine.Runform.onMessage(Unknown Source)
     at oracle.forms.engine.Runform.processEventEnd(Unknown Source)
     at oracle.ewt.lwAWT.LWComponent.redispatchEvent(Unknown Source)
     at oracle.ewt.lwAWT.LWComponent.processEvent(Unknown Source)
     at java.awt.Component.dispatchEventImpl(Unknown Source)
     at java.awt.Container.dispatchEventImpl(Unknown Source)
     at java.awt.Component.dispatchEvent(Unknown Source)
     at java.awt.LightweightDispatcher.retargetMouseEvent(Unknown Source)
     at java.awt.LightweightDispatcher.processMouseEvent(Unknown Source)
     at java.awt.LightweightDispatcher.dispatchEvent(Unknown Source)
     at java.awt.Container.dispatchEventImpl(Unknown Source)
     at java.awt.Window.dispatchEventImpl(Unknown Source)
     at java.awt.Component.dispatchEvent(Unknown Source)
     at java.awt.EventQueue.dispatchEvent(Unknown Source)
     at java.awt.EventDispatchThread.pumpOneEventForHierarchy(Unknown Source)
     at java.awt.EventDispatchThread.pumpEventsForHierarchy(Unknown Source)
     at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
     at java.awt.EventDispatchThread.run(Unknown Source)
Plz helpt me to solve the problem
Thnaks in advance
Rizly

Jaas sample progrma in weblogic 6.1 giving the following error java.lang.SecurityException: attempting to add an object which is not an instance of java.security.Principal to a Subjec

jaas sample progrma in weblogic 6.1 giving the following error java.lang.SecurityException:
attempting to add an object which is not an instance of java.security.Principal
to a Subjec
on runnig the program during the call of method Authenticate.authenticate(env,
subject); giving following exceptions Error: Login Exception on authenticate,
java.lang.SecurityException: attempting to add an object which is not an instance
of java.security.Principal to a Subjec t's Principal Set Authentication Failed:
Unexpected Exception, javax.security.auth.login.LoginExce ption: java.lang.SecurityException:
attempting to add an object which is not an instance of java.security.Principal
to a Subject's Principal Set javax.security.auth.login.LoginException: javax.security.auth.login.LoginExcepti
on: java.lang.SecurityException: attempting to add an object which is not an ins
tance of java.security.Principal to a Subject's Principal Set at examples.security.jaas.SampleLoginModule.login(SampleLoginModule.java
:192) at java.lang.reflect.Method.invoke(Native Method) at javax.security.auth.login.LoginContext.invoke(LoginContext.java:595)
at javax.security.auth.login.LoginContext.access$000(LoginContext.java:1 25) at
javax.security.auth.login.LoginContext$3.run(LoginContext.java:531) at java.security.AccessController.doPrivileged(Native
Method) at javax.security.auth.login.LoginContext.invokeModule(LoginContext.java
:528) at javax.security.auth.login.LoginContext.login(LoginContext.java:449) at
examples.security.jaas.SampleClient.main(SampleClient.java:96)
1)what is the reason for this problem
2)in weblogic document they told to edit server.policy file in webligic\lib folder
a)what the modification is needed in this file..?

Hi jerry
i already got that problem solved by removing jaas.jar file
from class path.
i don'nt how it is working with out in classpath...?
Jerry <[email protected]> wrote:
Hi Nivas,
I think that the problem you are seeing has something to do with the
placement of jaas.jar in your classpath
On WebLogic server, put jaas.jar in the classpath after weblogic.jar.
I would bet that you have it placed before weblogic.jar right now.
I don't think the exception that you're seeing right now has anything
to do with your weblogic.policy file right now, so I think it is
safe to not worry about it right now.
Hope this helps,
Joe Jerry

AccessControlException: applet, BC4J(as session bean),oracle db, on same server.

