Security Exception with applets

Hello,
How do I overcome the securityexception I face with applets? My appletviewer works fine when I try to read data from a local text file. But the browser doesn't seem to. It says access to the text file is denied!!!

Appletviewer works but only in debug, isn't it?
If you can read file from local, you must sign you applet by jarsigner tool contributed in your JDK.
If you have not certificate for sign, you can generate your own certificate:
1.generate key (name of the key will be tstkey)
keytool -genkey -keyalg rsa -alias tstkey
2. complete data
3. export key (will be in your current directory in file tstcert.crt)
keytool -export -alias tstkey -file tstcert.crt
4. make *.jar file
jar cvf MyApp.jar
5. check *.jar file
jar tvf MyApp.jar
6. sign applet
jarsigner MyApp.jar tstkey
7. check sign of applet
jarsigner -verify -verbose -certs MyApp.jar
Tha is all. At this moment is your applet signed and you can write or read local file.
BR
-koalix-

Similar Messages

  • Security issues with Applets

    I have a web server that has access to a database server as i am able to create web pages with ASP and connect to the database fine using a DSN, i have created a web page that contains an applet, the applet attempts to connect to the database but i get a security error, how do i overcome this security issue, the sucurity error looks like this:
    Exception: java.security.AccessControlException: accessdenied(java.lang.RuntimePermission accessClassInPackage.sun.jdbc.odbc)
    Can anyone help??

    There is a java.policy file in
    C:\Program Files\JavaSoft\JRE\1.3.1\lib\security\java.policy
    And a tool you can use in
    C:\Program Files\JavaSoft\JRE\1.3.1\bin\policytool.exe
    You might have to tell the policytool.exe where to open the java.policy file.
    You can also just modify it in a text editor and save it as plain text when you are done.
    I don't know which permission you should look for, but you can try with
    grant {
    permission java.security.AllPermission;
    and remove or comment out the other lines. Make a backup of the policy file before you try it. Restart the browser.
    Note that you have to do this on all client machines that wants to run your applet.

  • Security Exception with JavaHelp and Webstart

    I have seen several posts on here concerning JavaHelp with Webstart, but no one seems to be getting the same error that I have. Everything works fine if I run the application and launch help outside of Webstart.
    When I download the app using webstart, my helpset seems to get loaded properly, but I get the following error when trying to launch JavaHelp from within the application:
    Parsing failed for null
    Exception caught while parsing nulljava.security.AccessControlException: access denied (java.util.PropertyPermission user.home read)
    java.lang.NullPointerException
    I'm not quite sure why it's trying to access the property user.home, but it doesn't seem that others that have post get this error.
    Does anyone have any suggestions?
    Thanks.

    Ok... this appears to be an issue with the new JavaHelp 2.0 because it works perfectly fine in version 1.3
    It appears that version 2.0 has a "favorites" section that, I'm guessing here, stores the users favorites locally. That would be why the user.home property gets accessed and the security policy is violated with Webstart.
    I can't say that this is a bug... maybe I can disable the "favorites" feature... either that or I need to stick with JavaHelp 1.3
    Thanks.

  • Security Exception in Applet

    I'm trying to read a file on the server (from a JApplet) using FileReader and BufferedReader. When I run the applet i get:
    java.security.AccessControlException: access denied (java.io.FilePermission config.dat read)Is there an easy way to get around this? I hope I don't have to speak to the serveradministrator!
    /ernstad

    A signed applet is needed to do that. Here's a search listing of the forums with other threads like yours:
    http://search.java.sun.com/search/java/index.jsp?qp=&nh=10&qt=java.security.AccessControlException%3A+access+denied+%28java.io.FilePermission&col=javaforums&x=30&y=11

  • Security issues with applets and windows Vista when printing to file

    Hi, everyone
    I am currently developing an application that prints out the result of some calculations.
    from a Javascript file, the output finally ends up in a java applet that should print the file in a special printer.
    For debugging purposes I have created a File printer that creates a file from the output comming to the printer; this way I can debug what commands the printer is receiving.
    This worked well on Windows Xp; Vista always asks for permissions for the applet, and altough I guarantee these permissions, printer is not allowed to create the output file and reports an error writing
    after a little research, I have found that java applets have all permissions when certificated as trusted applications; all but file creating permissions
    anyone has any idea of how could I fix this problem?
    Thanks in advance

    HI,
    Have you actually signed your applet? If the signers certificate is the trusted key store for Java it should treat your applet as trusted. You can use a self signed certificate for testing as long as the cert is in the trusted key store.
    Some links that might help:
    [http://java.sun.com/j2se/1.4.2/docs/tooldocs/windows/keytool.html]
    [http://java.sun.com/j2se/1.4.2/docs/guide/plugin/developer_guide/rsa_signing.html]
    Cheers,
    Shane

  • Netscape problem with applet servlet communication

    Netscape always seems to get in the way when you use applets, right?
    I have a nice set of code from a book that shows how to do applet->servlet stuff.
    But although I'm doing this all in the privacy of my own localhost Netscape immediately put a spanner in the works with a security exception and wouldn't let the servlet respond.
    Anyone know what to do here.
    The answer is to use Internet Explorer, possibly, but I'm in linux, and I can't get Opera to work with java yet.
    Anyone got any ideas? Thanks.

