SocketPermission error

I am currently making a game. It consists of a file and a server, which works fine when i run both from my computer. When somebody else tries to connect to my java coded server from the client on the internet, the client doesn't connect and the server gets an error, the error is:
java.security.AccessControlException: access denied <java.net.SocketPermission 65.81.13.8:4136 accept,resolv>
(with more text following)
I need help with this VERY much, this period of sleepless nights must come to an end! If it would help u help me any better, my aim sn is "The Duff Factor". Contact me on that. I just read about 100 other forum posts similar to this and they dont help me worth crap. None work. I prolly just need a thread w/ a question exact to my problem; so i'm posting this. THX!

For starters...
Is your server an applet or an application?
Is your client an applet or an application?
Other information that may or may not be useful include:
The operating system(s) involved (for client and for server).
The version of Java in use (for client and for server).
If an applet, what browser or viewer is being used (for client and for server).
A block of code from around the area of the exception. Don't forget to use the special code tokens [code] and around the block of code,
(see http://forum.java.sun.com/faq.jsp#format ) and please point out the line that the line number in the exception report calls out.

Similar Messages

SocketPermission error in applet when accessing the same domain

Hello, my applet downloads the contents of an URI from the same domain, using a relative URI. This should be AFAIK an unprivileged operation and should be always allowed, even for unsigned applets, such as mine.
(In contrast to accessing URIs from a different domain, which requires the applet to be signed or self-signed & confirmed).
Indeed, the applet works perfectly under Windows, both with MSIE+Microsoft JVM, MSIE+Sun JVM and SeaMonkey+Sun JVM and Opera+Sun JVM.
In contrast, under my Gentoo Linux, in SeaMonkey+Sun JVM this doesn't work. Under both Windows & Linux the Sun JVM version is 1.6.0, SeaMonkey version 1.1.7, Java plugin "Java(TM) Plug-in 1.6.0_03-b05". - Everything is emerged from the current stable Portage tree (ebuilds www-client/seamonkey [1.1.7], virtual/jre, dev-java/sun-jdk [1.6.0.03], plus I created a symlink 'libjavaplugin_oji.so' in directory '/usr/lib/seamonkey/plugins' pointing to '/usr/lib/jvm/sun-jdk-1.6/jre/plugin/i386/ns7/libjavaplugin_oji.so'
I have made no changes to my java.policy file. [Yet it seems that such rule as "allow URI access in the same domain" cannot be expressed in this file's language]
The error message I get is exactly what I would get have I tried to access an URI from a different domain. [See below].
Googling as well as searching Sun's forums failed to give an answer. Has anyone have had similar problems? Is it more likely to be just a configuration/Gentoo problem, a more general problem, or perhaps the problem is just between the monitor and the keyboard?
Any help is most welcome. TIA,
Jiri Svoboda
------- Pasted error message -----
java.security.PrivilegedActionException: java.lang.reflect.InvocationTargetException
     at java.security.AccessController.doPrivileged(Native Method)
     at sun.plugin.liveconnect.SecureInvocation$2.run(SecureInvocation.java:141)
     at java.security.AccessController.doPrivileged(Native Method)
     at sun.plugin.liveconnect.SecureInvocation.CallMethod(SecureInvocation.java:122)
     at sun.plugin.navig.motif.AThread.handleRequest(Native Method)
     at sun.plugin.navig.motif.AThread.JNIHandleLoop(AThread.java:40)
     at sun.plugin.navig.motif.AThread.run(AThread.java:32)
Caused by: java.lang.reflect.InvocationTargetException
     at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
     at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
     at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
     at java.lang.reflect.Method.invoke(Method.java:597)
     at sun.plugin.javascript.JSInvoke.invoke(JSInvoke.java:19)
     at sun.reflect.GeneratedMethodAccessor2.invoke(Unknown Source)
     at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
     at java.lang.reflect.Method.invoke(Method.java:597)
     at sun.plugin.javascript.JSClassLoader.invoke(JSClassLoader.java:70)
     at sun.plugin.liveconnect.PrivilegedCallMethodAction.run(SecureInvocation.java:566)
     ... 7 more
Caused by: java.security.AccessControlException: access denied (java.net.SocketPermission 81.2.194.76:80 connect,resolve)
     at java.security.AccessControlContext.checkPermission(AccessControlContext.java:323)
     at java.security.AccessController.checkPermission(AccessController.java:546)
     at java.lang.SecurityManager.checkPermission(SecurityManager.java:532)
     at java.lang.SecurityManager.checkConnect(SecurityManager.java:1034)
     at java.net.Socket.connect(Socket.java:513)
     at sun.net.NetworkClient.doConnect(NetworkClient.java:155)
     at sun.net.www.http.HttpClient.openServer(HttpClient.java:394)
     at sun.net.www.http.HttpClient.openServer(HttpClient.java:529)
     at sun.net.www.http.HttpClient.<init>(HttpClient.java:233)
     at sun.net.www.http.HttpClient.New(HttpClient.java:306)
     at sun.net.www.http.HttpClient.New(HttpClient.java:323)
     at sun.net.www.protocol.http.HttpURLConnection.getNewHttpClient(HttpURLConnection.java:788)
     at sun.net.www.protocol.http.HttpURLConnection.plainConnect(HttpURLConnection.java:729)
     at sun.net.www.protocol.http.HttpURLConnection.connect(HttpURLConnection.java:654)
     at sun.net.www.protocol.http.HttpURLConnection.getInputStream(HttpURLConnection.java:977)
     at java.net.URL.openStream(URL.java:1009)
     at AudioPlayer.getAudioStream(AudioPlayer.java:32)
     at AudioPlayer.startPlaying(AudioPlayer.java:133)
     ... 17 more

Thank you for contacting us to let us know you are experiencing a problem.   Yes, we have addressed the issues we were experiencing earlier.
I believe the problem you are facing is bcause you must use the original user ID you provisioned with your Xfinity Home account. Unfortunately, we only support a single user ID per account on the mobile applications today. We do plan to change this in the future.
I will private message you with the user ID to try on your mobile account.

Problem with Sql Server

Hi All,
While i am trying to connect to sql server through an applet it is giving an error in the java console
Ie SQLException: Connection refused :connect
i also tried with standlone application it is working fine then would be the problem with applet
Here is my driver
Class.forName("com.inet.tds.TdsDriver").newInstance();
DriverManager.getConnection("jdbc:inetdae7:SERVER:1433?database=abc","gin","gin");
How can i resolve this issue.
Thx & Rgds
Vin

Check the permissions for your applet. Anuntrusted
applet(which it is by default) is not allowed toopen
network connections. That might be the cause. Butthen
you should get a SecurityException and not a
Connection Failed exception. Couls you pleasedescribe
the exception that you are getting.
Cheers
JaySome times it is giving access denied i.e.
java.net.SocketPermission error in java console
Try giving full permissions to your applet. There is a
exe file in the bin dir of the jdk installation which
does that(I forgot the name)
Here is the exact error msg which is displaying in java console
SQLException:access denied(Java.net.SocketPermission 127.0.0.1:1433 connect)
-vin