my enviroment
jdev9i_902
JDK1.3
oracle 9i
oc4j(Jdeveloper oc4j)
everything is on the same machine.
I have a BC4J deployed as Session Bean(BMT) on stanalone oc4j(jdeveloper oc4j)
an applet deployed to oc4j.
( I have gone through the HOW TO: Applet Deployment for JDev 3.1)
when I try to run the applet from IE (http://myhomeURL:8888/myroot/applet.html), I get the following error:(seems like that applet thinks that oracle db is on a different server than the app-server)
java.lang.ExceptionInInitializerError: java.security.AccessControlException: access denied (java.util.PropertyPermission tunneling.shortcut read)
     at java.security.AccessControlContext.checkPermission(Unknown Source)
     at java.security.AccessController.checkPermission(Unknown Source)
     at java.lang.SecurityManager.checkPermission(Unknown Source)
     at java.lang.SecurityManager.checkPropertyAccess(Unknown Source)
     at java.lang.System.getProperty(Unknown Source)
     at java.lang.Boolean.getBoolean(Unknown Source)
     at com.evermind.server.rmi.RMIInitialContextFactory.<clinit>(RMIInitialContextFactory.java:34)
     at java.lang.Class.forName0(Native Method)
     at java.lang.Class.forName(Unknown Source)
     at com.sun.naming.internal.VersionHelper12.loadClass(Unknown Source)
     at javax.naming.spi.NamingManager.getInitialContext(Unknown Source)
     at javax.naming.InitialContext.getDefaultInitCtx(Unknown Source)
     at javax.naming.InitialContext.init(Unknown Source)
     at javax.naming.InitialContext.<init>(Unknown Source)
     at oracle.jbo.client.remote.ejb.ias.AmHomeImpl.remoteLookup(AmHomeImpl.java:101)
     at oracle.jbo.client.remote.ejb.ias.AmHomeImpl.initRemoteHome(AmHomeImpl.java:68)
     at oracle.jbo.client.remote.ejb.ias.AmHomeImpl.<init>(AmHomeImpl.java:41)
     at oracle.jbo.client.remote.ejb.ias.InitialContextImpl.createJboHome(InitialContextImpl.java:17)
     at oracle.jbo.common.JboInitialContext.lookup(JboInitialContext.java:72)
     at javax.naming.InitialContext.lookup(Unknown Source)
     at oracle.jbo.common.ampool.DefaultConnectionStrategy.createApplicationModule(DefaultConnectionStrategy.java:102)
     at oracle.jbo.common.ampool.DefaultConnectionStrategy.createApplicationModule(DefaultConnectionStrategy.java:62)
     at oracle.jbo.common.ampool.ApplicationPoolImpl.instantiateResource(ApplicationPoolImpl.java:1431)
     at oracle.jbo.pool.ResourcePool.createResource(ResourcePool.java:290)
     at oracle.jbo.common.ampool.ApplicationPoolImpl.doCheckout(ApplicationPoolImpl.java:1082)
     at oracle.jbo.common.ampool.ApplicationPoolImpl.useApplicationModule(ApplicationPoolImpl.java:1669)
     at oracle.jbo.common.ampool.SessionCookieImpl.useApplicationModule(SessionCookieImpl.java:289)
     at oracle.jbo.common.ampool.SessionCookieImpl.useApplicationModule(SessionCookieImpl.java:269)
     at oracle.jbo.uicli.mom.JUMetaObjectManager.createApplicationObject(JUMetaObjectManager.java:345)
     at mypackage6.AppletBestill1View.init(AppletBestill1View.java:88)
     at sun.applet.AppletPanel.run(Unknown Source)
     at java.lang.Thread.run(Unknown Source)
cheers
Russel