    I encountered a security exception with Netscape in Linux when attempting applet-servlet stuff but that's prpbably because I haven't got the plugin for that yet...in fact I don't know if a plugin is available for sure...let me know if you do. As a matter of fact I plan on using the HTMLConverter this weekend to find out if it'll download a plugin.
    The applet-servlet thing runs fine in IE and Netscape on my Windows box as long as the plugins are there and I use the appropriate plugin tags in the HTML
    Post what you find out,
    Brad

  • Saving a file with applets

    Hello my name is Lino and I'm Portuguese (sorry the bad English)
    I have a problem, I want to know how do save a .jpg file with the FileChooser and FileWriter, that is in the Server and I want to save a copy in my computer, but it must with Applets!
    Please help me
    Tanks
    LP

    Hi,
    because of security resons with applets, it is not possible to store an .jpg on your hard drive.
    Bernd

  • Signed applet throws security exceptions

    Since nobody seems to be reading the Signe Applet forum, I decided to try here:
    Hi all
    I have problems with signed applet (self-made cert), and after reading this forum I see this is more or less common.
    The problem that I am having is, that I can not use doPrivilege() and similar tricks, because applet needs to be Java 1.1 compatible.
    So, signing will have to work.
    Applet is signed using 1.5.0_06 jarsigner. Jarsigner verifies it OK.
    It works on JVM 1.5.0_06 but not on 1.4.2_08.
    Please help me make if work under any JVM.
    The error I get is:
    Java(TM) Plug-in: Version 1.4.2_08
    Using JRE version 1.4.2_08 Java HotSpot(TM) Client VM
    User home directory = C:\Documents and Settings\miha
    Proxy Configuration: Automatic Proxy Configuration
         URL: http://orion.nil.si/proxy.pac
    c:   clear console window
    f:   finalize objects on finalization queue
    g:   garbage collect
    h:   display this help message
    l:   dump classloader list
    m:   print memory usage
    o:   trigger logging
    p:   reload proxy configuration
    q:   hide console
    r:   reload policy configuration
    s:   dump system properties
    t:   dump thread list
    v:   dump thread stack
    x:   clear classloader cache
    0-5: set trace level to <n>
    java.security.AccessControlException: access denied (java.net.SocketPermission host.domain.dom resolve)
    TelnetWrapper PROXY: java.security.AccessControlException: access denied (java.net.SocketPermission 127.0.0.1:0 connect,resolve)
    java.lang.NullPointerException
         at net.propero.rdp.ISO.connect(ISO.java:123)
         at net.propero.rdp.MCS.connect(MCS.java:84)
         at net.propero.rdp.Secure.connect(Secure.java:153)
         at net.propero.rdp.Secure.connect(Secure.java:171)
         at net.propero.rdp.Rdp.connect(Rdp.java:498)
         at net.propero.rdp.Rdesktop.main_nonstatic(Rdesktop.java:615)
         at net.propero.rdp.applet.RdpThread.run(RdpApplet.java:222)
    FATAL: java.lang.NullPointerException: nullWhat is funny, is that I have two applets, and one works and the other one doesn't. It is like this:
    Applet A (signed) needs to connect to host1, fails and tries to connect through proxy using my proxy library (also signed - different JAR). Everything works.
    Applet B (signed) needs to connect to host1, fails and tries to connect through proxy using the same proxy library. It gets a security exception.
    All JARs are signed using the same key/certificate.
    Both applets try to connect to the same "host1".
    Both applets try to use the same proxy - which is different from "host1".
    The one thing that might make a difference, is that in the working applet, everything is within one thread, and in the broken applet, the proxy object is in the main applet thread, and this applet may open many windows, that all utilize the same proxy object - only they can't.
    When I tried to move the proxy object down to the child threads, I get the following exception:
    Exception in thread "Thread-1952" java.security.AccessControlException: access denied (java.lang.RuntimePermission accessClassInPackage.sun.misc)
         at java.security.AccessControlContext.checkPermission(Unknown Source)
         at java.security.AccessController.checkPermission(Unknown Source)
         at java.lang.SecurityManager.checkPermission(Unknown Source)
         at java.lang.SecurityManager.checkPackageAccess(Unknown Source)
         at sun.applet.AppletSecurity.checkPackageAccess(Unknown Source)
         at sun.applet.AppletClassLoader.loadClass(Unknown Source)
         at java.lang.ClassLoader.loadClass(Unknown Source)
         at java.lang.ClassLoader.loadClassInternal(Unknown Source)
         at net.propero.rdp.Rdesktop.main_nonstatic(Rdesktop.java:567)
         at net.propero.rdp.applet.RdpThread.run(RdpApplet.java:211)It seems that I can only create the proxy object in the Applet.init() method, to avoid this exception.
    So to, summarize: I would prefer just one object for all threads that I will create, but then my applet behaves like it is not signed (at least under JVM 1.4.2_08). Java 1.5.0_06 doesn't have any problems with this.
    Regards, Miha Vitorovic