AccessController in Applet

Hi Everyone,
I am a relatively novice user of the java. I am writing a small applet that will help me upload photos to Flickr photo album site.
The applet is signed but its throwing a SocketPermission error at the time of opening an HTTP connection to the server..
I have read elsewhere in the other posts that it could be resolved by setting the AcessController.doPreviliged block but I am not just getting the hang of setting the doPreviliged block.
I will appreciate very much if someone could point out where to set the AccessController block.
Here's the code..
private String sendToFlickr(String parameters){
        // Upload Parameters
        String[] params = new String[13];
        String filePath, apiKey, authToken, apiSig, title, description, tags;
        String content_type, hidden, is_family, is_friend,is_public, safety;
     URL url;
     HttpURLConnection conn     = null;
     OutputStream os         = null;
     InputStream is          = null;
     String result           = null;
     String boundary1   = "------------------------s172u125s1587";
     String boundary2   = "--------------------------s172u125s1587";
      BufferedImage img;
      byte[] imageData;
     try {
     url      = new URL("http://api.flickr.com/services/upload/");
     } catch (MalformedURLException e) {
          return "Unable to form a URL object";
       params       = parameters.split(",");
          filePath     = params[0];
          apiKey       = params[1];
          authToken    = params[2];
          apiSig       = params[3];
          title        = params[4];
          description = params[5];
          tags         = params[6];
          is_family    = params[7];
          is_friend    = params[8];
          is_public    = params[9];
          safety       = params[10];
          content_type = params[11];
          hidden       = params[12];
         // Convert the Image into a Byte Array
         File photoFile       = new File(filePath);
         try {
              img = ImageIO.read(photoFile);
         } catch (IOException e) {
              return "Unable to read photo";
         ByteArrayOutputStream bas = new ByteArrayOutputStream();
         try {
              ImageIO.write(img, "JPG", bas);
              bas.flush();
                  imageData = bas.toByteArray();
               bas.close();
         } catch (IOException e) {
              return "Unable to do byte conversion";
          int imageSize = imageData.length;
          try {
               // Open the connection to the server
               System.out.println("opening url:" + url);
               conn = (HttpURLConnection)url.openConnection();
               conn.setDoOutput(true);
               conn.setDoInput(true);
               conn.setRequestMethod("POST");
               System.out.println("url open for payload");
               // the image is sent between the messages in the multipart message.
               String postContent = "";
               postContent += boundary2+"\r\nContent-Disposition: form-data; name=\"api_key\"\r\n\r\n"+apiKey+"\r\n";
               postContent     += boundary2+"\r\nContent-Disposition: form-data; name=\"auth_token\"\r\n\r\n"+authToken+"\r\n";
               postContent     += boundary2+"\r\nContent-Disposition: form-data; name=\"api_sig\"\r\n\r\n"+apiSig+"\r\n";
               postContent     += boundary2+"\r\nContent-Disposition: form-data; name=\"title\"\r\n\r\n"+title+"\r\n";
               postContent     += boundary2+"\r\nContent-Disposition: form-data; name=\"description\"\r\n\r\n"+description+"\r\n";
               postContent     += boundary2+"\r\nContent-Disposition: form-data; name=\"tags\"\r\n\r\n"+tags+"\r\n";
               postContent     += boundary2+"\r\nContent-Disposition: form-data; name=\"is_public\"\r\n\r\n"+is_public+"\r\n";
               postContent     += boundary2+"\r\nContent-Disposition: form-data; name=\"is_family\"\r\n\r\n"+is_family+"\r\n";
               postContent     += boundary2+"\r\nContent-Disposition: form-data; name=\"is_friend\"\r\n\r\n"+is_friend+"\r\n";
               postContent     += boundary2+"\r\nContent-Disposition: form-data; name=\"hidden\"\r\n\r\n"+hidden+"\r\n";
               postContent     += boundary2+"\r\nContent-Disposition: form-data; name=\"safety\"\r\n\r\n"+safety+"\r\n";
               postContent     += boundary2+"\r\nContent-Disposition: form-data; name=\"content_type\"\r\n\r\n"+content_type+"\r\n";
               postContent     += boundary2+"\r\nContent-Disposition: form-data; name=\"photo\"; filename=\""+filePath+"\""+"\r\n";
               postContent     += boundary2+"\r\nContent-Type: image/jpeg\r\n\r\n";
               String footer = "\r\n"+boundary2+"--\r\n";
               conn.setRequestProperty("Content-Type",   "multipart/form-data; boundary="+boundary1+"\"");
               conn.setRequestProperty("Host",           "api.flickr.com");
               conn.setRequestProperty("Content-Length", String.valueOf(postContent.length() + footer.length() + imageSize));
               System.out.println("opening output stream");
               // ACCESS DENIED ON THE NEXT LINE - SOCKETPERMISSION...ETC.
               os = conn.getOutputStream();
               System.out.println("stream now open");
               System.out.println("writing the param bytes except image data");
               System.out.println(postContent);
               os.write(postContent.getBytes());
               System.out.println("non-image param bytes gone");
               System.out.println("writing the image data bytes");
               int index = 0;
               int size = 1024;
               do {
                    if( (index + size) > imageSize){
                         size = imageSize - index;
                    os.write(imageData, index, size);
                    index += size;
               } while (index < imageSize);
               System.out.println("image data bytes gone");
               System.out.println("sending footer");
               os.write(footer.getBytes());
               System.out.println("footer gone");
               os.flush();
               os.close();
               System.out.println("reading response");
               is          = conn.getInputStream();
               char buff   = 512;
               byte[] data = new byte[buff];
               int len     = is.read(data);
               if (len > 0) {
                    result = new String(data,0,len);
               } while(len > 0);
               System.out.println("response obtained");
               System.out.println("Photo Upoloading Complete!");
          } catch (Exception e) {
               e.printStackTrace();
          } finally {
               System.out.println("Closing connection");
               try {
                    os.close();
               } catch (Exception e){result = "Unable to Close Output Stream";}
               try {
                    is.close();
               } catch (Exception e){result = "Unable to Close Input Stream";}
               try {
                    conn.disconnect();
               } catch (Exception e){result = "Unable to Close Connection";}
          return result;
{code}
Thanks a lot!
Sanj.

I don't think so, what sense would it make?
It's like an application in an application. You can always combine the functionality of 2 programs/applets into one program/applet.

Tomcat / MySQL problem

Simple Tomcat / MySQL code works well on the development server (Windows) but crashes on the production server (Linux).
It finds and loads the driver, then fails to create a connection with
java.security.AccessControlException: access denied (java.net.SocketPermission localhost resolve)Driver is mysql-connector-java-3.0.14-production-bin.jar in ${catalina.home}/common/lib.
MySQL is version 3.23.58.
Tomcat version 4.1.29.
Java version 1.4.2_02.
Operating system is RedHat 9 with Plesk 7.
This looks like a Tomcat security issue but catalina.policy grants all permissions to ${catalina.home}/common/lib/-.
Granting specific permissions has made no difference:
grant codeBase "file:${catalina.home}/common/lib/mysql-connector-java-3.0.14-production-bin.jar" {
permission java.net.SocketPermission "localhost:3306", "listen,connect,accept,resolve";
};The code is straight from the Java tutorial, presented three ways:
1. in a bean, called from a JSP
2. inline in a JSP
3. in a JAR, as an executable class
All of these work in Windows. Only No 3 works in Linux (which suggests the issue is not with Java security). Other JSP pages work fine.
I have not found a MySQL driver preinstalled on the system. I first added mysql-connector-java-3.1.10-bin.jar but this failed because it could not read charset mappings. I have
now reverted to mysql-connector-java-3.0.14-production-bin.jar. Adding the JAR in application/WEB-INF/lib does not help.
I wonder if there is a class loader issue but I cannot find any other JARs that conflict.
Could Tomcat be trying to connect on a different port? It makes no difference whether or not the port number (3306) is included in the URL.
Granting permissions for IP addresses and domain names makes no difference (so far). Besides, the error message is specific about localhost.
Can anyone help, please?
Many thanks
Robin

Spot on! I am not at all clear whether the root cause of the problem is Tomcat, MySQL, Java or whatever ... Until I understand more, everything is suspect.
I have been asking myself what can cause this Access denied / SocketPermission error?
- mis-configuration of the permission: codebase, url, port ?
- in the wrong policy file? catalina.policy or java.policy ?
- faulty installation of something?
- incompatible versions ?
The code all works well on the development machine, which runs Windows 2000. Running it on the Linux machine causes problems.
I do not have full control of the configuration of the Linux machine but I am able to restart Tomcat when needed.
Some specific questions:
I know from the stack trace which Java function is being called:
java.sql.DriverManager.getConnection()The MySQL driver is checking for socket permission when it tries to get a connection and throws:
java.security.AccessControlException: access denied (java.net.SocketPermission localhost resolve) - How do I tell what parameters are being passed to getConnection() without installing the source code?
- How do I tell for sure which policy file governs the check?
Many thanks
Robin