Russel,
You are seeing bug 2087789. During JNDI lookup, certain system properties are being read. Since you are
running in a sandvox environment, AccessControl exception is being thrown.
You will have to either sign your jar files or provide a policy file on the client side which will relax
some of the restriction.
Sample Java2 policy file follows
/** Java2 policy for JAZN/OC4J **/
/** INSTRUCTIONS **/
@ /** - set ${oracle.ons.oraclehome} to your $ORACLE_HOME **/
/** this is automatically set by OPMN **/
@ /** - set ${localhost.ip} to your OC4J machine's IP address **/
@ /** - set ${oidhost.ip} to your Oid machine's IP address **/
@ grant codebase "file:${oracle.ons.oraclehome}/-" {
permission java.lang.RuntimePermission "createSecurityManager";
permission java.lang.RuntimePermission "setSecurityManager";
permission java.lang.RuntimePermission "createClassLoader";
permission java.util.PropertyPermission "*","read";
permission java.io.SerializablePermission "enableSubstitution";
/* JAAS */
grant codebase "file:${java.home}/jre/lib/ext/jaas.jar" {
permission java.security.AllPermission;
@ /* JAAS Login Modules */
grant codebase "file:${java.home}/jre/lib/ext/jaasmod.jar" {
permission java.security.AllPermission;
/* JAZN */
@ grant codebase "file:${oracle.ons.oraclehome}/j2ee/home/jazn.jar" {
permission java.security.AllPermission;
/* OC4J */
@ grant codebase "file:${oracle.ons.oraclehome}/j2ee/home/oc4j.jar" {
permission java.security.AllPermission;
/* DMS - J2EE */
@ grant codebase "file:${oracle.ons.oraclehome}/lib/dms.jar" {
permission java.security.AllPermission;
/* DMS - IAS */
@ grant codebase "file:${oracle.ons.oraclehome}/dms/lib/dms.jar" {
permission java.security.AllPermission;
/* ONS */
@ grant codebase "file:${oracle.ons.oraclehome}/opmn/lib/ons.jar" {
permission java.security.AllPermission;
/* JDBC */
@ grant codebase "file:${oracle.ons.oraclehome}/jdbc/lib/classes12.jar" {
permission java.security.AllPermission;
/* OJSP */
@ grant codebase "file:${oracle.ons.oraclehome}/j2ee/home/lib/ojsp.jar" {
permission java.security.AllPermission;
/* tools.jar - for compiling JSPs */
@ grant codebase "file:${oracle.ons.oraclehome}/j2ee/home/tools.jar" {
permission java.security.AllPermission;
/* J2EE/home */
@ grant codebase "file:${oracle.ons.oraclehome}/j2ee/home/-" {
/* DMS grants */
@ permission java.io.FilePermission "${oracle.ons.oraclehome}/j2ee/-
", "write,delete";
permission java.util.PropertyPermission "oracle.*", "read,write";
permission java.util.PropertyPermission "java.protocol.handler.pkgs",
"read,write";
permission java.util.PropertyPermission "transaction.log", "read";
permission java.lang.RuntimePermission "createClassLoader";
permission java.lang.RuntimePermission "setContextClassLoader";
permission java.util.PropertyPermission "http.singlethreaded.maxsize",
"read";
permission java.util.PropertyPermission "*", "read,write";
/* Default Grants to get things going */
permission java.security.SecurityPermission "*";
permission java.io.FilePermission "<<ALL FILES>>", "read";
permission java.lang.RuntimePermission "getProtectionDomain";
permission java.lang.RuntimePermission "getClassLoader";
permission java.lang.RuntimePermission "loadLibrary.ldapjclnt9";
@ permission javax.security.auth.AuthPermission "createLoginContext";
permission javax.security.auth.AuthPermission "doAs";
permission javax.security.auth.AuthPermission "doAsPrivileged";
permission javax.security.auth.AuthPermission "getSubject";
permission javax.security.auth.AuthPermission
"getSubjectFromDomainCombiner";
@ permission javax.security.auth.AuthPermission "getLoginConfiguration";
permission javax.security.auth.AuthPermission "getPolicy";
permission javax.security.auth.AuthPermission "modifyPrincipals";
permission java.util.PropertyPermission "java.home", "read";
permission java.util.PropertyPermission "user.home", "read";
permission java.util.PropertyPermission "user.dir", "read,write";
permission java.util.PropertyPermission "java.security.auth.policy",
"read,write";
@ permission java.net.SocketPermission "*.us.oracle.com",
"accept,resolve";
@ permission java.net.SocketPermission "127.0.0.1",
"accept,connect,resolve";
@ permission java.net.SocketPermission "${localhost.ip}",
"accept,connect,resolve";
@ permission java.net.SocketPermission "${oidhost.ip}",
"accept,connect,resolve";
/* JAZN Permissions */
permission oracle.security.jazn.JAZNPermission "getCredentials";
