Offline security error thrown with ExternalInterface

Similar Messages

• Failed to add app with security error related with c2wts

  Right now, we are facing some weird issue when adding our app to customer's SharePoint site.  When site collection admin clicks our app to add it, he would get a popup page with title "Access Required" and message "Sorry, you
  don't have access to this page", however he is already site collection admin.
  At the SharePoint logs, we saw the following exceptions:
  SPSecurityContext: Could not retrieve a valid windows identity for username 'company\user' with UPN '[email protected]'. UPN is required when Kerberos constrained delegation is used. Exception: System.ServiceModel.FaultException`1[System.ServiceModel.ExceptionDetail]: WTS0003: The caller is not authorized to access the service. (Fault Detail is equal to An ExceptionDetail, likely created by IncludeExceptionDetailInFaults=true, whose value is: System.UnauthorizedAccessException: WTS0003: The caller is not authorized to access the service.
  at Microsoft.IdentityModel.WindowsTokenService.CallerSecurity.CheckCaller(WindowsIdentity callerIdentity)
  at Microsoft.IdentityModel.WindowsTokenService.S4UServiceContract.PerformLogon(Func`1 logonOperation, Int32 pid)
  at SyncInvokeUpnLogon(Object , Object[] , Object[] )
  at System.ServiceModel.Dispatcher.SyncMethodInvoker.Invoke(Object instance, Object[] inputs, Object[]& outputs)
  at System.ServiceModel.Dispatcher.DispatchOperationRuntime.InvokeBegin(MessageRpc& rpc)
  at System.ServiceModel.Dispatcher.ImmutableDispatchRuntime.ProcessMessage5(MessageRpc& rpc)
  at System.ServiceModel.Dispatcher.ImmutableDispatchRuntime.ProcessMessage31(MessageRpc& rpc)
  at System.ServiceModel.Dispatcher.MessageRpc.Process(Boolean isOperationContextSet))..
  (note, I changed the user name to some generic name there)
  after that, we also saw another exception:
  No windows identity for company\user
  Access Denied. Exception: Attempted to perform an unauthorized operation., StackTrace:
  at Microsoft.SharePoint.Utilities.SPUtility.HandleAccessDenied(Exception ex)
  at Microsoft.SharePoint.SPAppPrincipalPermissionsManager.UpdateAppOnlyPolicy(SPAppPrincipalInfo appPrincipal, Boolean allowAppOnlyPolicy)
  at Microsoft.SharePoint.ApplicationPages.AppAuthorizePageBase.GrantAppAccess()
  at Microsoft.SharePoint.ApplicationPages.AppInvPage.BtnAllow_Click(Object sender, EventArgs e)
  at System.Web.UI.WebControls.Button.RaisePostBackEvent(String eventArgument)
  at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
  at System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
  at System.Web.UI.Page.ProcessRequest()
  at System.Web.UI.Page.ProcessRequest(HttpContext context)
  at System.Web.HttpApplication.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
  at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
  at System.Web.HttpApplication.PipelineStepManager.ResumeSteps(Exception error)
  at System.Web.HttpApplication.BeginProcessRequestNotification(HttpContext context, AsyncCallback cb)
  at System.Web.HttpRuntime.ProcessRequestNotificationPrivate(IIS7WorkerRequest wr, HttpContext context)
  at System.Web.Hosting.PipelineRuntime.ProcessRequestNotificationHelper(IntPtr rootedObjectsPointer, IntPtr nativeRequestContext, IntPtr moduleData, Int32 flags)
  at System.Web.Hosting.PipelineRuntime.ProcessRequestNotification(IntPtr rootedObjectsPointer, IntPtr nativeRequestContext, IntPtr moduleData, Int32 flags)
  at System.Web.Hosting.UnsafeIISMethods.MgdIndicateCompletion(IntPtr pHandler, RequestNotificationStatus& notificationStatus)
  at System.Web.Hosting.UnsafeIISMethods.MgdIndicateCompletion(IntPtr pHandler, RequestNotificationStatus& notificationStatus)
  at System.Web.Hosting.PipelineRuntime.ProcessRequestNotificationHelper(IntPtr rootedObjectsPointer, IntPtr nativeRequestContext, IntPtr moduleData, Int32 flags)
  at System.Web.Hosting.PipelineRuntime.ProcessRequestNotification(IntPtr rootedObjectsPointer, IntPtr nativeRequestContext, IntPtr moduleData, Int32 flags) .
  I did some reading over the SharePoint code and also searched over internet, I found out this link:
  Adding App Causes Security Error where the similar error is thrown as well and he fixed the issue by reconfiguring the c2wts services.  His issue is slightly different from mine. In his case, end users won't be able to add in the first time
  and they would get "You Can't Add This App Here" message while in our case the error is thrown during adding the app.
  Why we would need the c2wts services here for adding an app if user is already logged in SharePoint via windows authentication?  Could someone confirm that would be the root cause for this failure since I also see the stack related " at Microsoft.SharePoint.SPAppPrincipalPermissionsManager.UpdateAppOnlyPolicy(SPAppPrincipalInfo
  appPrincipal, Boolean allowAppOnlyPolicy)", just wonder if AppOnlyPolicy=true which our app requires has anything to do with this as well. Again, I could not find anything related article about that specific configuration is required to allow app with
  AppOnlyPolicy.
  Another weird thing is that it only happens at sites with managed path. At root site, the app could be added without any problem.
  Any suggestions are highly welcome and really appreciated. This is on a big customer. :-) Thanks in advance for your insights.

  This issue can occur when you change the name of the "Application Name" within Visual Studio, then deploy to BizTalk with the new name.  Problems is the DLLs are still assocaited with that earlier deployment name in BizTalk.  So go into BizTalk
  Admin Console, then navigate to:  BizTalk Group - Applications - Then for each application check the "Resources" folder.  Under one of these folders you should see your DLLs are already assigned to one of these other BTS apps.  So you need to
  delete the resources from the app (or delete the other apps) then your new deployment name will work.