TIGHTVNC CONSOLE BROWSER PLUGIN NOT WORKING

Hi
I am having difficulty getting the VM Console-in-a-webpage facility working from within VM Manager. Whenever I click on the "CONSOLE" button I get a pop-up window (that should have the VNC console plugin running) simply with a java message of "Error: access denied (java.net.SocketPermission SERVERNAME resolve)"
This happens whether I use Firefox or IE (I only have access to Windows XP desktops) running JRE version 6 update 7.
Currently I am running VM Server 2.1.2 and VM Manager 2.1.2. I have downloaded and installed the tightvnc-java-1.3.9-3.noarch.rpm onto the server hosting the VM Manager. The oracle documentation only makes mention of installing the (tightvnc) RPM. I found from various blogs that you actually need to sign the vncviewer jar file, with the commands below:
/opt/oc4j/java/jdk1.5.0_11/bin/keytool -genkey -alias vncviewer -validity 365
/opt/oc4j/java/jdk1.5.0_11/bin/jarsigner VncViewer.jar vncviewer
I've tried restarting the OC4J daemon on the management server; rebooting the management server; flushing the JAVA cache on the workstations I've been using to connect to the management server; turned off all security in IE (for all zones). I still get the JAVA socketpermission error.
On the plus side I can connect to a VMs console using a standalone VNC client so I know it does work, however, that is not quiet as slick as connecting using the VM Manager webpages (you've got to know which "port" the VMs console is connected)...
I'm pretty sure it will be something really trivial that I've missed (wrong RPM version, wrong jarsigner syntax, wrong JAVA version, etc) but for the life of me I cannot find anything more either in this forum or out there on the web.
Any assistance would be gratefully received.
Regards
Mark
Edited by: user576961 on 11-Feb-2009 02:50

Hi There
Are you using Mozilla Firefox to access the console or Internet explorer ?
If its INternet explorer then please follow this :- +
Installing TightVNC for Non-Linux Users
After Oracle VM Manager is installed, install the TightVNC-Java applet for non-Linux users to access virtual machines. Download the latest version from: http://oss.oracle.com/oraclevm/manager/RPMS/.
To set up the TightVNC-Java applet:
Install it using the command:
# rpm -ivh tightvnc-java-version.noarch.rpm
version refers to the version of the TightVNC-Java applet. For example:
# rpm -ivh tightvnc-java-1.3.9-3.noarch.rpm
This should work out for you, try it in INternet explorer first, then you will know if it worked.
Make sure u restart after installation of the RPM
cheers
let moi know how u get on

Tomcat calling weblogic applet

Does anyone know how to get by this exception. java.security.AccessControlException:
access denied (java.net.SocketPermission ) I'm running a web app that calls
an applet sitting on weblogic 6.1. Whenever I try to call it, it gives me the
socketPermission error. What do I have to do to get by this?
Thanks

I have managed to do this, but perhaps the way I have done it is a bit long-winded and there may be an easier (better) way. Also, note that this method is for applets on the same web site only.
The answer lies in Javascript, where a Javascript method can call an Applet method. Therefore, if one applet can communicate with the web-page via Javascript, then any other applets on that page can communicate with any other applets there.
This is an example piece of Javascript code to show u what I mean:
function callAppletMethod()
var str = window.parent.VerifyApp.check();
etc...
}Here, the variable 'str' gains the value returned by the method 'check()' in the applet called VerifyApp.
There is other ways to communicate between applets and Javascript, but I think they are for Netscape Navigator browsers only.
Anyway, hope that helps.

Error while accessing a service in ESS

Hi All,
I have uploaded a PDF file in KM, i have created KM document iview for that, in portal content when i triying to priview this iview it is getting opened. I have assigned this as link in in ESS but when i am trying to access this link i am getting an error "Page Cannot be Displayed", when i check the log file i am getting some error.
info 2010-04-15 10:39:30:654 ACCESS.OK: Authorization check for caller assignment to J2EE security role [SAP-J2EE-Engine : guests].
/System/Security/Audit/J2EE com.sap.engine.services.security.roles.audit sap.com/irj gsusapdp04 Server 0 0_47203
Full Message Text
ACCESS.OK: Authorization check for caller assignment to J2EE security role [SAP-J2EE-Engine : guests].
warning 2010-04-15 10:39:23:094 Insufficient permissions for getting SLD access information. You can add permissions for your application via the SLD service in the 'Visual Administrator'.
/System/Server/SLDService com.sap.sldserv.SldApplicationService sap.com/tcwddispwda gsusapdp04 Server 0 0_47203
Full Message Text
Insufficient permissions for getting SLD access information. You can add permissions for your application via the SLD service in the 'Visual Administrator'.
[permissions_collection_operator]: [permission_collection]: domain's permissions: [
standalone: []
collections:
{(java.lang.RuntimePermission loadLibrary)(java.lang.RuntimePermission queuePrintJob)(java.lang.RuntimePermission stopThread)}
*{(java.io.FilePermission * read,write)}*
*{(java.net.SocketPermission localhost:1024- listen,resolve)(java.net.SocketPermission * connect,resolve)}*
*{(java.util.PropertyPermission java.version read)(java.util.PropertyPermission java.vm.name read)(java.util.PropertyPermission java.vm.vendor read)(java.util.PropertyPermission os.name read)(java.util.PropertyPermission java.vendor.url read)(java.util.PropertyPermission java.vm.specification.vendor read)(java.util.PropertyPermission os.version read)(java.util.PropertyPermission java.specification.vendor read)(java.util.PropertyPermission java.class.version read)(java.util.PropertyPermission java.specification.name read)(java.util.PropertyPermission file.separator read)(java.util.PropertyPermission java.vm.version read)(java.util.PropertyPermission os.arch read)(java.util.PropertyPermission java.vendor read)(java.util.PropertyPermission java.vm.specification.name read)(java.util.PropertyPermission java.specification.version read)(java.util.PropertyPermission java.vm.specification.version read)(java.util.PropertyPermission * read)(java.util.PropertyPermission path.separator read)(java.util.PropertyPermission line.separator read)}*
Earlier we have EP 7 with SP14, at that time link was working fine, later due to some problem we have undeployed and redeployed ESS/MSS - BP and upgraded SP14 to SP18 now we are facing this error, can you just help me out solving this issue.
Thanks & Regards,
Ramesh.

Hi Ramesh,
I am facing with the same problem. Have you found the solution for it.
Thanks.

Not Deploy Identity Manager error SessionFactory.getLocaleInfo

I need deploy IM (db oracle) with Appplication server 8
error:
java.lang.NullPointerException
     com.waveset.session.SessionFactory.getLocaleInfo(SessionFactory.java:947)
     com.waveset.ui.PageInformation.getLanguageFlags(PageInformation.java:2950)
     org.apache.jsp.login_jsp._jspService(login_jsp.java:559)
     org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:105)
     javax.servlet.http.HttpServlet.service(HttpServlet.java:860)
     org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:336)
     org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:297)
     org.apache.jasper.servlet.JspServlet.service(JspServlet.java:247) ....................
in server.policy I have this:
grant {
permission java.lang.RuntimePermission "accessClassInPackage.sun.io";
permission java.lang.RuntimePermission "getClassLoader";
permission java.lang.RuntimePermission "createClassLoader";
permission java.lang.RuntimePermission "accessDeclaredMembers";
permission com.waveset.repository.test.testConcurrentLocking "read";
permission java.net.SocketPermission "*", "connect,resolve";
permission java.io.FilePermission "*", "read";
permission java.util.PropertyPermission "*", "read,write";
grant codeBase "file:${waveset.home}/-" {
permission java.util.PropertyPermission "waveset.home", "read,write";
permission java.util.PropertyPermission "security.provider", "read,write";
permission java.io.FilePermission "${waveset.home}${/} *", "read,write,execute";
permission java.io.FilePermission "${waveset.home}/help/index/-",
"read,write,execute,delete";
permission java.io.FilePermission "$(java.io.tmpdir)$(/)*", "read,write,delete";
permission java.util.PropertyPermission "*", "read,write";
permission java.lang.RuntimePermission "accessClassInPackage.sun.io";
permission java.net.SocketPermission "*", "connect,resolve";
grant {
permission java.lang.RuntimePermission "shutdownHooks";
permission java.io.FilePermission "${waveset.home}/WEB-INF/spe/config/spe.tld", "read";
URL: localhost:8080/idm redirect to localhost:8080/idm/login.jsp
Help
Thanks

I'm getting the same thing. And I do have AM installed and working on the same machine.
Anyone have any ideas?