permission oracle.security.jazn.JAZNPermission "setCredentials";
permission oracle.security.jazn.JAZNPermission "getClearCredentials";
permission oracle.security.jazn.JAZNPermission
"setClearCredentialsNoCheck";
permission oracle.security.jazn.JAZNPermission "getProperty.*";
permission oracle.security.jazn.JAZNPermission "getPolicy";
permission oracle.security.jazn.JAZNPermission "getRealmManager";
permission oracle.security.jazn.policy.AdminPermission
"java.io.FilePermission$/tmp/*$read,write";
permission oracle.security.jazn.policy.AdminPermission
"java.io.FilePermission$/teams/jazn/*$read,write";
permission oracle.security.jazn.policy.AdminPermission
"oracle.security.jazn.realm.RealmPermission$*$createRealm,dropRealm,createR
ole,dropRole,modifyRealmMetaData";
permission oracle.security.jazn.realm.RealmPermission "*",
"createRealm";
permission oracle.security.jazn.realm.RealmPermission "*",
"dropRealm";
permission oracle.security.jazn.realm.RealmPermission "*",
"createRole";
permission oracle.security.jazn.realm.RealmPermission "*", "dropRole";
permission oracle.security.jazn.realm.RealmPermission "*",
"modifyRealmMetaData";
permission oracle.security.jazn.policy.RoleAdminPermission "*";
permission oracle.security.jazn.policy.AdminPermission
"oracle.security.jazn.policy.RoleAdminPermission$*";
my enviroment
jdev9i_902
JDK1.3
oracle 9i
oc4j(Jdeveloper oc4j)
everything is on the same machine.
I have a BC4J deployed as Session Bean(BMT) on stanalone oc4j(jdeveloper oc4j)
an applet deployed to oc4j.
( I have gone through the HOW TO: Applet Deployment for JDev 3.1)
when I try to run the applet from IE (http://myhomeURL:8888/myroot/applet.html), I get the following error:(seems like that applet thinks that oracle db is on a different server than the app-server)
java.lang.ExceptionInInitializerError: java.security.AccessControlException: access denied (java.util.PropertyPermission tunneling.shortcut read)
     at java.security.AccessControlContext.checkPermission(Unknown Source)
     at java.security.AccessController.checkPermission(Unknown Source)
     at java.lang.SecurityManager.checkPermission(Unknown Source)
     at java.lang.SecurityManager.checkPropertyAccess(Unknown Source)
     at java.lang.System.getProperty(Unknown Source)
     at java.lang.Boolean.getBoolean(Unknown Source)
     at com.evermind.server.rmi.RMIInitialContextFactory.<clinit>(RMIInitialContextFactory.java:34)
     at java.lang.Class.forName0(Native Method)
     at java.lang.Class.forName(Unknown Source)
     at com.sun.naming.internal.VersionHelper12.loadClass(Unknown Source)
     at javax.naming.spi.NamingManager.getInitialContext(Unknown Source)
     at javax.naming.InitialContext.getDefaultInitCtx(Unknown Source)
     at javax.naming.InitialContext.init(Unknown Source)
     at javax.naming.InitialContext.<init>(Unknown Source)
     at oracle.jbo.client.remote.ejb.ias.AmHomeImpl.remoteLookup(AmHomeImpl.java:101)
     at oracle.jbo.client.remote.ejb.ias.AmHomeImpl.initRemoteHome(AmHomeImpl.java:68)
     at oracle.jbo.client.remote.ejb.ias.AmHomeImpl.<init>(AmHomeImpl.java:41)
     at oracle.jbo.client.remote.ejb.ias.InitialContextImpl.createJboHome(InitialContextImpl.java:17)
     at oracle.jbo.common.JboInitialContext.lookup(JboInitialContext.java:72)
     at javax.naming.InitialContext.lookup(Unknown Source)
     at oracle.jbo.common.ampool.DefaultConnectionStrategy.createApplicationModule(DefaultConnectionStrategy.java:102)
     at oracle.jbo.common.ampool.DefaultConnectionStrategy.createApplicationModule(DefaultConnectionStrategy.java:62)
     at oracle.jbo.common.ampool.ApplicationPoolImpl.instantiateResource(ApplicationPoolImpl.java:1431)
     at oracle.jbo.pool.ResourcePool.createResource(ResourcePool.java:290)
     at oracle.jbo.common.ampool.ApplicationPoolImpl.doCheckout(ApplicationPoolImpl.java:1082)
     at oracle.jbo.common.ampool.ApplicationPoolImpl.useApplicationModule(ApplicationPoolImpl.java:1669)
     at oracle.jbo.common.ampool.SessionCookieImpl.useApplicationModule(SessionCookieImpl.java:289)
     at oracle.jbo.common.ampool.SessionCookieImpl.useApplicationModule(SessionCookieImpl.java:269)
     at oracle.jbo.uicli.mom.JUMetaObjectManager.createApplicationObject(JUMetaObjectManager.java:345)
     at mypackage6.AppletBestill1View.init(AppletBestill1View.java:88)
     at sun.applet.AppletPanel.run(Unknown Source)
     at java.lang.Thread.run(Unknown Source)
cheers
Russel