• Getting error while configuring SharePoint 2013 that "SocketException was thrown with SocketError ConnectionRefused"

  Hi,
  I am installing the SharePoint-2013 on development virtual machine. and i have the following environment.
  Windows server : 2012
  SQL server 2012(enterprise edition)
  Active directory(domain) is configured on same server.
  for SharePoint configuration purpose i had  created SP_farm account with SQL server DB_creator,security admin etc rights.
  even though m facing this issue related with socket exception.
  Error in log file :
  04/08/2014 12:26:33  1  INF            Trying to see if port 35513 is free on machine SHAREPOINT2013.  Min port we will try is
   1024, Max port we will try is 49151
  04/08/2014 12:26:35  1  INF            A SocketException was thrown with SocketError ConnectionRefused
  04/08/2014 12:26:35  1  INF            Connect has been refused for port 35513, so we will consider this a free port
  04/08/2014 12:26:35  1  INF            Have not found a free port yet.  Number of tries is 1.  Min port we will try is 1024, Max
   port we will try is 49151
  04/08/2014 12:26:35  1  INF            Adding port 35513 to the exclusion list so it is not chosen again during this run
  So m bit confuse about is this error related to network issue or something else that i have to configure on server.
   any suggestion or reply will be appreciated..!:-) 
  Shiv

  Is the firewall turned on?
  Regards, Matthew
  MCPD | MCITP
  My Blog
  View
  Matthew Yarlett's profile
  See my webpart on the TechNet Gallery that allows administrative users to upload, crop and format user profile photos. Check it out here:
  Upload and Crop User Profile Photos

• Security Error when creating a web service with Flex

  Hello comminuty.
  I'm using Flex to create a standalone application and I have to use web services to retrieve data from SAP.
  I used the bapi bapi_flight_getlist to create an associated WS that works fine (tested with the Eclipse's WS Explorer).
  In Flex Builder, I use the following code to create my web service:
       <mx:WebService
            showBusyCursor="true"
            id="service"           
            wsdl="{wsdl}"
            result="resultCreateWSHandler(event);"
            fault="faultCreateWSHandler(event);">
              <mx:operation name="FlightGetList"
                   result="resultWSHandler(event)"
                   fault="faultWSHandler(event)"></mx:operation>                    
          </mx:WebService>
  And this is the error I'm getting:
  (mx.messaging.messages::ErrorMessage)#0
    body = (null)
    clientId = "DirectHTTPChannel0"
    correlationId = "E578ED8C-EF29-44E7-8D57-57B4DB6EB613"
    destination = ""
    extendedData = (null)
    faultCode = "Channel.Security.Error"
    faultDetail = "Destination: DefaultHTTP"
    faultString = "Security error accessing url"
    headers = (Object)#1
      DSStatusCode = 0
    messageId = "6E7AC45E-418D-90CD-96AD-57B52DB1DAF4"
    rootCause = (flash.events::SecurityErrorEvent)#2
      bubbles = false
      cancelable = false
      currentTarget = (flash.net::URLLoader)#3
        bytesLoaded = 0
        bytesTotal = 0
        data = (null)
        dataFormat = "text"
      eventPhase = 2
      target = (flash.net::URLLoader)#3
      text = "Error #2048: Violation de la sécurité Sandbox : http://localhost:8300/ztest2/bin-debug/ztest2.swf ne peut pas charger de données à partir de http://XXXX:8006/sap/bc/srt/wsdl/bndg_DEB8A28C2E19EEF19C080050568D135B/wsdl11/allinone/ws_policy/document?sap-client=800."
      type = "securityError"
    timestamp = 0
    timeToLive = 0
  Translation: "Error #2048: Sandbox security violation: http:....swf cannot load data from http:...client=800"
  Would any of you have an idea about what is causing this error??
  Thanks for any help you can provide.
  Regards,
  C.

  Hi Cristina
  Did your flex application worked. i am also having same problm. cant access the BAPI from standalone flex application.
  Jay

• REP-56071: Security check failed with error message: Error code30009 - Gene

  REP-56071: Security check failed with error message: Error code30009 - Generic access check failed..
  Hello,
  I am also receiving the above error - these reports are deployed on our Portal - to which all registered SSO users should have access to.
  one more thing...
  We obtain the error only when execute under some "load", example: 15 reports running simultaneously.
  Tx,
  Diego.

  I am also facing this problem - I've deployed the reports on the Portal and authenticated users can access the reports.
  The problem is that when any authenticated user tries to access the report, on his very first access this error is shown.
  REP-56071: Security check failed with error message: Error code30009 - Generic access check failed..
  But after the user click on the Personalize link of the portlet and specify the parameters values(which are empty initially) then report runs fine.
  Plz let me know the solution as no user will like to see this error message for the first time he opens the report.
  Regards.

• Security API failed with error 60008

  HI, I have been tryng to wrap some files (or something like that) but when I select the files it comes up with an error box saying "security API failed with error 60008" can anyone help me fix this or tell me what it is?

  Launch Disk Utility and run Repair Permissions on the startup volume. Try whatever you were doing again. If there's no change, continue as follows.
  Triple-click the line below to select it:
  /private/tmp
  Right-click or control-click the highlighted line and select
  Services ▹ Show Info
  from the contextual menu.* An Info dialog should open.
  Does the dialog show "You can read and write" in the Sharing & Permissions section?
  In the General section, is the box labeled Locked checked?
  *If you don't see the contextual menu item, copy the selected text to the Clipboard (command-C). Open a TextEdit window and paste into it (command-V). Select the line you just pasted and continue as above.