An unexpected error has been detected by HotSpot Virtual Machine:

Hi
When I upload the xml file with dubug window.
When I have debug then this message will come..
So give me a solution..
Here at below I have pasted files. in which I want to by pass the ldap..
So give me suggestion what to do with that files.
What's wrong with that file ?
Jiten
18 Oct 2007 17:02:09 0 INFO [main] security.SecurityUtil - SecurityUtil.login: Called with [email protected]; password=[C@1797795; sourceIpAddress=192.168.5.14; weblogin=false; realm=null
18 Oct 2007 17:02:09 16 INFO [main] security.SecurityUtil - login: start login: username: [email protected]
18 Oct 2007 17:02:09 125 INFO [main] BOOT - -- boot log messages -->
[BOOT] INFO: Loading OJB's properties: file:/C:/LMS/gsnx/deploy/webapp/gsnx.ear/webapp.war/WEB-INF/classes/OJB.properties
[BOOT] WARN: Can't read logging properties file using path 'OJB-logging.properties', message is:
C:\LMS\gsnx\OJB-logging.properties (The system cannot find the file specified)
Will try to load logging properties from OJB.properties file
[BOOT] INFO: Logging: Found 'log4j.properties' file, use class org.apache.ojb.broker.util.logging.Log4jLoggerImpl
[BOOT] INFO: Log4J is already configured, will not search for log4j properties file
18 Oct 2007 17:02:12 3282 INFO [main] security.SecurityUtil - SecurityUtil.login: Calling authentication with [email protected]; password=[C@1797795; realm=null
# An unexpected error has been detected by HotSpot Virtual Machine:
# EXCEPTION_ACCESS_VIOLATION (0xc0000005) at pc=0x6d85c14f, pid=4032, tid=3260
# Java VM: Java HotSpot(TM) Client VM (1.5.0_11-b03 mixed mode)
# Problematic frame:
# V [jvm.dll+0x11c14f]
# An error report file with more information is saved as hs_err_pid4032.log
# If you would like to submit a bug report, please visit:
# http://java.sun.com/webapps/bugreport/crash.jsp
Here :This is my login.config file..
* Copyright (c) 2003-2005 E2open Inc. All rights reserved.
* gnsx security configuration file
* Note:
* 1. At installation time, java.security file in your jre's lib/security/ directory should
* be edited add the following line (ganx.home} is the home directory of gsnx install
* login.config.url.1=file:{gsnx.home}/conf/login.config
* 2. Edit this file to replace ldap-url with the correct url for your
* LoginModule configuration.
* @version $Id: login.config,v 1.8 2006/02/04 18:38:11 vgeorge Exp $
gsnx.security.Login
* LdapLoginModule Options:
* ldap-url - LDAP connection URL, such as ldap://localhost:389
* e.g. ldap-url="ldap://192.168.31.63:389"
* dn-mask - The DN mask for user. The number 0 refers to the parameter
* number for username. If this is specified then user search is ingored.
* **This option is DEPRECATED**.
* e.g. dn-mask="cn={0},ou=People,dc=gsnx,dc=com"
* initialContextFactory - Class name of the initial context factory
* e.g. initialContextFactory="com.sun.jndi.ldap.LdapCtxFactory"
* connection-username - The DN used by the login module itself for authentication to
* the directory server.
* e.g. connection-username="uid=admin,ou=system"
* connection-password - Password that is used by the login module to authenticate
* itself to the directory server
* e.g. connection-password="password"
* connectionProtocol - The security protocol to use. This value is determined by the
* service provider. An example would be SSL.
* e.g. connectionProtocol="ldap"
* authentication - The security level to use. Its value is one of the following
* strings: "none", "simple", "strong".
* e.g. authentication="simple"
* user-search-base - the base DN for the user search
* e.g. user-search-base="ou=users,ou=system"
* user-search-pattern - filter specification how to search for the user object.
* RFC 2254 filters are allowed. For example: (uid=user1). To parameterize the value
* of the CN attribute type, specify (uid = {0}). The number 0 refers to the parameter
* number for username. This query must return exactly one object.
* e.g. user-search-pattern="uid={0}"
* user-search-scope-subtree - Directory search scope for the user (ture | false)
* ture - directory search scope is SUBTREE
* false - directory search scope is ONE-LEVEL
* e.g. user-search-scope-subtree="true"
* user-password-changepw-gsnx-handler - hander to change password
* If this handler is not specified, the change password feature will not be available
* if "com.gsnx.core.server.security.LdapLoginModule", is used the the
* option - user-password-attribute is required.
* e.g. user-password-changepw-gsnx-handler="com.gsnx.core.server.security.LdapLoginModule"
* user-password-attribute - attribute in LDAP that stores the user password
* If this is not specified, the change password feature will not be work
* when "com.gsnx.core.server.security.LdapLoginModule", is used as
* user-password-changepw-gsnx-handler
* e.g. user-password-attribute="userPassword"
* role-search-base - The base DN for the group membership search
* e.g. role-search-base="ou=groups,ou=system"
* role-name-attribute - LDAP attribute type that identifies group name attribute in the object
* returned from the group membership query. The group membership query is defined
* by the role-search-pattern parameter. Typically the group name parameter is "cn".
* e.g. role-name="cn"
* role-search-pattern - The filter specification how to search for the role object.
* RFC 2254 filters are allowed. For example: (uniqueMember = {0}). The number 0
* refers refers to the DN of the authenticated user. Note that if role membership
* for the user is defined in the member-of-like attribute (see user-role-name
* parameter) you may not need to search for group membership with the query.
* e.g. role-search-pattern="(uniqueMember={0})"
* role-search-scope-subtree - Directory search scope for the role (ture | false).
* ture - directory search scope is SUBTREE
* false - directory search scope is ONE-LEVEL
* e.g. role-search-scope-subtree="false"
* user-role-attribute - LDAP attribute type for the user group membership. Different LDAP
* schemas represent user group membership in different ways such as memberOf,
* isMemberOf, member, etc. Values of these attributes are identifiers of groups that
* a user is a member of. For example, if you have: memberOf: cn=admin,ou=groups,dc=gsnx,
* specify "memberOf" as the value for the user-role-name attribute. Be aware of the
* relationship between this parameter and group membership query. Typically
* they will return the same data.
* e.g. user-role-name="memberOf"
* ldap://ldap-qa.dev.e2open.com:389
* ldap://192.168.31.63:389
com.gsnx.core.server.security.PassthruLoginModule required
*com.gsnx.core.server.security.LdapLoginModule required
initial-context-factory="com.sun.jndi.ldap.LdapCtxFactory"
ldap-url="ldap://ldap-qa.dev.e2open.com:389"
connection-username="cn=Manager,dc=gsnx,dc=com"
connection-password="slapface"
connection-protocol="ldap"
authentication="simple"
user-search-base="dc=gsnx,dc=com"
user-search-pattern="cn={0}"
user-search-scope-subtree="true"
user-password-changepw-gsnx-handler="com.gsnx.core.server.security.PassthruLoginModule"
user-password-attribute="userPassword"
role-search-base=""
role-name-attribute=""
role-search-pattern=""
role-search-scope-subtree=""
user-role-attribute="";
This is LoginConfig.xml
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE policy PUBLIC "-//JBoss//DTD JBOSS Security Config 3.0//EN" "http://www.jboss.org/j2ee/dtd/security_config.dtd">
<policy>