I couldn't run Java Tutorial Sample

I'am studying java with Tutorial but
I couldn't run this sample
OutputApplet.html
OutputApplet.java
Error : java.security.AccessControlException:access denied (java.lang.RuntimePermission accessClassInPackage.sun.jdbc.odbc)
Other files run successful so I think "I don't have Odbc Problem "
But this sample is applet and doesn't work
/** OutputApplet.java
* This is a demonstration JDBC applet.
* It displays some simple standard output from the Coffee database.
import java.applet.Applet;
import java.awt.Graphics;
import java.util.Vector;
import java.sql.*;
public class OutputApplet extends Applet implements Runnable {
private Thread worker;
private Vector queryResults;
private String message = "Initializing";
public synchronized void start() {
     // Every time "start" is called we create a worker thread to
     // re-evaluate the database query.
     if (worker == null) {
     message = "Connecting to database";
worker = new Thread(this);
     worker.start();
* The "run" method is called from the worker thread. Notice that
* because this method is doing potentially slow databases accesses
* we avoid making it a synchronized method.
public void run() {
     String url = "jdbc:odbc:MyAccess";
     String query = "select COF_NAME, PRICE from COFFEES";
     try {
     Class.forName("sun.jdbc.odbc.JdbcOdbcDriver");
     } catch(Exception ex) {
     setError("1: " + ex);
     return;
     try {
     Vector results = new Vector();
     Connection con = DriverManager.getConnection(url,"
MyUser","MyPass");
     Statement stmt = con.createStatement();
     ResultSet rs = stmt.executeQuery(query);
     while (rs.next()) {
          String s = rs.getString("COF_NAME");
          float f = rs.getFloat("PRICE");
          String text = s + " " + f;
          results.addElement(text);
     stmt.close();
     con.close();
     setResults(results);
     } catch(SQLException ex) {
     setError("SQLException: " + ex);
* The "paint" method is called by AWT when it wants us to
* display our current state on the screen.
public synchronized void paint(Graphics g) {
     // If there are no results available, display the current message.
     if (queryResults == null) {
     g.drawString(message, 5, 50);
     return;
     // Display the results.
     g.drawString("Prices of coffee per pound: ", 5, 10);
     int y = 30;
     java.util.Enumeration enum = queryResults.elements();
     while (enum.hasMoreElements()) {
     String text = (String)enum.nextElement();
     g.drawString(text, 5, y);
     y = y + 15;
* This private method is used to record an error message for
* later display.
private synchronized void setError(String mess) {
     queryResults = null;
     message = mess;
     worker = null;
     // And ask AWT to repaint this applet.
     repaint();
* This private method is used to record the results of a query, for
* later display.
private synchronized void setResults(Vector results) {
     queryResults = results;
     worker = null;
     // And ask AWT to repaint this applet.
     repaint();

Friend try using <code> </code> when you post your program.
It posts in a better Readable format.
Ex.
public class see
public static void main(String[] args)

Logging-helloworld gets java.security.AccessControlException

Hello,
I deployed the logging-helloworld.ear from the Sun ONE AS 7 examples.
When I click the process button at the welcome screen I get these error messages. Has anyone the same problem and maybe an explanation with a solution?
SEVERE: StandardWrapperValve[LoggingServlet]: Servlet.service() for servlet LoggingServlet threw exception
java.security.AccessControlException: access denied (java.util.logging.LoggingPermission control)
at java.security.AccessControlContext.checkPermission(AccessControlContext.java:270)
at java.security.AccessController.checkPermission(AccessController.java:401)
at java.lang.SecurityManager.checkPermission(SecurityManager.java:542)
at java.util.logging.LogManager.checkAccess(LogManager.java:759)
at java.util.logging.Logger.removeHandler(Logger.java:1147)
at samples.logging.simple.servlet.GreeterServlet.initLog(GreeterServlet.java:117)
at samples.logging.simple.servlet.GreeterServlet.doGet(GreeterServlet.java:53)
at samples.logging.simple.servlet.GreeterServlet.doPost(GreeterServlet.java:97)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:760)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at org.apache.catalina.core.StandardWrapperValve.invokeServletService(StandardWrapperValve.java:720)
at org.apache.catalina.core.StandardWrapperValve.access$000(StandardWrapperValve.java:118)
at org.apache.catalina.core.StandardWrapperValve$1.run(StandardWrapperValve.java:278)
at java.security.AccessController.doPrivileged(Native Method)
at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:274)
at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:505)
at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:212)
at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:505)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:203)
at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:505)
at com.iplanet.ias.web.connector.nsapi.NSAPIProcessor.process(NSAPIProcessor.java:157)
at com.iplanet.ias.web.WebContainer.service(WebContainer.java:598)
Regards