    The one thing that might make a difference, is that in the working applet, everything is within one thread, and in the broken applet, the proxy object is in the main applet thread, and this applet may open many windows, that all utilize the same proxy object - only they can't.
    When I tried to move the proxy object down to the child threads, I get the following exception:
    Exception in thread "Thread-1952" java.security.AccessControlException: access denied (java.lang.RuntimePermission accessClassInPackage.sun.misc)
         at java.security.AccessControlContext.checkPermission(Unknown Source)
         at java.security.AccessController.checkPermission(Unknown Source)
         at java.lang.SecurityManager.checkPermission(Unknown Source)
         at java.lang.SecurityManager.checkPackageAccess(Unknown Source)
         at sun.applet.AppletSecurity.checkPackageAccess(Unknown Source)
         at sun.applet.AppletClassLoader.loadClass(Unknown Source)
         at java.lang.ClassLoader.loadClass(Unknown Source)
         at java.lang.ClassLoader.loadClassInternal(Unknown Source)
         at net.propero.rdp.Rdesktop.main_nonstatic(Rdesktop.java:567)
         at net.propero.rdp.applet.RdpThread.run(RdpApplet.java:211)It seems that I can only create the proxy object in the Applet.init() method, to avoid this exception.
    So to, summarize: I would prefer just one object for all threads that I will create, but then my applet behaves like it is not signed (at least under JVM 1.4.2_08). Java 1.5.0_06 doesn't have any problems with this.
    Regards, Miha Vitorovic

  • Security Exception executing a signed Applet

    Dear All,
    I get a security exception (file permission ) when i try to execute a signed applet using java plugin version 1.4.2._02, the same applet works good in java plugin version 1.3.1_04.
    Any ideas...???
    Thanks in advance
    KSRK123

    Although not a solution for us as we are tied to the 1.2.2 plugin for now, we did try out 1.3.1_10 and it worked fine without any modifications to cacerts.
    Please see our listings (below) and let us know if anything comes to mind. I'm fairly new to this but I thought the whole idea with 1.2.2 was that we shouldn't have to mess with the cacerts or policy files on a clients machine. Rather the Root Certificate of the browser was used for verification??
    http://forum.java.sun.com/thread.jsp?forum=32&thread=480668&tstart=0&trange=15
    http://forum.java.sun.com/thread.jsp?forum=63&thread=480895&tstart=0&trange=15

  • Self signed Applet - still getting Security Exception...

    Hi everyone...
    I m new to Java Mail... Nd I m developing a Applet to send mail from my Gmail account, nd I used keytool, jarsigner to Self sign the applet. Nd I wrote a Html page and when calling my applet method using javascript, I m having Security Exception... And I m using Java 1.5 (i.e., J2SE 5)
    Here is the sample of my code...
    --------- MyMail.java -----------
    import javax.mail.*;
    import javax.mail.internet.InternetAddress;
    import javax.mail.internet.MimeMessage;
    And all neccessory packages are imported....
    public class MyMail extends JApplet
         String server = "smtp.gmail.com";
         String username;
         String password;
         String fromAddres="";
         String toAddres="";
         Other Variable declaration goes here........
    Session ses;
    Transport tr;
    MimeMessage msg;
         public void init() //For testing purpose
              doLogin("username","password"); //My account details
         public void doLogin(String user,String pass)
              username = user;
              password = pass;
              boolean success;
              fromAddres = user+"@gmail.com";
              toAddres = "[email protected]";
              subject = "TEst SubJect";
              body = "This is Test Mail";
              success = doAuthentication();
              if(success)
                   setHeaders(server,username,password,fromAddres,toAddres,cc,bcc,htmlFormat,subject,body);
                   sendMail(ses);
                   doLogout();
         public void doLogout()
              //Deals with the logout from my account
         public boolean doAuthentication()
              //Deals with the authentication of my account
              // Setting properties, creating a session, getting transport object...
              //and returns true if authentication is success, false if not.
         public void setHeaders(String server, String username, String password, String fromAddress, String toAddress, String cc, String bcc, boolean htmlFormat, String subject, String body)
              //Sets the headers fields for the message (recieved through arguments)
         public void sendMail(Session ses)
              //Deals with sending mail
    class MyPasswordAuthenticator extends Authenticator
         //Deals with the authentication of my account
    ---------- MyMail.html -----------
    <html>
    <head>
    <script language=javascript>
    function sendmail()
    document.MyMail.doLogin("username","password"); //my account details
    </script>
    </head>
    <body>
    <input type=button name=but value=Send mail onclick=sendmail()>
    <applet name=MyMail code=MyMail.class
    archive=mail.jar,activation.jar,mailplus.jar width=0 height=0>
    </applet>
    </body>
    </html>
    And the applet is Self signed using the tools supplied from Java SDK...
    it got signed...
    And as the applet got loaded when i opend the MyMail.html, as i called the doLogin(..,..) in init() it is sending mail successfully...
    The problem is.... As I given the action for my button to send mail (by calling java method from java script i.e., calling doLogin() when the button clicked) I m getting Security Exception
    So...anyone plz tell me the solution....
    Thnx in advance....
    - Kanta