<application-policy name="gsnx.security.Login">
<authentication>

<login-module code="com.gsnx.core.server.security.PassthruLoginModule" flag="required">
<module-option name="initial-context-factory">com.sun.jndi.ldap.LdapCtxFactory
</module-option>

<module-option name="user-password-changepw-gsnx-handler">com.gsnx.core.server.security.PassthruLoginModule
</module-option>


<module-option name="ldap-url">ldap://ldap-qa.dev.e2open.com:389</module-option>
<module-option name="connection-username">cn=Manager,dc=gsnx,dc=com</module-option>
<module-option name="connection-password">slapface</module-option>
<module-option name="connection-protocol">ldap</module-option>
<module-option name="authentication">simple</module-option>
<module-option name="user-search-base">dc=gsnx,dc=com</module-option>
<module-option name="user-search-pattern">cn={0}</module-option>
<module-option name="user-search-scope-subtree">true</module-option>
<module-option name="user-password-attribute"/>
<module-option name="role-search-base"/>
<module-option name="role-name-attribute"/>
<module-option name="role-search-pattern"/>
<module-option name="role-search-scope-subtree"/>
<module-option name="user-role-attribute"/>
</login-module>
</authentication>
</application-policy>
<application-policy name="client-login">
<authentication>
<login-module code="org.jboss.security.ClientLoginModule" flag="required">
</login-module>
</authentication>
</application-policy>

<application-policy name="jbossmq">
<authentication>
<login-module code="org.jboss.security.auth.spi.DatabaseServerLoginModule" flag="required">
<module-option name="unauthenticatedIdentity">guest</module-option>
<module-option name="dsJndiName">java:/DefaultDS</module-option>
<module-option name="principalsQuery">SELECT PASSWD FROM JMS_USERS WHERE USERID=?</module-option>
<module-option name="rolesQuery">SELECT ROLEID, 'Roles' FROM JMS_ROLES WHERE USERID=?</module-option>
</login-module>
</authentication>
</application-policy>


<application-policy name="HsqlDbRealm">
<authentication>
<login-module code="org.jboss.resource.security.ConfiguredIdentityLoginModule" flag="required">
<module-option name="principal">sa</module-option>
<module-option name="userName">sa</module-option>
<module-option name="password"/>
<module-option name="managedConnectionFactoryName">jboss.jca:service=LocalTxCM,name=DefaultDS</module-option>
</login-module>
</authentication>
</application-policy>
<application-policy name="JmsXARealm">
<authentication>
<login-module code="org.jboss.resource.security.ConfiguredIdentityLoginModule" flag="required">
<module-option name="principal">guest</module-option>
<module-option name="userName">guest</module-option>
<module-option name="password">guest</module-option>
<module-option name="managedConnectionFactoryName">jboss.jca:service=TxCM,name=JmsXA</module-option>
</login-module>
</authentication>
</application-policy>

<application-policy name="jmx-console">
<authentication>
<login-module code="org.jboss.security.auth.spi.UsersRolesLoginModule" flag="required">
<module-option name="usersProperties">props/jmx-console-users.properties</module-option>
<module-option name="rolesProperties">props/jmx-console-roles.properties</module-option>
</login-module>
</authentication>
</application-policy>

<application-policy name="web-console">
<authentication>
<login-module code="org.jboss.security.auth.spi.UsersRolesLoginModule" flag="required">
<module-option name="usersProperties">web-console-users.properties</module-option>
<module-option name="rolesProperties">web-console-roles.properties</module-option>
</login-module>
</authentication>
</application-policy>

<application-policy name="JBossWS">
<authentication>
<login-module code="org.jboss.security.auth.spi.UsersRolesLoginModule" flag="required">
<module-option name="unauthenticatedIdentity">anonymous</module-option>
</login-module>
</authentication>
</application-policy>