• REP-56071:Security check failed with error message:No privilege to do oper

  Hi
  I get the following error when I try to see the job status (..../rwservlet/showjobs?)
  REP-56071: Security check failed with error message: No privilege to do the operation
  I also get the following error on running any report on this server:
  REP-110: Unable to open file 'Test.rdf'.
  REP-1070: Error while opening or saving a document.
  REP-0110: Unable to open file 'Test.rdf'.
  Anyone seen the same issue before?

  Fugured it out - had issues with reportserver.conf file.
  _*                                                                                                                                                                                                   

• Error "server with secure communication unavailable" when adding iCloud account to iCal

  I have set up iCloud and activated the Calendars option, but can see iCloud in iCal. Whenever I try to manually add an iCloud account from the iCal preferences I get an error "Server with secure communication unavailable" and it won't add the iCloud account.
  Does anybody have a soluton for this issue?

  Hi I think I have tried this correctly but it just doesn't work for me I am replacing with:
  https://www.google.com/calendar/dav/[email protected]/user//www.google.com/calendar/dav/[email protected]/user
  my company email address and I have tried with /user at the end and without and am not using gmail but still no go, I have just upgraded to Air and its driving me crackers that this no longer works.
  Any other suggestions welcome :/

• REP-56071: Security check failed with error message

  Hi!
  We have an Oracle 9iAS R2 v9.0.2.2 installation on Linux (Red Hat Advanced Server 2.1). We have installed PatchSet 2703110, 2581587 and 2842923.
  Oracle9i Reports version is: 9.0.2.2.0
  iAS and Infrastructure are on separate hosts.
  Trying to run Reports demo test.jsp or test.rdf we get the following message:
  javax.servlet.jsp.JspException: REP-56071: Security check failed with error message: Error code30001 - Cannot access the server:rep_dkipcias
  In package:wwv_rw_usr function:security_check
  Command line is: server=rep_dkipcias report=/repdemo/examples/Tools/test.jsp rundate="29-MAY-03 09:05:01"
  Found on Metalink the following Note: 216847.1
  This recommends to comment out the security and destination tags in ORACLE_MIDDLETIER_HOME/report/conf/<repserver>.conf file
  After commenting them out reports works fine.
  BUT
  at the end of the note there is a note which states that "Commenting out the security tag removes the integration of the reports server and portal."
  We need reports integration with Portal. We need SSO as well.
  Could you give any workaround for this problem?
  PS.: I have red Note:213171.1, Note:216118.1, http://otn.oracle.com/products/reports/htdocs/getstart/whitepapers/securing9i.pdf and BUG:2645629
  None of them gave any solution for the problem
  Thanks in advance,
  Andras Weintrauth

  Hi Jeff,
  Q(1): Yes.
  (Report Name and Servers tab)
  Report Server: REP_DKIPCIAS
  Oracle Reports File Name: test.jsp
  Execute: as JSP
  (Other tabs)
  Default values. Unchanged.
  Q(2): (Acces Tab of Report Component)
  Publish to Portal = checked
  Inherit Privileges from Portal DB Provider = checked
  (Acces Tab of Report Server Component)
  Inherit Privileges from Portal DB Provider = checked
  (SSO User)
  The user I try to run the report with has the following group assignments:
  Privilege Group
  PORTAL_ADMINISTRATORS
  PORTAL_DEVELOPERS
  DBA
  PORTLET_PUBLISHERS
  Additional Info:
  To be more specific: The mentioned security check failure exists outside of Portal as well. Eg. when we try to run the default portal test examples (test.jsp, test.rdf) from the iAS home page Demonstartions tab.
  Thank You in advance,
  Andras

• SVG Security Error when using a swf with svg in a web application

  Anymap works fine when generating the swf, it's great !
  But when i try to use the swf in a web aplication, i have this error : SVG Security Error, check the web server cross-domain policy file allows access.
  I copied the .jpg and .svg at the good repertories.
  But i had this crossdomain:xml <?xml version="1.0"?>
  <!DOCTYPE cross-domain-policy SYSTEM
  "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
  <cross-domain-policy>
  <allow-http-request-headers-from domain="" headers="" secure="false" />
  <allow-access-from domain="*" secure="false" />
  </cross-domain-policy>
  Thanks in advance and sorry for my poor english.

  You might also want to turn on [Adobe Flash policy file logging|http://www.adobe.com/devnet/flashplayer/articles/fplayer9_security_05.html#_Using_Logging].
  We recommend uninstalling the Flash Player before installing the Debug Flash Player.
  Uninstall Flash Player using the following link:
  [http://download.macromedia.com/pub/flashplayer/current/uninstall_flash_player.exe|http://download.macromedia.com/pub/flashplayer/current/uninstall_flash_player.exe]
  Regards,
  Matt

• Security error accessing url with crossdomain.xml in InDesign FlexUI

  I'm evaluating Flex as a UI component in an InDesign script. Part of what it needs to do involves retrieving some data from a web server to be displayed in a datagrid. I've written a server running on localhost that will provide this data. Everything works fine when I run the component from Flash Builder or from the HTML wrapper page that is generated during the release build, but once I copy the .swf to the InDesign scripts folder and load it as part of a ScriptUI component, I get a fault response ("security error accessing url") when connecting to the server. I'm running this bit of code in from my Flex client:
  var h:HTTPService = new HTTPService();
  h.url = "http://localhost:8080/elements";
  h.method = "GET";
  h.addEventListener("result", getElementsResult);
  h.addEventListener("fault", getElementsFault);
  h.send();
  From what I've read, I may need a crossdomain.xml file at the root of my host, so I've added that to the server and can see that it is being accessed whenever the flex component attempts to connect to the service.
  My crossdomain.xml file is:
  <?xml version="1.0" ?>
  <!DOCTYPE cross-domain-policy SYSTEM 'http://www.adobe.com/xml/dtds/cross-domain-policy.dtd'>
  <cross-domain-policy>
      <allow-access-from domain="*"/>
  </cross-domain-policy>
  which seems to be correct, from what I understand. I've also tried quite a few other variations (setting explicit site-control policies, etc.). I'm quite new to Flex/Flash and I'm basically stuck at this point. Where might I be going wrong?