    http://www.google.nl/search?hl=nl&q=site%3Asun.com+javascript+signed+applet&btnG=Google+zoeken&meta=
    DoPrivileged would solve your problem but I've seen some cases where the
    threaded (link mentioned below second post) mothod is the only way it'll work.
    Signing applets:
    http://forum.java.sun.com/thread.jsp?forum=63&thread=524815
    second post and reply 18 for the java class file using doprivileged
    Still problems?
    A Full trace might help us out:
    http://forum.java.sun.com/thread.jspa?threadID=656028

  • The full exception text is: Could not establish trust relationship for the SSL/TLS secure channel with authority :32844'.

    Hi I am getting this error,
    The Secure Store Service application Secure Store Service is not accessible
    The full exception text is: Could not establish trust relationship for the SSL/TLS secure channel with authority 'sp:32844'.
    Any help will be appreciated

    You may need to add the SSL to the SharePoint Trusted Root Authority.Get the root cert for the site you are securing with HTTPS/SSL and add in SharePoint Trusted Root Authority. As explained here -
    https://social.technet.microsoft.com/Forums/office/en-US/2aed19c6-24df-4646-b946-f4365a05e32f/secure-store-service-stops-working-once-or-twice-every-day-could-not-establish-trust-relationship?forum=sharepointadmin
    http://brainlitter.com/2012/03/13/sharepoint-2010-and-cert-trust-could-not-establish-trust-relationship-for-the-ssltls-secure-channel/
    Thanks
    Ganesh Jat [My Blog |
    LinkedIn | Twitter ]
    Please click 'Mark As Answer' if a post solves your problem or 'Vote As Helpful' if it was useful.

  • Should a signed applet ever throw a security exception?

    hi,
    I've had a few times when a signed applet seems to throw a security exception (at the moment am trying to figure out a SocketException being thrown).
    I thought if the applet was signed, and when the browser asks if you want to grant it permissions you press Yes (which I do), then there should not be any security issues?
    thanks,
    asjf

    A signed applet has to assert which permissions it wants. The client JVM then asks the user if they will give those permissions to the signer. If the applet tries to do something for which it hasn't been granted permission a security exception is thrown.

  • Use XML Digital Signature(Apache XML security) with Applet

    I have problem when I use xml-security-1_2_1 library from Apache with applet and access denied errors occur.
    6 May 2005 10:06:45 org.apache.xml.security.Init init
    SEVERE: Bad:
    java.security.AccessControlException: access denied (java.util.PropertyPermission org.apache.xml.security.resource.config read)
    bla bla....
    How should I do ? Please! T_T and thank you ..

    An applet cannot read the local file system, connect to any other computer than the one
    it came from or read properties it's not supposed to read. And I think it cannot write to any
    property.
    If you sign the applet or set up a policy for it the applet can do the same as an application
    allthough the jre will still check the stack trace if the entire stack has the same privileges
    as you signed applet.
    http://forum.java.sun.com/thread.jsp?forum=63&thread=524815
    second post and last post for the java class file