<application-policy name="other">

<authentication>
<login-module code="org.jboss.security.auth.spi.UsersRolesLoginModule" flag="required"/>
</authentication>
</application-policy>
</policy>
This is : java.security
# This is the "master security properties file".
# In this file, various security properties are set for use by
# java.security classes. This is where users can statically register
# Cryptography Package Providers ("providers" for short). The term
# "provider" refers to a package or set of packages that supply a
# concrete implementation of a subset of the cryptography aspects of
# the Java Security API. A provider may, for example, implement one or
# more digital signature algorithms or message digest algorithms.
# Each provider must implement a subclass of the Provider class.
# To register a provider in this master security properties file,
# specify the Provider subclass name and priority in the format
# security.provider.<n>=<className>
# This declares a provider, and specifies its preference
# order n. The preference order is the order in which providers are
# searched for requested algorithms (when no specific provider is
# requested). The order is 1-based; 1 is the most preferred, followed
# by 2, and so on.
# <className> must specify the subclass of the Provider class whose
# constructor sets the values of various properties that are required
# for the Java Security API to look up the algorithms or other
# facilities implemented by the provider.
# There must be at least one provider specification in java.security.
# There is a default provider that comes standard with the JDK. It
# is called the "SUN" provider, and its Provider subclass
# named Sun appears in the sun.security.provider package. Thus, the
# "SUN" provider is registered via the following:
# security.provider.1=sun.security.provider.Sun
# (The number 1 is used for the default provider.)
# Note: Statically registered Provider subclasses are instantiated
# when the system is initialized. Providers can be dynamically
# registered instead by calls to either the addProvider or
# insertProviderAt method in the Security class.
# List of providers and their preference orders (see above):
security.provider.1=sun.security.provider.Sun
security.provider.2=sun.security.rsa.SunRsaSign
security.provider.3=com.sun.net.ssl.internal.ssl.Provider
security.provider.4=com.sun.crypto.provider.SunJCE
security.provider.5=sun.security.jgss.SunProvider
security.provider.6=com.sun.security.sasl.Provider
# Select the source of seed data for SecureRandom. By default an
# attempt is made to use the entropy gathering device specified by
# the securerandom.source property. If an exception occurs when
# accessing the URL then the traditional system/thread activity
# algorithm is used.
# On Solaris and Linux systems, if file:/dev/urandom is specified and it
# exists, a special SecureRandom implementation is activated by default.
# This "NativePRNG" reads random bytes directly from /dev/urandom.
# On Windows systems, the URLs file:/dev/random and file:/dev/urandom
# enables use of the Microsoft CryptoAPI seed functionality.
securerandom.source=file:/dev/urandom
# The entropy gathering device is described as a URL and can also
# be specified with the system property "java.security.egd". For example,
# -Djava.security.egd=file:/dev/urandom
# Specifying this system property will override the securerandom.source
# setting.
# Class to instantiate as the javax.security.auth.login.Configuration
# provider.
login.configuration.provider=com.sun.security.auth.login.ConfigFile
# Default login configuration file
login.config.url.1=C:\LMS\gsnx\core\src\conf\login.config
# Class to instantiate as the system Policy. This is the name of the class
# that will be used as the Policy object.
policy.provider=sun.security.provider.PolicyFile
# The default is to have a single system-wide policy file,
# and a policy file in the user's home directory.
policy.url.1=file:${java.home}/lib/security/java.policy
policy.url.2=file:${user.home}/.java.policy
# whether or not we expand properties in the policy file
# if this is set to false, properties (${...}) will not be expanded in policy
# files.
policy.expandProperties=true
# whether or not we allow an extra policy to be passed on the command line
# with -Djava.security.policy=somefile. Comment out this line to disable
# this feature.
policy.allowSystemProperty=true
# whether or not we look into the IdentityScope for trusted Identities
# when encountering a 1.1 signed JAR file. If the identity is found
# and is trusted, we grant it AllPermission.
policy.ignoreIdentityScope=false
# Default keystore type.
keystore.type=jks
# Class to instantiate as the system scope:
system.scope=sun.security.provider.IdentityDatabase
# List of comma-separated packages that start with or equal this string
# will cause a security exception to be thrown when
# passed to checkPackageAccess unless the
# corresponding RuntimePermission ("accessClassInPackage."+package) has
# been granted.
package.access=sun.
# List of comma-separated packages that start with or equal this string
# will cause a security exception to be thrown when
# passed to checkPackageDefinition unless the
# corresponding RuntimePermission ("defineClassInPackage."+package) has
# been granted.
# by default, no packages are restricted for definition, and none of
# the class loaders supplied with the JDK call checkPackageDefinition.
#package.definition=
# Determines whether this properties file can be appended to
# or overridden on the command line via -Djava.security.properties
security.overridePropertiesFile=true
# Determines the default key and trust manager factory algorithms for
# the javax.net.ssl package.
ssl.KeyManagerFactory.algorithm=SunX509
ssl.TrustManagerFactory.algorithm=PKIX
# Determines the default SSLSocketFactory and SSLServerSocketFactory
# provider implementations for the javax.net.ssl package. If, due to
# export and/or import regulations, the providers are not allowed to be
# replaced, changing these values will produce non-functional
# SocketFactory or ServerSocketFactory implementations.
#ssl.SocketFactory.provider=
#ssl.ServerSocketFactory.provider=
# The Java-level namelookup cache policy for successful lookups:
# any negative value: caching forever
# any positive value: the number of seconds to cache an address for
# zero: do not cache
# default value is forever (FOREVER). For security reasons, this
# caching is made forever when a security manager is set.
# NOTE: setting this to anything other than the default value can have
# serious security implications. Do not set it unless
# you are sure you are not exposed to DNS spoofing attack.
#networkaddress.cache.ttl=-1
# The Java-level namelookup cache policy for failed lookups:
# any negative value: cache forever
# any positive value: the number of seconds to cache negative lookup results
# zero: do not cache
# In some Microsoft Windows networking environments that employ
# the WINS name service in addition to DNS, name service lookups
# that fail may take a noticeably long time to return (approx. 5 seconds).
# For this reason the default caching policy is to maintain these
# results for 10 seconds.
networkaddress.cache.negative.ttl=10
# Properties to configure OCSP for certificate revocation checking
# Enable OCSP
# By default, OCSP is not used for certificate revocation checking.
# This property enables the use of OCSP when set to the value "true".
# NOTE: SocketPermission is required to connect to an OCSP responder.
# Example,
# ocsp.enable=true
# Location of the OCSP responder
# By default, the location of the OCSP responder is determined implicitly
# from the certificate being validated. This property explicitly specifies
# the location of the OCSP responder. The property is used when the
# Authority Information Access extension (defined in RFC 3280) is absent
# from the certificate or when it requires overriding.
# Example,
# ocsp.responderURL=http://ocsp.example.net:80
# Subject name of the OCSP responder's certificate
# By default, the certificate of the OCSP responder is that of the issuer
# of the certificate being validated. This property identifies the certificate
# of the OCSP responder when the default does not apply. Its value is a string
# distinguished name (defined in RFC 2253) which identifies a certificate in
# the set of certificates supplied during cert path validation. In cases where
# the subject name alone is not sufficient to uniquely identify the certificate
# then both the "ocsp.responderCertIssuerName" and
# "ocsp.responderCertSerialNumber" properties must be used instead. When this
# property is set then those two properties are ignored.
# Example,
# ocsp.responderCertSubjectName="CN=OCSP Responder, O=XYZ Corp"
# Issuer name of the OCSP responder's certificate
# By default, the certificate of the OCSP responder is that of the issuer
# of the certificate being validated. This property identifies the certificate
# of the OCSP responder when the default does not apply. Its value is a string
# distinguished name (defined in RFC 2253) which identifies a certificate in
# the set of certificates supplied during cert path validation. When this
# property is set then the "ocsp.responderCertSerialNumber" property must also
# be set. When the "ocsp.responderCertSubjectName" property is set then this
# property is ignored.
# Example,
# ocsp.responderCertIssuerName="CN=Enterprise CA, O=XYZ Corp"
# Serial number of the OCSP responder's certificate
# By default, the certificate of the OCSP responder is that of the issuer
# of the certificate being validated. This property identifies the certificate
# of the OCSP responder when the default does not apply. Its value is a string
# of hexadecimal digits (colon or space separators may be present) which
# identifies a certificate in the set of certificates supplied during cert path
# validation. When this property is set then the "ocsp.responderCertIssuerName"
# property must also be set. When the "ocsp.responderCertSubjectName" property
# is set then this property is ignored.
# Example,
# ocsp.responderCertSerialNumber=2A:FF:00

user564785 wrote:
I am trying to installl Oracle 11gR2 on VM machine with Redhat Linux 6-64bit. That is a Oracle database problem. Even though the Oracle product uses java it still represents a problem with that product (Oracle) rather than java. So you need to start with an Oracle database forum.

Access denied error, I need your help.

Greetings,
I cannot connect to my server in java applet with 'thin' driver, my server is : Solaris 2.5.1/2.6 + Oracle8.0.4 for Sun SPARC.
The code is :
conn = DriverManager.getConnection("jdbc:oracle:thin:@192.168.4.35:1521:ora8","scott","tiger");
I got the error message:
" access denied (java.net.SocketPermission 192.168.4.35:1521 connect,resolve) "
Is this error related to SNMP?
The result of command "lsnrctl status" is :
Trace Level off
Security OFF
SNMP OFF
What can i do?
Thanks for any help.
null

Hello,
Which system are you getting the error, XP / Win 7 ?
Please find the minimum H/W requirement (Source Inst Guide)
Minimum RAM :- 4GB
Paging file size :- 1 times RAM plus 8 GB
If you are trying for win 7, then I would recommend you to
increase the swap space and give it a try.
It looks like it is not getting the required system
resources (RAM).
Thanks,
Vishal