  I think sleeping on this one helped... I found that if I serve the .swf from my web server then everything works out fine. Loading it from the local filesystem seems to have been the problem.

• Map Viewer Errors Thrown

  This is a followup on the post "JAVA Error Messages Thrown When Deploying Map Viewer," from Jun 12, 2008 11:22 AM. (reprinted below)
  Basically there are a number of java errors thrown when attempting to install Mapviewer. Has anyone else come across similar error messages? What do they mean? I can't imagine this hasn't happened before.
  Also, if anyone might have a clue or a direction to point me in concerning this matter, that would really be greatly appreciated. I really need assistance here, as I really have no clue what is going on, and I haven't managed to find anything on the Web concerning these specific error messages.
  Thank you,
  John
  The following is the previous post I am referring to:
  Hello,
  Thank you for taking the time to assist with this problem.
  I am fairly new to java, and so I have little understanding of what certain error messages mean after I deploy Map Viewer through oc4j.
  I have poked around on the Web enough to have a feeling that the application is searching for certain necessary classes, and that it can't fully deploy without these classes. If this is true, where are these classes located and/or how do I point to them so that the application can find them?
  There are one group of errors thrown when attempting to deploy Map Viewer, and then another set when attempting to create a "dynamic data source" from the Map Viewer admin page.
  Following are the error messages:
  (happens upon attempted deployment:)
  08/06/12 11:08:22 java.lang.NoClassDefFoundError
  08/06/12 11:08:22 at java.lang.Class.forName0(Native Method)
  08/06/12 11:08:22 at java.lang.Class.forName(Class.java:164)
  08/06/12 11:08:22 at java.awt.Toolkit$2.run(Toolkit.java:821)
  08/06/12 11:08:22 at java.security.AccessController.doPrivileged(Native Method)
  08/06/12 11:08:22 at java.awt.Toolkit.getDefaultToolkit(Toolkit.java:804)
  08/06/12 11:08:22 at oracle.sdovis.GlobalVisContext.<clinit>(GlobalVisContext.java:48)
  08/06/12 11:08:22 at oracle.sdovis.MapMaker.setUGP(MapMaker.java:2334)
  08/06/12 11:08:22 at
  oracle.lbs.mapserver.core.MapperConfig.loadMapViewerConfig(MapperConfig.java:1082)
  08/06/12 11:08:22 at oracle.lbs.mapserver.core.MapperConfig.loadConfigFile(MapperConfig.java:492)
  08/06/12 11:08:22 at oracle.lbs.mapserver.core.MapperConfig.<init>(MapperConfig.java:274)
  08/06/12 11:08:22 at oracle.lbs.mapserver.MapServerImpl.<init>(MapServerImpl.java:125)
  08/06/12 11:08:22 at oracle.lbs.mapserver.MapServerImpl.<init>(MapServerImpl.java:109)
  08/06/12 11:08:22 at oracle.lbs.mapserver.oms$ColdStart.run(oms.java:212)
  08/06/12 11:08:22 at java.lang.Thread.run(Thread.java:595)
  (happens after I attempt to create a "dynamic data source":)
  08/06/12 11:13:23 java.lang.NullPointerException
  08/06/12 11:13:23 at oracle.lbs.mapcache.config.ConfigLoader.loadDBConfigs(ConfigLoader.java:239)
  08/06/12 11:13:23 at oracle.lbs.mapcache.config.ConfigLoader.loadCacheConfigs(ConfigLoader.java:84)
  08/06/12 11:13:23 at oracle.lbs.mapcache.MapCacheServer.<init>(MapCacheServer.java:83)
  08/06/12 11:13:23 at oracle.lbs.mapcache.MCSServlet$ColdStart.run(MCSServlet.java:87)
  08/06/12 11:13:23 at java.lang.Thread.run(Thread.java:595)
  08/06/12 11:13:23 java.lang.NullPointerException
  08/06/12 11:13:23 at oracle.lbs.foi.FOIServer.<init>(FOIServer.java:163)
  08/06/12 11:13:23 at oracle.lbs.foi.FOIServlet$ColdStart.run(FOIServlet.java:127)
  08/06/12 11:13:23 at java.lang.Thread.run(Thread.java:595)
  Also, when the second series of error messages are thrown, a red error message displays on the admin html page, which reads, "MapViewer server is still starting up." It doesn't matter how long I wait, it never does start up, and of course the error messages tell something is wrong.
  Do I need to modify a file somewhere to tell Map Viewer where to look for these classes?
  By the way I am running on a Sun server with Solaris 9
  Thank you much,
  John
  Message was edited by: John
  user641525

  For future reference,
  The problem was finally solved. Someone suggested to me to make sure I was running jdk 1.5.0 by typing "java -version" It turns out I thought I was running 1.5.0, but in actuality I was running 1.4.2.
  The reason this was confusing was because I was pointing to the newer version when exporting the JAVA_HOME env. variable, by typing "export JAVA_HOME=[full path to jdk folder].
  But the trick was to append the full paths for jdk/bin and jdk/jre/bin to the front of the PATH variable. At first I appened the paths to the end of the PATH variable, and nothing happened.
  Basically, the mapviewer installation needs to look at the bin folders for the 1.5.0 version of the jdk.
  You can always test this by typing "java -version." If your PATH variable is correct, then you'll see information on the most recent jdk installation instead of an older version.
  John