  • Problem with passing exception with declarative security

    I am having a problem with passing exceptions with message security bunding enables. I have a JAXWS EJB 3.0 web service, The service defines methods which throw exceptions. The exceptions are passed correclty when there is no message security enabled. once the security is enabled and an exception is thrown, I get the stack trace below. Furthermore, the service with security enabled works fine as long as methods do not throw an exception. I am thinking that the JAXWS generated wrapped exception is not correctly handled by the message security provider in the server. Just a thought. Any help would be greatly appreciated.
    Stack trace:
    [#|2007-03-23T00:49:06.333-0600|WARNING|sun-appserver-pe9.0|javax.enterprise.sys
    tem.stream.err|_ThreadID=11;_ThreadName=httpWorkerThread-8080-0;_RequestID=64417
    ac0-ded8-474d-9066-5a97c8559b67;|
    ERROR: 'NAMESPACE_ERR: An attempt is made to create or change an object in a wa
    y which is incorrect with regard to namespaces.'|#]
    [#|2007-03-23T00:49:06.334-0600|SEVERE|sun-appserver-pe9.0|javax.xml.messaging.s
    aaj.soap|_ThreadID=11;_ThreadName=httpWorkerThread-8080-0;_RequestID=64417ac0-de
    d8-474d-9066-5a97c8559b67;|SAAJ0511: Unable to create envelope from given source
    |#]
    [#|2007-03-23T00:49:06.334-0600|INFO|sun-appserver-pe9.0|javax.enterprise.system
    .core.security|_ThreadID=11;_ThreadName=httpWorkerThread-8080-0;|SEC2003: Contai
    ner-auth: wss: Error securing response
    com.sun.enterprise.security.jauth.AuthException: Unable to create envelope from
    given source:
    at com.sun.xml.wss.provider.ServerSecurityAuthModule.secureResponse(Serv
    erSecurityAuthModule.java:129)
    at sun.reflect.GeneratedMethodAccessor237.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAcces
    sorImpl.java:25)
    at java.lang.reflect.Method.invoke(Method.java:585)
    at com.sun.enterprise.security.jauth.AuthContext.invokePriv(AuthContext.
    java:128)
    at com.sun.enterprise.security.jauth.AuthContext$1.run(AuthContext.java:
    78)
    at java.security.AccessController.doPrivileged(Native Method)
    at com.sun.enterprise.security.jauth.AuthContext.invoke(AuthContext.java
    :75)
    at com.sun.enterprise.security.jauth.ConfigFile$ConfigServer.secureRespo
    nse(ConfigFile.java:662)
    at com.sun.enterprise.security.wss.WebServiceSecurity.secureResponse(Web
    ServiceSecurity.java:220)
    at com.sun.enterprise.security.wss.WebServiceSecurity.secureResponse(Web
    ServiceSecurity.java:197)
    at com.sun.enterprise.webservice.JAXWSSystemHandlerDelegateFactory$Servl
    etDelegate.processResponse(JAXWSSystemHandlerDelegateFactory.java:540)
    at com.sun.enterprise.webservice.monitoring.JAXWSEndpointImpl.processRes
    ponse(JAXWSEndpointImpl.java:121)
    at com.sun.xml.ws.protocol.soap.server.SOAPMessageDispatcher.receive(SOA
    PMessageDispatcher.java:148)
    at com.sun.xml.ws.server.Tie.handle(Tie.java:88)
    at com.sun.enterprise.webservice.Ejb3MessageDispatcher.handlePost(Ejb3Me
    ssageDispatcher.java:160)
    at com.sun.enterprise.webservice.Ejb3MessageDispatcher.invoke(Ejb3Messag
    eDispatcher.java:89)
    at com.sun.enterprise.webservice.EjbWebServiceServlet.dispatchToEjbEndpo
    int(EjbWebServiceServlet.java:178)
    at com.sun.enterprise.webservice.EjbWebServiceServlet.service(EjbWebServ
    iceServlet.java:109)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
    at com.sun.enterprise.web.AdHocContextValve.invoke(AdHocContextValve.jav
    a:100)
    at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.j
    ava:566)
    at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.jav
    a:536)
    at com.sun.enterprise.web.WebPipeline.invoke(WebPipeline.java:71)
    at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.j
    ava:182)
    at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.j
    ava:566)
    at com.sun.enterprise.web.VirtualServerPipeline.invoke(VirtualServerPipe
    line.java:120)
    at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:939)
    at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineVal
    ve.java:137)
    at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.j
    ava:566)
    at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.jav
    a:536)
    at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:939)
    at org.apache.coyote.tomcat5.CoyoteAdapter.service(CoyoteAdapter.java:23
    1)
    at com.sun.enterprise.web.connector.grizzly.ProcessorTask.invokeAdapter(
    ProcessorTask.java:667)
    at com.sun.enterprise.web.connector.grizzly.ProcessorTask.processNonBloc
    ked(ProcessorTask.java:574)
    at com.sun.enterprise.web.connector.grizzly.ProcessorTask.process(Proces
    sorTask.java:844)
    at com.sun.enterprise.web.connector.grizzly.ReadTask.executeProcessorTas
    k(ReadTask.java:287)
    at com.sun.enterprise.web.connector.grizzly.ReadTask.doTask(ReadTask.jav
    a:212)
    at com.sun.enterprise.web.connector.grizzly.TaskBase.run(TaskBase.java:2
    52)
    at com.sun.enterprise.web.connector.grizzly.WorkerThread.run(WorkerThrea
    d.java:75)
    |#]
    [#|2007-03-23T00:49:06.335-0600|WARNING|sun-appserver-pe9.0|javax.enterprise.sys
    tem.core|_ThreadID=11;_ThreadName=httpWorkerThread-8080-0;_RequestID=64417ac0-de
    d8-474d-9066-5a97c8559b67;|Exception while tracing response : Unable to create e
    nvelope from given source: |#]
    [#|2007-03-23T00:49:06.336-0600|WARNING|sun-appserver-pe9.0|javax.enterprise.sys
    tem.stream.err|_ThreadID=11;_ThreadName=httpWorkerThread-8080-0;_RequestID=64417
    ac0-ded8-474d-9066-5a97c8559b67;|