Database Connection Error Cannot create PoolableConnectionFactory

Hello everyone,
Background:
I have a newly installed and configured Ubuntu server running Tomcat5.5 and Mysql 5.0. This server was created in an attempt to migrate from a Red Hat server in a similar configuration, running the exact same webapp. Most of the configuration/classpath differences between the two platforms have been ironed out.
The Problem:
When our webapp trys to connect to the database on localhost, an exception 'java.security.AccessControlException: access denied (java.net.SocketPermission localhost resolve)' is generated.
The server.xml configuration is below:
<Resource name="jdbc/EconDollarsDB"
auth="Container"
type="javax.sql.DataSource"
username="user"
password="pass"
driverClassName="com.mysql.jdbc.Driver"
url="jdbc:mysql://localhost:3306/DBName?autoReconnect=true"
maxActive="20" maxIdle="5"
/>I can connect to the database just fine using the command line client and the same username/password combo. This configuration has been working fine for at least a year on the older server. The only similar problems I have found on the net (meaning the same exception is generated) involve applets and attempts to connect to different hosts. This case involves a webapp, connecting to localhost, using a configuration that is known to work! I am simply baffled.
The following stacktrace is generated:
javax.servlet.ServletException: Database Connection Error
Cannot create PoolableConnectionFactory (Server connection failure during transaction. Due to underlying exception: 'java.security.AccessControlException: access denied (java.net.SocketPermission localhost resolve)'.
** BEGIN NESTED EXCEPTION **
java.security.AccessControlException
MESSAGE: access denied (java.net.SocketPermission localhost resolve)
STACKTRACE:
java.security.AccessControlException: access denied (java.net.SocketPermission localhost resolve)
     at java.security.AccessControlContext.checkPermission(AccessControlContext.java:264)
     at java.security.AccessController.checkPermission(AccessController.java:427)
     at java.lang.SecurityManager.checkPermission(SecurityManager.java:532)
     at java.lang.SecurityManager.checkConnect(SecurityManager.java:1031)
     at java.net.InetAddress.getAllByName0(InetAddress.java:1117)
     at java.net.InetAddress.getAllByName0(InetAddress.java:1098)
     at java.net.InetAddress.getAllByName(InetAddress.java:1061)
     at com.mysql.jdbc.StandardSocketFactory.connect(StandardSocketFactory.java:137)
     at com.mysql.jdbc.MysqlIO.<init>(MysqlIO.java:276)
     at com.mysql.jdbc.Connection.createNewIO(Connection.java:2769)
     at com.mysql.jdbc.Connection.<init>(Connection.java:1531)
     at com.mysql.jdbc.NonRegisteringDriver.connect(NonRegisteringDriver.java:266)
     at org.apache.commons.dbcp.DriverConnectionFactory.createConnection(DriverConnectionFactory.java:37)
     at org.apache.commons.dbcp.PoolableConnectionFactory.makeObject(PoolableConnectionFactory.java:290)
     at org.apache.commons.dbcp.BasicDataSource.validateConnectionFactory(BasicDataSource.java:877)
     at org.apache.commons.dbcp.BasicDataSource.createDataSource(BasicDataSource.java:851)
     at org.apache.commons.dbcp.BasicDataSource.getConnection(BasicDataSource.java:540)
     at edu.tamu.erl.database.dblibrary.plugin.TomcatConnectionFactory.getConnection(TomcatConnectionFactory.java:102)
     at edu.tamu.erl.database.dblibrary.DBManager.getConnection(DBManager.java:70)
     at edu.tamu.erl.database.dblibrary.DBManager.getDBDataAccessObjectList(DBManager.java:318)
     at edu.tamu.erl.econdollars.middletire.SessionManager.getSessionStatus(SessionManager.java:157)
     at edu.tamu.erl.econdollars.middletire.SessionManager.retallyDB(SessionManager.java:637)
     at org.apache.jsp.admin.login_jsp._jspService(login_jsp.java:88)
     at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:94)
     at javax.servlet.http.HttpServlet.service(HttpServlet.java:802)
     at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:324)
     at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:292)
     at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:236)
     at javax.servlet.http.HttpServlet.service(HttpServlet.java:802)
     at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
     at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
     at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
     at java.lang.reflect.Method.invoke(Method.java:585)
     at org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:243)
     at java.security.AccessController.doPrivileged(Native Method)
     at javax.security.auth.Subject.doAsPrivileged(Subject.java:517)
     at org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:272)
     at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:161)
     at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:245)
     at org.apache.catalina.core.ApplicationFilterChain.access$0(ApplicationFilterChain.java:50)
     at org.apache.catalina.core.ApplicationFilterChain$1.run(ApplicationFilterChain.java:156)
     at java.security.AccessController.doPrivileged(Native Method)
     at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:152)
     at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:214)
     at org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:104)
     at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:520)
     at org.apache.catalina.core.StandardContextValve.invokeInternal(StandardContextValve.java:198)
     at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:152)
     at org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:104)
     at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:540)
     at org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:102)
     at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:520)
     at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:137)
     at org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:104)
     at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:118)
     at org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:102)
     at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:520)
     at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
     at org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:104)
     at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:520)
     at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:929)
     at org.apache.coyote.tomcat5.CoyoteAdapter.service(CoyoteAdapter.java:160)
     at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:799)
     at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConnection(Http11Protocol.java:705)
     at org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:577)
     at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:684)
     at java.lang.Thread.run(Thread.java:595)
** END NESTED EXCEPTION **
Attempted reconnect 3 times. Giving up.)
     org.apache.jasper.runtime.PageContextImpl.doHandlePageException(PageContextImpl.java:846)
     org.apache.jasper.runtime.PageContextImpl.access$11(PageContextImpl.java:65)
     org.apache.jasper.runtime.PageContextImpl$12.run(PageContextImpl.java:766)
     java.security.AccessController.doPrivileged(Native Method)
     org.apache.jasper.runtime.PageContextImpl.handlePageException(PageContextImpl.java:764)
     org.apache.jsp.admin.login_jsp._jspService(login_jsp.java:242)
     org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:94)
     javax.servlet.http.HttpServlet.service(HttpServlet.java:802)
     org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:324)
     org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:292)
     org.apache.jasper.servlet.JspServlet.service(JspServlet.java:236)
     javax.servlet.http.HttpServlet.service(HttpServlet.java:802)
     sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
     sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
     sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
     java.lang.reflect.Method.invoke(Method.java:585)
     org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:243)
     java.security.AccessController.doPrivileged(Native Method)
     javax.security.auth.Subject.doAsPrivileged(Subject.java:517)
     org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:272)
     org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:161)
edu.tamu.erl.database.dblibrary.DBLibraryBaseException: Database Connection Error
Cannot create PoolableConnectionFactory (Server connection failure during transaction. Due to underlying exception: 'java.security.AccessControlException: access denied (java.net.SocketPermission localhost resolve)'.
** BEGIN NESTED EXCEPTION **
java.security.AccessControlException
MESSAGE: access denied (java.net.SocketPermission localhost resolve)
STACKTRACE:
java.security.AccessControlException: access denied (java.net.SocketPermission localhost resolve)
     at java.security.AccessControlContext.checkPermission(AccessControlContext.java:264)
     at java.security.AccessController.checkPermission(AccessController.java:427)
     at java.lang.SecurityManager.checkPermission(SecurityManager.java:532)
     at java.lang.SecurityManager.checkConnect(SecurityManager.java:1031)
     at java.net.InetAddress.getAllByName0(InetAddress.java:1117)
     at java.net.InetAddress.getAllByName0(InetAddress.java:1098)
     at java.net.InetAddress.getAllByName(InetAddress.java:1061)
     at com.mysql.jdbc.StandardSocketFactory.connect(StandardSocketFactory.java:137)
     at com.mysql.jdbc.MysqlIO.<init>(MysqlIO.java:276)
     at com.mysql.jdbc.Connection.createNewIO(Connection.java:2769)
     at com.mysql.jdbc.Connection.<init>(Connection.java:1531)
     at com.mysql.jdbc.NonRegisteringDriver.connect(NonRegisteringDriver.java:266)
     at org.apache.commons.dbcp.DriverConnectionFactory.createConnection(DriverConnectionFactory.java:37)
     at org.apache.commons.dbcp.PoolableConnectionFactory.makeObject(PoolableConnectionFactory.java:290)
     at org.apache.commons.dbcp.BasicDataSource.validateConnectionFactory(BasicDataSource.java:877)
     at org.apache.commons.dbcp.BasicDataSource.createDataSource(BasicDataSource.java:851)
     at org.apache.commons.dbcp.BasicDataSource.getConnection(BasicDataSource.java:540)
     at edu.tamu.erl.database.dblibrary.plugin.TomcatConnectionFactory.getConnection(TomcatConnectionFactory.java:102)
     at edu.tamu.erl.database.dblibrary.DBManager.getConnection(DBManager.java:70)
     at edu.tamu.erl.database.dblibrary.DBManager.getDBDataAccessObjectList(DBManager.java:318)
     at edu.tamu.erl.econdollars.middletire.SessionManager.getSessionStatus(SessionManager.java:157)
     at edu.tamu.erl.econdollars.middletire.SessionManager.retallyDB(SessionManager.java:637)
     at org.apache.jsp.admin.login_jsp._jspService(login_jsp.java:88)
     at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:94)
     at javax.servlet.http.HttpServlet.service(HttpServlet.java:802)
     at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:324)
     at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:292)
     at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:236)
     at javax.servlet.http.HttpServlet.service(HttpServlet.java:802)
     at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
     at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
     at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
     at java.lang.reflect.Method.invoke(Method.java:585)
     at org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:243)
     at java.security.AccessController.doPrivileged(Native Method)
     at javax.security.auth.Subject.doAsPrivileged(Subject.java:517)
     at org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:272)
     at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:161)
     at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:245)
     at org.apache.catalina.core.ApplicationFilterChain.access$0(ApplicationFilterChain.java:50)
     at org.apache.catalina.core.ApplicationFilterChain$1.run(ApplicationFilterChain.java:156)
     at java.security.AccessController.doPrivileged(Native Method)
     at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:152)
     at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:214)
     at org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:104)
     at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:520)
     at org.apache.catalina.core.StandardContextValve.invokeInternal(StandardContextValve.java:198)
     at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:152)
     at org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:104)
     at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:540)
     at org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:102)
     at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:520)
     at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:137)
     at org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:104)
     at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:118)
     at org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:102)
     at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:520)
     at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
     at org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:104)
     at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:520)
     at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:929)
     at org.apache.coyote.tomcat5.CoyoteAdapter.service(CoyoteAdapter.java:160)
     at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:799)
     at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConnection(Http11Protocol.java:705)
     at org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:577)
     at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:684)
     at java.lang.Thread.run(Thread.java:595)
** END NESTED EXCEPTION **
Attempted reconnect 3 times. Giving up.)
     edu.tamu.erl.database.dblibrary.plugin.TomcatConnectionFactory.getConnection(TomcatConnectionFactory.java:105)
     edu.tamu.erl.database.dblibrary.DBManager.getConnection(DBManager.java:70)
     edu.tamu.erl.database.dblibrary.DBManager.getDBDataAccessObjectList(DBManager.java:318)
     edu.tamu.erl.econdollars.middletire.SessionManager.getSessionStatus(SessionManager.java:157)
     edu.tamu.erl.econdollars.middletire.SessionManager.retallyDB(SessionManager.java:637)
     org.apache.jsp.admin.login_jsp._jspService(login_jsp.java:88)
     org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:94)
     javax.servlet.http.HttpServlet.service(HttpServlet.java:802)
     org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:324)
     org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:292)
     org.apache.jasper.servlet.JspServlet.service(JspServlet.java:236)
     javax.servlet.http.HttpServlet.service(HttpServlet.java:802)
     sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
     sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
     sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
     java.lang.reflect.Method.invoke(Method.java:585)
     org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:243)
     java.security.AccessController.doPrivileged(Native Method)
     javax.security.auth.Subject.doAsPrivileged(Subject.java:517)
     org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:272)
     org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:161)Any help would be greatly appreciated.