• Webservice call throws Channel.Security.Error

  Hello all,
  My flex app calls webservices hosted on the same server that
  hosts the .swf file of the application. Running the app in flex
  builder or on the same machine works perfectly all business logic
  is called using webservices. When running the application on
  another system however a Channel.Security.Error is thrown when
  calling the first webservice with following detail shown in IE:
  [FaultEvent fault=[RPC Fault faultString="Security error accessing
  url" faultCode="Channel.Security.Error" faultDetail="Destination:
  DefaultHTTP"] messageId="9C03B02E-1A3F-1F2B-1277-FD674AB4D188"
  type="fault" bubbles=false cancelable=true eventPhase=2]
  I started out discovering a world new to me, the world of
  flash security settings:
  http://www.adobe.com/devnet/flashplayer/articles/flash_player9_security_update.html#policy _file
  http://livedocs.adobe.com/flex/3/html/help.html?content=05B_Security_10.html
  http://nederflash.nl/blog/voorbereiden-op-de-flash-player-9-april-2008-veiligheids-update
  So I started out using a policy server (using the python
  script that you can download in the first article link mentioned)
  on the webservice server on port 843 that serves following file:
  <?xml version="1.0"?>
  <!DOCTYPE cross-domain-policy SYSTEM "
  http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
  <cross-domain-policy>
  <allow-http-request-headers-from domain="*"
  headers="SOAPAction"/>
  <allow-access-from domain="*"/>
  </cross-domain-policy>
  But apparently the flex app on the other machine never makes
  a request to this policy server. In the end I also added an
  crossdomain.xml file with the same contents by an apache http
  server in the root directory. All this without success...and this
  problem is driving me bananas.
  We are using the latest version of the flash player: "You
  have version 9,0,124,0 installed"
  Since we have to put a version of this application into
  production at the end of this week all help, suggestions and
  remarks are really appreciated.
  kind regards,
  Geert Van Landeghem

  Hi Rita,
  I think I had a similar problem. Flex requires that the server on which the flex application is (swf file) must be the same as the one where the the wsdl is called from. In other words if the URL of your wsdl is "machine_name.sap.com", you must call the flex application from "machine_name.sap.com".
  There are ways to circumvent this security check flex does apparently, but I was never able to make them work.
  Regards,
  Philon