I thought by selecting 'System.err.println' it should work for sure. But it does not .
When I add the grant codeBase lines, every selection works.
But it worked not with:
grant codeBase "file:${com.sun.aas.instanceRoot}/domains/domain1 ...
It only worked with :
grant codeBase "file:D:/Sun/AppServer7/domains/domain1 ...
Where is this env entry set ?
Regards

JAAS NT Sample

I downloaded and installed the JAAS 1.0 jar. I then configured and ran the sample program and it worked fine. But when I changed the sample_jaas.config file to use com.sun.security.auth.module.NTLoginModule , I now get :
Unexpected Exception - unable to continue
javax.security.auth.login.LoginException: java.security.AccessControlException:
access denied (java.lang.RuntimePermission loadLibrary.nt)
Has anyone gotten the NT authentication piece to work? Can they share their experience with me?
Thanks,
Scott

Hi, Scott !
There is how...
If %JAVA_HOME% refers to the directory where the JDK was installed,
1) Copy jaasmod.jar and nt.* ( from jaasmod1_0-win.zip ) to %JAVA_HOME%\jre\lib\ext
2) Add following to sample_java2.policy:
/* grant the NTLoginModule AllPermission */
grant codebase "file:%AVA_HOME%/jre/lib/ext/jaasmod.jar" {
permission java.security.AllPermission;
permission java.lang.RuntimePermission "loadLibrary.nt";
3) Run sample.bat
I downloaded and installed the JAAS 1.0 jar. I then
configured and ran the sample program and it worked
fine. But when I changed the sample_jaas.config file
to use com.sun.security.auth.module.NTLoginModule , I
now get :
Unexpected Exception - unable to continue
javax.security.auth.login.LoginException:
java.security.AccessControlException:
access denied (java.lang.RuntimePermission
loadLibrary.nt)
Has anyone gotten the NT authentication piece to work?
Can they share their experience with me?
Thanks,
Scott

How do I find, at-a-glance, the sample size used in several music files?

How do I find, at-a-glance, the sample size used in several music files?
Of all the fields available in a FInder Search, "Sample Size" is not available. Finder does offer a "Bits per Sample" field, but it only recognized graphic files and not music files.
Running 10.8.5 on an iMac i5.
I did search through a couple of communities but came up empty.
Thank you,
Craig

C-squared,
There is no View Option to allow display of a column of sample size.
For WAV or Apple Lossless files, it is available on the Summary tab (one song at a time, as you know). For MP3 and AAC it is not available at all.
You can roughly infer it from the files that are larger than expected for their time.
99% of the music we use is at the CD standard of 16-bit, so I can guess that displaying it has never been a priority. However, if you want to make a suggestion to Apple, use this link:
http://www.apple.com/feedback/itunesapp.html

COGS update on other GL Account at the time of Free goods or Sample goods

Hello,
In sales process, Usually the at the time of Delivery, material document is created as
DR COGS
CR INVENTORY
But in the case of free goods or bonus goods or samples: the account should not determines COGS instead it should determine another GL Account called as Free good -COGS expense A/c.
How can we solve the issue.
Regards,
SK

Hi Yasar,
You need to create a new routine for calculate type.
Do as below:
1. Go to VOFM>Formulas>calc.rule Rebate InKd to create a new routine for calculate type. for example 601.
2. add the following code in this routine 601 and then save.
USING L_FRM STRUCTURE KONDN_FRM.
DATA: VORKOMMA LIKE KONDN-KNRMM,
NACHKOMMA LIKE KONDN-KNRMM.
L_FRM-NRMENGE = 0.
L_FRM-NRRUND = 0.
L_FRM-NRMENGE = ( L_FRM-MGLME / L_FRM-KNRNM * L_FRM-KNRZM ).
business rounding
VORKOMMA = FLOOR( L_FRM-NRMENGE ).
L_FRM-NRRUND = L_FRM-NRMENGE - VORKOMMA.
L_FRM-NRMENGE = VORKOMMA.
3. Select routine 601 in field "Calc.Rule" when you create free goods condition record.
Hope it helps.