    com.sun.enterprise.security.jauth.AuthException: Unable to create envelope from
    given source:
    at com.sun.xml.wss.provider.ServerSecurityAuthModule.secureResponse(Serv
    erSecurityAuthModule.java:129)
    at sun.reflect.GeneratedMethodAccessor237.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAcces
    sorImpl.java:25)
    at java.lang.reflect.Method.invoke(Method.java:585)
    at com.sun.enterprise.security.jauth.AuthContext.invokePriv(AuthContext.
    java:128)
    at com.sun.enterprise.security.jauth.AuthContext$1.run(AuthContext.java:
    78)
    at java.security.AccessController.doPrivileged(Native Method)
    at com.sun.enterprise.security.jauth.AuthContext.invoke(AuthContext.java
    :75)
    at com.sun.enterprise.security.jauth.ConfigFile$ConfigServer.secureRespo
    nse(ConfigFile.java:662)
    at com.sun.enterprise.security.wss.WebServiceSecurity.secureResponse(Web
    ServiceSecurity.java:220)
    at com.sun.enterprise.security.wss.WebServiceSecurity.secureResponse(Web
    ServiceSecurity.java:197)
    at com.sun.enterprise.webservice.JAXWSSystemHandlerDelegateFactory$Servl
    etDelegate.processResponse(JAXWSSystemHandlerDelegateFactory.java:540)
    at com.sun.enterprise.webservice.monitoring.JAXWSEndpointImpl.processRes
    ponse(JAXWSEndpointImpl.java:121)
    at com.sun.xml.ws.protocol.soap.server.SOAPMessageDispatcher.receive(SOA
    PMessageDispatcher.java:148)
    at com.sun.xml.ws.server.Tie.handle(Tie.java:88)
    at com.sun.enterprise.webservice.Ejb3MessageDispatcher.handlePost(Ejb3Me
    ssageDispatcher.java:160)
    at com.sun.enterprise.webservice.Ejb3MessageDispatcher.invoke(Ejb3Messag
    eDispatcher.java:89)
    at com.sun.enterprise.webservice.EjbWebServiceServlet.dispatchToEjbEndpo
    int(EjbWebServiceServlet.java:178)
    at com.sun.enterprise.webservice.EjbWebServiceServlet.service(EjbWebServ
    iceServlet.java:109)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
    at com.sun.enterprise.web.AdHocContextValve.invoke(AdHocContextValve.jav
    a:100)
    at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.j
    ava:566)
    at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.jav
    a:536)
    at com.sun.enterprise.web.WebPipeline.invoke(WebPipeline.java:71)
    at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.j
    ava:182)
    at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.j
    ava:566)
    at com.sun.enterprise.web.VirtualServerPipeline.invoke(VirtualServerPipe
    line.java:120)
    at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:939)
    at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineVal
    ve.java:137)
    at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.j
    ava:566)
    at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.jav
    a:536)
    at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:939)
    at org.apache.coyote.tomcat5.CoyoteAdapter.service(CoyoteAdapter.java:23
    1)
    at com.sun.enterprise.web.connector.grizzly.ProcessorTask.invokeAdapter(
    ProcessorTask.java:667)
    at com.sun.enterprise.web.connector.grizzly.ProcessorTask.processNonBloc
    ked(ProcessorTask.java:574)
    at com.sun.enterprise.web.connector.grizzly.ProcessorTask.process(Proces
    sorTask.java:844)
    at com.sun.enterprise.web.connector.grizzly.ReadTask.executeProcessorTas
    k(ReadTask.java:287)
    at com.sun.enterprise.web.connector.grizzly.ReadTask.doTask(ReadTask.jav
    a:212)
    at com.sun.enterprise.web.connector.grizzly.TaskBase.run(TaskBase.java:2
    52)
    at com.sun.enterprise.web.connector.grizzly.WorkerThread.run(WorkerThrea
    d.java:75)
    |#]
    [#|2007-03-23T00:49:06.336-0600|SEVERE|sun-appserver-pe9.0|javax.enterprise.reso
    urce.webservices.jaxws.server.soapmd|_ThreadID=11;_ThreadName=httpWorkerThread-8
    080-0;_RequestID=64417ac0-ded8-474d-9066-5a97c8559b67;|Unable to create envelope
    from given source:
    com.sun.enterprise.security.jauth.AuthException: Unable to create envelope from
    given source:
    at com.sun.xml.wss.provider.ServerSecurityAuthModule.secureResponse(Serv
    erSecurityAuthModule.java:129)
    at sun.reflect.GeneratedMethodAccessor237.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAcces
    sorImpl.java:25)
    at java.lang.reflect.Method.invoke(Method.java:585)
    at com.sun.enterprise.security.jauth.AuthContext.invokePriv(AuthContext.
    java:128)
    at com.sun.enterprise.security.jauth.AuthContext$1.run(AuthContext.java:
    78)
    at java.security.AccessController.doPrivileged(Native Method)
    at com.sun.enterprise.security.jauth.AuthContext.invoke(AuthContext.java
    :75)
    at com.sun.enterprise.security.jauth.ConfigFile$ConfigServer.secureRespo
    nse(ConfigFile.java:662)
    at com.sun.enterprise.security.wss.WebServiceSecurity.secureResponse(Web
    ServiceSecurity.java:220)
    at com.sun.enterprise.security.wss.WebServiceSecurity.secureResponse(Web
    ServiceSecurity.java:197)
    at com.sun.enterprise.webservice.JAXWSSystemHandlerDelegateFactory$Servl
    etDelegate.processResponse(JAXWSSystemHandlerDelegateFactory.java:540)
    at com.sun.enterprise.webservice.monitoring.JAXWSEndpointImpl.processRes
    ponse(JAXWSEndpointImpl.java:121)
    at com.sun.xml.ws.protocol.soap.server.SOAPMessageDispatcher.receive(SOA
    PMessageDispatcher.java:148)
    at com.sun.xml.ws.server.Tie.handle(Tie.java:88)
    at com.sun.enterprise.webservice.Ejb3MessageDispatcher.handlePost(Ejb3Me
    ssageDispatcher.java:160)
    at com.sun.enterprise.webservice.Ejb3MessageDispatcher.invoke(Ejb3Messag
    eDispatcher.java:89)
    at com.sun.enterprise.webservice.EjbWebServiceServlet.dispatchToEjbEndpo
    int(EjbWebServiceServlet.java:178)