• JavaWS Security Error

  Hello all,
  I am currently using Ubuntu 7.10 with Sun Java Web Start 5.0 installed.
  When I launch the Jnlp file, I receive the following:
  General:
  An error occurred while launching/running the application.
  Title: WebScarab
  Vendor: Rogan Dawes
  Category: Security Error
  Unsigned application requesting unrestricted access to system
  Unsigned resource: http://dawes.za.net/rogan/webscarab/webscarab.jar
  Exception:
  JNLPException[category: Security Error : Exception: null : LaunchDesc:
  <jnlp spec="1.0" codebase="http://dawes.za.net/rogan/webscarab/" href="http://dawes.za.net/rogan/webscarab/WebScarab.jnlp">
  <information>
  <title>WebScarab</title>
  <vendor>Rogan Dawes</vendor>
  <homepage href="http://dawes.za.net/rogan/webscarab/"/>
  <description>A web application testing tool.</description>
  <description kind="short">A web application testing tool.</description>
  <description kind="tooltip">WebScarab</description>
  <icon href="http://dawes.za.net/rogan/webscarab/icon.gif" width="64" kind="default"/>
  <icon href="http://dawes.za.net/rogan/webscarab/splash.gif" kind="splash"/>
  <shortcut online="true">
  <menu submenu="WebScarab"/>
  </shortcut>
  <offline-allowed/>
  </information>
  <security>
  <all-permissions/>
  </security>
  <resources>
  <property name="com.apple.macos.useScreenMenuBar" value="true"/>
  <property name="apple.laf.useScreenMenuBar" value="true"/>
  <property name="com.apple.mrj.application.apple.menu.about.name" value="WebScarab"/>
  <j2se initial-heap-size="134217728" max-heap-size="536870912" href="http://java.sun.com/products/autodl/j2se" version="1.6.0"/>
  <j2se initial-heap-size="134217728" max-heap-size="536870912" href="http://java.sun.com/products/autodl/j2se" version="1.6+"/>
  <j2se initial-heap-size="134217728" max-heap-size="536870912" href="http://java.sun.com/products/autodl/j2se" version="1.5.0_06"/>
  <j2se initial-heap-size="134217728" max-heap-size="536870912" href="http://java.sun.com/products/autodl/j2se" version="1.5.0_05"/>
  <j2se initial-heap-size="134217728" max-heap-size="536870912" href="http://java.sun.com/products/autodl/j2se" version="1.5.0_04"/>
  <j2se initial-heap-size="134217728" max-heap-size="536870912" href="http://java.sun.com/products/autodl/j2se" version="1.5.0_03"/>
  <j2se initial-heap-size="134217728" max-heap-size="536870912" href="http://java.sun.com/products/autodl/j2se" version="1.5.0_02"/>
  <j2se initial-heap-size="134217728" max-heap-size="536870912" href="http://java.sun.com/products/autodl/j2se" version="1.5.0"/>
  <j2se initial-heap-size="134217728" max-heap-size="536870912" href="http://java.sun.com/products/autodl/j2se" version="1.5+"/>
  <j2se initial-heap-size="134217728" max-heap-size="536870912" href="http://java.sun.com/products/autodl/j2se" version="1.4.2_10"/>
  <j2se initial-heap-size="134217728" max-heap-size="536870912" href="http://java.sun.com/products/autodl/j2se" version="1.4.2_09"/>
  <j2se initial-heap-size="134217728" max-heap-size="536870912" href="http://java.sun.com/products/autodl/j2se" version="1.4.2_08"/>
  <j2se initial-heap-size="134217728" max-heap-size="536870912" href="http://java.sun.com/products/autodl/j2se" version="1.4.2_07"/>
  <j2se initial-heap-size="134217728" max-heap-size="536870912" href="http://java.sun.com/products/autodl/j2se" version="1.4.2_06"/>
  <j2se initial-heap-size="134217728" max-heap-size="536870912" href="http://java.sun.com/products/autodl/j2se" version="1.4.2_05"/>
  <j2se initial-heap-size="134217728" max-heap-size="536870912" href="http://java.sun.com/products/autodl/j2se" version="1.4.2_04"/>
  <j2se href="http://java.sun.com/products/autodl/j2se" version="1.4.2_03"/>
  <j2se href="http://java.sun.com/products/autodl/j2se" version="1.4.2_02"/>
  <j2se href="http://java.sun.com/products/autodl/j2se" version="1.4.2_01"/>
  <j2se href="http://java.sun.com/products/autodl/j2se" version="1.4.2+"/>
  <jar href="http://dawes.za.net/rogan/webscarab/webscarab.jar" download="eager" main="false"/>
  <jar href="http://dawes.za.net/rogan/webscarab/lib/bsf-2.3.0.jar" download="eager" main="false"/>
  <jar href="http://dawes.za.net/rogan/webscarab/lib/bsh-2.0b1.jar" download="eager" main="false"/>
  <jar href="http://dawes.za.net/rogan/webscarab/lib/chardet.jar" download="eager" main="false"/>
  <jar href="http://dawes.za.net/rogan/webscarab/lib/concurrent.jar" download="eager" main="false"/>
  <jar href="http://dawes.za.net/rogan/webscarab/lib/htmlparser.jar" download="eager" main="false"/>
  <jar href="http://dawes.za.net/rogan/webscarab/lib/jcommon-0.8.7.jar" download="eager" main="false"/>
  <jar href="http://dawes.za.net/rogan/webscarab/lib/jfreechart-0.9.12.jar" download="eager" main="false"/>
  <jar href="http://dawes.za.net/rogan/webscarab/lib/tagsoup-1.0rc2.jar" download="eager" main="false"/>
  <jar href="http://dawes.za.net/rogan/webscarab/lib/wsdl4j.jar" download="eager" main="false"/>
  <extension href="http://dawes.za.net/rogan/webscarab/lib/help.jnlp" name="Java Help"/>
  </resources>
  <application-desc main-class="org.owasp.webscarab.WebScarab"/>
  </jnlp> ]
  at com.sun.javaws.LaunchDownload.checkSignedResourcesHelper(LaunchDownload.java:1054)
  at com.sun.javaws.LaunchDownload.checkSignedResources(LaunchDownload.java:943)
  at com.sun.javaws.Launcher.continueLaunch(Launcher.java:821)
  at com.sun.javaws.Launcher.handleApplicationDesc(Launcher.java:515)
  at com.sun.javaws.Launcher.handleLaunchFile(Launcher.java:218)
  at com.sun.javaws.Launcher.run(Launcher.java:165)
  at java.lang.Thread.run(Thread.java:595)
  The JNLP file content is as follows:
  <?xml version="1.0" encoding="utf-8"?>
  <!-- where the jnlp file lives on the web -->
  <jnlp spec="1.0" codebase="http://dawes.za.net/rogan/webscarab" href="WebScarab.jnlp">
  <information>
  <title>WebScarab</title>
  <vendor>Rogan Dawes</vendor>
  <homepage href="http://dawes.za.net/rogan/webscarab/" />
  <description>A web application testing tool.</description>
  <description kind="short">A web application testing tool.</description>
  <description kind="tooltip">WebScarab</description>
  <icon href="http://dawes.za.net/rogan/webscarab/icon.gif" width="64" height="64" />
  <icon href="http://dawes.za.net/rogan/webscarab/splash.gif" kind="splash" />
  <!-- allow app to run without Internet access -->
  <offline-allowed/>
  <!-- hints for setting up shortcuts -->
  <!-- Prefer a shortcut for online operation -->
  <shortcut online="true">
  <!-- create desktop shortcut -->
  <desktop/>
  <!-- create menu item for this app under the major heading WebScarab -->
  <menu submenu="WebScarab"/>
  </shortcut>
  </information>
  <security>
  <all-permissions />
  </security>
  <resources>
  <property name="com.apple.macos.useScreenMenuBar" value="true"/>
  <property name="apple.laf.useScreenMenuBar" value="true"/>
  <property name="com.apple.mrj.application.apple.menu.about.name" value="WebScarab"/>
  <!-- Acceptable JVMs in preferred order, best first -->
  <j2se version="1.6.0" href="http://java.sun.com/products/autodl/j2se" initial-heap-size="128m" max-heap-size="512m" />
  <j2se version="1.6+" href="http://java.sun.com/products/autodl/j2se" initial-heap-size="128m" max-heap-size="512m" />
  <j2se version="1.5.0_06" href="http://java.sun.com/products/autodl/j2se" initial-heap-size="128m" max-heap-size="512m" />
  <j2se version="1.5.0_05" href="http://java.sun.com/products/autodl/j2se" initial-heap-size="128m" max-heap-size="512m" />
  <j2se version="1.5.0_04" href="http://java.sun.com/products/autodl/j2se" initial-heap-size="128m" max-heap-size="512m" />
  <j2se version="1.5.0_03" href="http://java.sun.com/products/autodl/j2se" initial-heap-size="128m" max-heap-size="512m" />
  <j2se version="1.5.0_02" href="http://java.sun.com/products/autodl/j2se" initial-heap-size="128m" max-heap-size="512m" />
  <j2se version="1.5.0" href="http://java.sun.com/products/autodl/j2se" initial-heap-size="128m" max-heap-size="512m" />
  <j2se version="1.5+" href="http://java.sun.com/products/autodl/j2se" initial-heap-size="128m" max-heap-size="512m" />
  <j2se version="1.4.2_10" href="http://java.sun.com/products/autodl/j2se" initial-heap-size="128m" max-heap-size="512m" />
  <j2se version="1.4.2_09" href="http://java.sun.com/products/autodl/j2se" initial-heap-size="128m" max-heap-size="512m" />
  <j2se version="1.4.2_08" href="http://java.sun.com/products/autodl/j2se" initial-heap-size="128m" max-heap-size="512m" />
  <j2se version="1.4.2_07" href="http://java.sun.com/products/autodl/j2se" initial-heap-size="128m" max-heap-size="512m" />
  <j2se version="1.4.2_06" href="http://java.sun.com/products/autodl/j2se" initial-heap-size="128m" max-heap-size="512m" />
  <j2se version="1.4.2_05" href="http://java.sun.com/products/autodl/j2se" initial-heap-size="128m" max-heap-size="512m" />
  <j2se version="1.4.2_04" href="http://java.sun.com/products/autodl/j2se" initial-heap-size="128m" max-heap-size="512m" />
  <j2se version="1.4.2_03" href="http://java.sun.com/products/autodl/j2se" />
  <j2se version="1.4.2_02" href="http://java.sun.com/products/autodl/j2se" />
  <j2se version="1.4.2_01" href="http://java.sun.com/products/autodl/j2se" />
  <!-- 1.4.2+ means any 1.4.2 version not containing a dash e.g. not 1.4.2-beta -->
  <j2se version="1.4.2+" href="http://java.sun.com/products/autodl/j2se" />
  <!-- application code, load before launch -->
  <jar href="webscarab.jar" download="eager"/>
  <jar href="lib/bsf-2.3.0.jar" download="eager"/>
  <jar href="lib/bsh-2.0b1.jar" download="eager"/>
  <jar href="lib/chardet.jar" download="eager"/>
  <jar href="lib/concurrent.jar" download="eager"/>
  <jar href="lib/htmlparser.jar" download="eager"/>
  <jar href="lib/jcommon-0.8.7.jar" download="eager"/>
  <jar href="lib/jfreechart-0.9.12.jar" download="eager"/>
  <jar href="lib/tagsoup-1.0rc2.jar" download="eager"/>
  <jar href="lib/wsdl4j.jar" download="eager"/>
  <extension name="Java Help" href="lib/help.jnlp"/>
  </resources>
  <!-- JNI native Windows .dll code -->
  <resources os="Windows" arch="x86">
  <nativelib href="lib/windows_x86.jar" download="eager"/>
  </resources>
  <!-- application class with main method -->
  <application-desc main-class="org.owasp.webscarab.WebScarab">
  <!-- <argument>Lite</argument> -->
  </application-desc>
  </jnlp>
  Any help is appreciated. It has been working for months, but the last few days I have been unable to run the application.