Error in compiling Photoshop CC 2014 sample project

Hi,
I am trying to compile SDK sample project "outbound". but it is showing errors, as "Parse Issue: Unknown type name 'DialogPtr' " in DialogUtilities.h .
DialogUtilities.h file is in "Adobe Photoshop CC 2014:photoshopsdk:pluginsdk:samplecode:common:includes".
even if I add this path in project settings it still shows the errors.
how can I make this work?
I am using Photoshop CC 2014 and Xcode version is 4.6.3 (4H1503)
If you have any idea regarding project settings then please let me know.
Thanks and regards,
Priyanka.

Are you using the CC 2014 release of the SDK?
The DialogUtilities.h for mac do not work. They are the old Carbon API's. See the Dissolve example for an Objective-C UI.
I would comment out the DialogUtilities.h include and other associated headers for Carbon UI. Some Carbon calls still work that are unrelated to UI.

How to log in to Service Desk to create sample message to SAP?

Dear all,
How to log in to Service Desk under my Solution Manager server to create sample message to SAP under Component: SV-SMG-SUP?
Regards
GN

Hi GN,
You have different options to create messages in test component SV-SMG-SUP-TST:
1. if you are on 7.1 you can create message using CRM_UI
2. If you are using lower vrsion then either you can create message using Workcenter or using transaction NOTIF_CREATE or using menu --> Help --> Create support message.
Thanks
Regards,
Vikram

SSO java sample application problem

Hi all,
I am trying to run the SSO java sample application, but am experiencing a problem:
When I request the papp.jsp page I end up in an infinte loop, caught between papp.jsp and ssosignon.jsp.
An earlier thread in this forum discussed the same problem, guessing that the cookie handling was the problem. This thread recommended a particlar servlet , ShowCookie, for inspecting the cookies for the current session.
I have installed this cookie on the server, but don't see anything but one cookie, JSESSIONID.
At present I am running the jsp sample app on a Tomcat server, while Oracle 9iAS with sso and portal is running on another machine on the LAN.
The configuration of the SSO sample application is as follows:
Cut from SSOEnablerJspBean.java:
// Listener token for this partner application name
private static String m_listenerToken = "wmli007251:8080";
// Partner application session cookie name
private static String m_cookieName = "SSO_PAPP_JSP_ID";
// Partner application session domain
private static String m_cookieDomain = "wmli007251:8080/";
// Partner application session path scope
private static String m_cookiePath = "/";
// Host name of the database
private static String m_dbHostName = "wmsi001370";
// Port for database
private static String m_dbPort = "1521";
// Sehema name
private static String m_dbSchemaName = "testpartnerapp";
// Schema password
private static String m_dbSchemaPasswd = "testpartnerapp";
// Database SID name
private static String m_dbSID = "IASDB.WMDATA.DK";
// Requested URL (User requested page)
private static String m_requestUrl = "http://wmli007251:8080/testsso/papp.jsp";
// Cancel URL(Home page for this application which don't require authentication)
private static String m_cancelUrl = "http://wmli007251:8080/testsso/fejl.html";
Values specified in the Oracle Portal partner app administration page:
     ID: 1326
     Token: O87JOE971326
     Encryption key: 67854625C8B9BE96
     Logon-URL: http://wmsi001370:7777/pls/orasso/orasso.wwsso_app_admin.ls_login
     single signoff-URL: http://wmsi001370:7777/pls/orasso/orasso.wwsso_app_admin.ls_logout
     Name: testsso
     Start-URL: http://wmli007251:8080/testsso/
     Succes-URL: http://wmli007251:8080/testsso/ssosignon.jsp
     Log off-URL: http://wmli007251:8080/testsso/papplogoff.jsp
Finally I have specified the cookie version to be v1.0 when running the regapp.sql script. Other parameters for this script are copied from the values specified above.
Unfortunately the discussion in the earlier thread did not go any further but to recognize the cookieproblem, so I am now looking for help to move further on from here.
Any ideas will be greatly appreciated!
/Mads

Pierre - When you work on the sample application, you should test the pages in a separate browser instance. Don't use the Run Page links from the Builder. The sample app has a different authentication scheme from that used in the development environment so it'll work better for you to use a separate development browser from the application testing browser. In the testing browser, to request the page you just modified, login to the application, then change the page ID in the URL. Then put some navigation controls into the application so you can run your page more easily by clicking links from other pages.
Scott

JAAS1.0 Sample - LoginContext - AccessControlException

Similar Messages

Maybe you are looking for