    at com.sun.enterprise.webservice.EjbWebServiceServlet.service(EjbWebServ
    iceServlet.java:109)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
    at com.sun.enterprise.web.AdHocContextValve.invoke(AdHocContextValve.jav
    a:100)
    at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.j
    ava:566)
    at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.jav
    a:536)
    at com.sun.enterprise.web.WebPipeline.invoke(WebPipeline.java:71)
    at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.j
    ava:182)
    at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.j
    ava:566)
    at com.sun.enterprise.web.VirtualServerPipeline.invoke(VirtualServerPipe
    line.java:120)
    at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:939)
    at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineVal
    ve.java:137)
    at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.j
    ava:566)
    at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.jav
    a:536)
    at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:939)
    at org.apache.coyote.tomcat5.CoyoteAdapter.service(CoyoteAdapter.java:23
    1)
    at com.sun.enterprise.web.connector.grizzly.ProcessorTask.invokeAdapter(
    ProcessorTask.java:667)
    at com.sun.enterprise.web.connector.grizzly.ProcessorTask.processNonBloc
    ked(ProcessorTask.java:574)
    at com.sun.enterprise.web.connector.grizzly.ProcessorTask.process(Proces
    sorTask.java:844)
    at com.sun.enterprise.web.connector.grizzly.ReadTask.executeProcessorTas
    k(ReadTask.java:287)
    at com.sun.enterprise.web.connector.grizzly.ReadTask.doTask(ReadTask.jav
    a:212)
    at com.sun.enterprise.web.connector.grizzly.TaskBase.run(TaskBase.java:2
    52)
    at com.sun.enterprise.web.connector.grizzly.WorkerThread.run(WorkerThrea
    d.java:75)
    |#]
    [#|2007-03-23T00:49:06.338-0600|WARNING|sun-appserver-pe9.0|javax.enterprise.sys
    tem.stream.err|_ThreadID=11;_ThreadName=httpWorkerThread-8080-0;_RequestID=64417
    ac0-ded8-474d-9066-5a97c8559b67;|
    com.sun.enterprise.security.jauth.AuthException: Unable to create envelope from
    given source:
    at com.sun.xml.wss.provider.ServerSecurityAuthModule.secureResponse(Serv
    erSecurityAuthModule.java:129)
    at sun.reflect.GeneratedMethodAccessor237.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAcces
    sorImpl.java:25)
    at java.lang.reflect.Method.invoke(Method.java:585)
    at com.sun.enterprise.security.jauth.AuthContext.invokePriv(AuthContext.
    java:128)
    at com.sun.enterprise.security.jauth.AuthContext$1.run(AuthContext.java:
    78)
    at java.security.AccessController.doPrivileged(Native Method)
    at com.sun.enterprise.security.jauth.AuthContext.invoke(AuthContext.java
    :75)
    at com.sun.enterprise.security.jauth.ConfigFile$ConfigServer.secureRespo
    nse(ConfigFile.java:662)
    at com.sun.enterprise.security.wss.WebServiceSecurity.secureResponse(Web
    ServiceSecurity.java:220)
    at com.sun.enterprise.security.wss.WebServiceSecurity.secureResponse(Web
    ServiceSecurity.java:197)
    at com.sun.enterprise.webservice.JAXWSSystemHandlerDelegateFactory$Servl
    etDelegate.processResponse(JAXWSSystemHandlerDelegateFactory.java:540)
    at com.sun.enterprise.webservice.monitoring.JAXWSEndpointImpl.processRes
    ponse(JAXWSEndpointImpl.java:121)
    at com.sun.xml.ws.protocol.soap.server.SOAPMessageDispatcher.receive(SOA
    PMessageDispatcher.java:148)
    at com.sun.xml.ws.server.Tie.handle(Tie.java:88)
    at com.sun.enterprise.webservice.Ejb3MessageDispatcher.handlePost(Ejb3Me
    ssageDispatcher.java:160)
    at com.sun.enterprise.webservice.Ejb3MessageDispatcher.invoke(Ejb3Messag
    eDispatcher.java:89)
    at com.sun.enterprise.webservice.EjbWebServiceServlet.dispatchToEjbEndpo
    int(EjbWebServiceServlet.java:178)
    at com.sun.enterprise.webservice.EjbWebServiceServlet.service(EjbWebServ
    iceServlet.java:109)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
    at com.sun.enterprise.web.AdHocContextValve.invoke(AdHocContextValve.jav
    a:100)
    at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.j
    ava:566)
    at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.jav
    a:536)
    at com.sun.enterprise.web.WebPipeline.invoke(WebPipeline.java:71)
    at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.j
    ava:182)
    at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.j
    ava:566)
    at com.sun.enterprise.web.VirtualServerPipeline.invoke(VirtualServerPipe
    line.java:120)
    at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:939)
    at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineVal
    ve.java:137)
    at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.j
    ava:566)
    at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.jav
    a:536)
    at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:939)
    at org.apache.coyote.tomcat5.CoyoteAdapter.service(CoyoteAdapter.java:23
    1)
    at com.sun.enterprise.web.connector.grizzly.ProcessorTask.invokeAdapter(
    ProcessorTask.java:667)
    at com.sun.enterprise.web.connector.grizzly.ProcessorTask.processNonBloc
    ked(ProcessorTask.java:574)
    at com.sun.enterprise.web.connector.grizzly.ProcessorTask.process(Proces
    sorTask.java:844)
    at com.sun.enterprise.web.connector.grizzly.ReadTask.executeProcessorTas
    k(ReadTask.java:287)
    at com.sun.enterprise.web.connector.grizzly.ReadTask.doTask(ReadTask.jav
    a:212)
    at com.sun.enterprise.web.connector.grizzly.TaskBase.run(TaskBase.java:2
    52)
    at com.sun.enterprise.web.connector.grizzly.WorkerThread.run(WorkerThrea
    d.java:75)
    |#]