  According to your post archive webscarab.jar is not signed. Is it? You can check signature files presence under META-INF, simply opening archive with WinZip.
  A suggestion: use code tag to post everything other than your own words (code, jnlp, exceptions, etc.)

• JNLPException: security error how to resolve

  "JNLPException[category: security error : Exception: null : LaunchDesc: null " it happened when run app.jnlp on the java web start.
  the app.jnlp is following:
  {code}<?xml version="1.0" encoding="utf-8"?>
  <jnlp spec="1.0+"
  codebase="http://192.168.0.7:8080/b2/c8/splash/">
  <information>
  <title>A User-Friendly App</title>
  <vendor>Mauro Inc.</vendor>
  <homepage href="home.html"/>
  <description>Install Your programs via the Web, quickly and effectively!</description>
  <description kind="short">An example of a simple Java-launched Installator</description>
  <security>
  <all-permissions/>
  </security>
  <offline-allowed/>
  </information>
  <resources>
  <j2se version="1.5+"/>
  <extension
  name="Splash Window"
  href="splash.jnlp">
  </extension>
  <jar href="app.jar"/>
  <jar href="first.jar"/>
  <jar href="second.jar"/>
  <jar href="third.jar"/>
  </resources>
  <application-desc/>
  </jnlp>
  {code}
  the splash.jnlp is following:
  {code}
  <?xml version="1.0" encoding="utf-8"?>
  <jnlp
       spec="1.0+"
       codebase="http://192.168.0.7:8080/b2/c8/splash//">
       <information>
            <title>Install Your Program Via the Web,quickly and effectively!</title>
            <vendor>Mauro Inc.</vendor>
            <homepage href="home.html"/>
            <description>Install Your Program Via the Web,quickly and effectively!</description>
            <description kind="short">A simple Java-launched Installator</description>
            <offline-allowed/>
       </information>
       <resource>
            <j2se version="1.5+"/>
            <jar href="splash.jar"/>
       </resource>
       <installer-desc main-class="com.fei.Splash"/>
  </jnlp>
  {code}
  The error message is that reference many host computer in one resource.But use other jar file,it do not have error.In this error,I use a singleton pattem in the jar file.
  thanks for your attention.
  Edited by: feiyangdefei on Jan 28, 2008 6:04 AM
  Edited by: feiyangdefei on Jan 28, 2008 6:06 AM
  Edited by: feiyangdefei on Jan 28, 2008 6:08 AM