    Hi,
    Thanks for the reply. I read the weblog and posted a reply to it already.
    History:
    I actually have a web service where I have message level security enabled and it works great. I had some issues early on with descriptor but those are worked out. As I was testing, I created a test case that throws an exception. That is when I get the NAMESPACE_ERROR, jauth exceptions , etc.
    Attempt to find issue:
    Glassfish: V1 (glassfish-installer-9.0-b48.jar), jdk1.5.0_11
    Code: EJB tech tip EJB30 web service
    Security: message security, specified almost verbatim to how it is done in the link you mention.
    Sample works fine until I modify the web service to throw an exception. Once I do that, I get the NAMESPACE_ERROR stack trace I posted in original message. The sample in the tech tip uses the embedded app-client.
    Thanks for helping with this.

  • Getting security exception dialogue box. How do I know this is valid to allow an exception? Especially with the SSL bug out there?

    Worried about Heartbleed bug. Getting "Add Security Exception" when sending e-mail. How can I verify this change is accurate?

    Normally Firefox talks directly to the mail server, but there are a few reasons that an intermediate program or server might intercept your mail session. Not all of these are good reasons.
    Some security suites include a filtering feature. In order to filter secure connections (HTTPS URLs), the security software presents a fake certificate to Firefox so it can intercept and stand in the middle of the secure connection. To have Firefox trust these certificates, you may need to do something such as import a root certificate, or click something in your security software's settings.
    But... many users are finding that rogue software they didn't realize they had installed is the culprit.
    When you are offered the option to add a security exception, does Thunderbird let you view the problem certificate? For example, in Firefox, you can click the Add Exception button in the error page, then in the dialog click View Certificate or Get Certificate to see the Issued by section. You do not need to finish adding an exception.
    We want to get to the "Issued by" section of the certificate, as this often points to the source of the problem.
    The kind of issuer you might find is:
    * Name associated with your security software, such as ESET, BitDefender, etc.
    * Sendori (indicates unwanted software from Sendori)
    * FiddlerRoot (indicates unwanted software named similarly to BrowserSafeguard, BrowserSafe, SafeGuard)
    * Something else
    What do you see?

Maybe you are looking for