  by the way,the App.java is following:
  import java.awt.BorderLayout;
  import java.awt.event.WindowAdapter;
  import javax.swing.JLabel;
  import javax.swing.JFrame;
  import javax.swing.ImageIcon;
  import java.awt.event.WindowEvent;
  public class App extends JFrame{
       public App(){
            ImageIcon img =
                 new ImageIcon(getClass().getClassLoader().getResource("images/back.jpg"));
            JLabel jlabel = new JLabel(img);
            jlabel.setLayout(new BorderLayout());
            jlabel.add(new JLabel("An Application..."));
            getContentPane().add(jlabel);
            addWindowListener(new WindowAdapter(){
                 public void windowClosing(WindowEvent e){
                      System.exit(0);
            pack();
            setVisible(true);
       public static void main(String[] args){
            App app = new App();
  }and the Splash.java is following:
  import java.awt.*;
  import javax.swing.*;
  import javax.jnlp.*;
  import java.net.URL;
  public class Splash extends JWindow implements Runnable{
    private ClassLoader loader;
    private static ExtensionInstallerService extensionInstaller;
    private JLabel ImageLabel;
    private JLabel MessageLabel  = new JLabel();
    private JLabel animLabel;
    private JLabel resourceLabel  = new JLabel();
    private static Splash splash;
    //data
    private String[] jarSequence= {"first.jar", "second.jar", "third.jar"};
    private String[] msgSequence= {
      "Now Even More Powerful!",
      "Incredibly Fast And Reliable!",
      "Ready To Go?"};
    private String codebase = "http://192.168.0.7:8080/jwstest/";
     * Private Constructor - Implements the Singleton Design Pattern
    private Splash() {
      super();
      loader = getClass().getClassLoader();
      //prepare UI
      //ImageLabel = new JLabel(new ImageIcon(loader.getResource("images/background.jpg")));
      ImageLabel = new JLabel(new ImageIcon("images/background.jpg"));
      //animLabel = new JLabel(new ImageIcon(loader.getResource("images/working.gif")));
      animLabel = new JLabel(new ImageIcon("images/background.jpg"));
      resourceLabel.setBorder(BorderFactory.createEmptyBorder(6,6,6,6));
      ImageLabel.setLayout(new BorderLayout());
      ImageLabel.setBorder(BorderFactory.createRaisedBevelBorder());
      ImageLabel.add(resourceLabel, BorderLayout.NORTH);
      ImageLabel.add(MessageLabel, BorderLayout.SOUTH);
      ImageLabel.add(animLabel, BorderLayout.CENTER);
      getContentPane().setLayout(new BorderLayout());
      getContentPane().add(ImageLabel, BorderLayout.CENTER);
      pack();
      //Centers the window
      Dimension size = getSize();
      Dimension screenSize = Toolkit.getDefaultToolkit().getScreenSize();
      if (size.height > screenSize.height) {
        size.height = screenSize.height;
      if (size.width > screenSize.width) {
        size.width = screenSize.width;
      setLocation((screenSize.width - size.width) / 2, (screenSize.height - size.height) / 2);
     * Implements the Singleton Design Pattern
    public static Splash getInstance(){
      if (splash == null)
        splash = new Splash();
      return splash;
     * Sets a message visible at the bottom
     * @param text Text to show
    public static void setMessage(String text) {
      if (splash != null)
        splash.MessageLabel.setText("    " + text);
     * Sets a message visible at the top showing the
     * currently downloading resource file
     * @param rsr Text to show
    public static void setLoadingResource(String rsr) {
      if (splash != null) {
        splash.resourceLabel.setText("Downloading: "+rsr);
     * Shows up the splash window or destroys it
     * @param show
    public static void showUp(boolean show) {
      if (splash == null)
        return;
      splash.setVisible(show);
      if (show == false) {
        splash.setCursor(Cursor.getDefaultCursor());
        splash = null;
      } else {
        splash.setCursor(new Cursor(Cursor.WAIT_CURSOR));
        try {
          // Lookup the Service
          extensionInstaller =
            (ExtensionInstallerService)ServiceManager.lookup("javax.jnlp.ExtensionInstallerService");
          // Hide JNLP Client's download window
          extensionInstaller.hideStatusWindow();
        } catch(UnavailableServiceException use) {
          System.out.println("Service not supported: "+use);
     * Takes charge of all the JAR delivery
    public void run() {
      DownloadService ds;
      int jarNumber = jarSequence.length;
      try {
        ds = (DownloadService)ServiceManager.lookup("javax.jnlp.DownloadService");
      } catch (UnavailableServiceException use) {
        ds = null;
        System.out.println("Service is not supported: "+use);
      }//once have a ds you can do a lot of things
      //begin downloading jars
      for (int i=0;i<jarNumber;i++){
        if (ds != null) {
          processJar(ds,i);
        //take a breath
        try {
          Thread.currentThread().sleep(3000);//IT'S ONLY COSMETICS!
  //        Thread.currentThread().yield();
        } catch (Exception e) {
          System.out.println("Synchronization Exception: "+e);
      }//-for
      showUp(false);//all the needed JARs have processed
      extensionInstaller.installSucceeded(true);//we're optimistic
     * A fancy method that finds out if a JAR is cached and removes it.
     * substitute it with your code.
    private void processJar(DownloadService ds, int i){
      try {
        // determine if a particular resource is cached
        URL url =
          new URL(codebase + jarSequence);
  boolean cached = ds.isResourceCached(url, null);
  // remove the resource from the cache, just for fun
  if (cached) {
  ds.removeResource(url, null);
  // reload the resource into the cache, yes!
  setMessage(msgSequence[i]);
  setLoadingResource(jarSequence[i]);
  DownloadServiceListener dsl = ds.getDefaultProgressWindow();
  ds.loadResource(url, null, dsl);
  } catch (Exception e) {
  System.out.println("Loading Resource: " + e);
  public static void main(String[] args) {
  Splash splash1 = Splash.getInstance();
  splash1.showUp(true);
  splash1.run();
  thank you again.
  Edited by: feiyangdefei on Jan 28, 2008 6:14 AM
  Edited by: feiyangdefei on Jan 28, 2008 6:15 AM