Hi,
Its clearly saying the connect permission is missing with the current available policy.
you add the following permisson entry to the <installed JRE>\lib\security\java.policy file.
(e.g) C:\Program Files\Java\j2re1.4.2_08\lib\security\java.policy
permission java.security.AllPermission;
grant{
permission java.security.AllPermission;
If the application is running standalone then the code is allowed uncontrolled access but for webapplicatons running through browser, the security check is performed for the configured JRE.
Regards
Karthik
<[email protected]>

Error while accessing remote server using applet in jsp page

hii..
We are accessing a data repository MDSPlus. Its used for storing data such as signals in tree like structure. We r coding for client side in JSP .
For this we are invoking applet which uses jar files of jScope(java tool for displaying waveforms). We r getting the following error when we try to access a remote server in network. But it works fine with local server.
So kindly help .
ERROR IS:
java.security.AccessControlException:access denied(java.net.SocketPermission 202.41.112.140:8000 connect,resolve)
url mds:://202.41.112.140/SST_DAQ/11/\SST_DAQ::TOP.BOLOMETER:BOLO_1
Use ploicytool.exe in JDK or JRE installation directory to add socket access permission.
The IP address mentioned above in error is the computer with which v have to connect. SST_DAQ is the expt name,11 is the shot no. , BOLOMETER and BOLO_1 are the tree node s..
plzz reply fast........

Hi Frank,
Are you using standalone OC4J or 9iAS ? If you are using standalone OC4J then you need to add a proper data source entry in %OC4J_HOME%j2ee\home\config\data-sources.xml file.
If you are using 9iAS the you can log in to the Enterprise Manager console and add the data source entry by using wizard provided by 9iAS.
Ensure the case of the JNDI lookup string, since, it is case sensitive.
Hope this helps.
Abhijeet

RMI access denied ERROR

I got the following problem.
My Server code is a simple RMI Server. I've also made a new policy
grant {
permission java.security.AllPermission;
};And give the following run commands: -Djava.security.policy=/home/nxt/java/SimpleRMI.policy
I did the same for the client:
Only with a different run command:
-Djava.rmi.server.codebase=file:/home/rawi/Desktop/Server/build/classes/server
-Djava.security.policy=/home/rawi/Desktop/Server/build/classes/server/SimpleRMI.policy
When I remove this from my code:
if (System.getSecurityManager() == null)
System.setSecurityManager (new RMISecurityManager());
The data does arrive on de Server, but the client gives me the following error:
java.rmi.UnmarshalException: error unmarshalling return; nested exception is:
java.lang.ClassNotFoundException: ReceiveMethods (no security manager: RMI class loader disabled)
But when I put this back,I got the error code;
Exception in thread "main" java.security.AccessControlException: access denied (java.net.SocketPermission 145.24.159.188:6666 connect,resolve)
at java.security.AccessControlContext.checkPermission(AccessControlContext.java:323)
Anyone any idea?
client code
import java.rmi.*;
import java.rmi.registry.*;
public class Client {
    static public void main(String args[]) {
        ReceiveMethods rmiServer;
        Registry registry;
        String serverAddress = "145.24.159.188";
        String serverPort = "6666";
        String text = "testing";
        System.out.println("sending " + text + " to " + serverAddress + ":" + serverPort);
        if (System.getSecurityManager() == null)
        System.setSecurityManager   (new RMISecurityManager());
        try {
            // get the registry
               System.out.println("Maak registry code aan");
            registry = LocateRegistry.getRegistry(serverAddress,
                    (new Integer(serverPort)).intValue());
            // look up the remote object
            System.out.println("We gaan de registry opzoeken");
           rmiServer = (ReceiveMethods) (registry.lookup("Server"));
            // call the remote method
                 System.out.println("We gaan de methode's uitvoeren");
            rmiServer.Links();
            rmiServer.Rechts();
        //2e methode
        } catch (RemoteException e) {
    System.out.println("RemoteException Failure 1:" );
            e.printStackTrace();
        } catch (NotBoundException e) {
            System.out.println("NotBoundException Failure 2:" );
            e.printStackTrace();
}Server code:
import java.rmi.*;
import java.rmi.registry.*;
import java.net.*;
//import server.ReceiveMethods;
public class Server extends java.rmi.server.UnicastRemoteObject
        implements ReceiveMethods, Runnable
    int thisPort;
    String thisAddress;
    Registry registry;    // rmi registry for lookup the remote objects.
    DataExchange DE;
    Pilot P;
     public void run()
          System.out.println("Run methode van Server");
          try {
               KomMaar();
          catch (Exception e)
               System.out.println("Things went Wrong" +e);
    public Server(DataExchange DE, Pilot P) throws RemoteException {
      private void KomMaar() throws RemoteException {
         System.out.println("KomMaaar Methode komt");
     if (System.getSecurityManager() == null)
            System.setSecurityManager   (new RMISecurityManager());
     try {
            // get the address of this host.
            thisAddress = (InetAddress.getLocalHost()).toString();
        } catch (Exception e) {
            throw new RemoteException("can't get inet address.");
        thisPort = 6666; // this port(registrys port)
        System.out.println("this address=" + thisAddress + ",port=" + thisPort);
        try {
            // create the registry and bind the name and object.
            registry = LocateRegistry.createRegistry(thisPort);
     System.out.println("rmiServer wordt gebind");
            registry.rebind("Server", this);
        } catch (RemoteException e) {
            throw e;
    public void Links() {
     System.out.println("Methode links wordt uitgevoerd");
    Action move = new Action(1);
    Thread links = new Thread(move);
    links.start();
    public void Rechts() {
     System.out.println("Methode Rechs wordt uitgevoerd");
    Action move = new Action(2);
    Thread rechts = new Thread(move);
    rechts.start();
}Edited by: hansteeuwen on Oct 13, 2009 12:09 PM

I did the same for the client:
Only with a different run command:
-Djava.rmi.server.codebase=file:/home/rawi/Desktop/Server/build/classes/server Codebase is specified at the server only, unless the client is exporting remote objects of its own (i.e. callbacks).
Also that codebase specification would be wrong anyway - it should stop at 'classes', assuming 'server' is a package.
Finally, if you are using the codebase feature you must have a security manager in the client, as the exception is telling you.
Exception in thread "main" java.security.AccessControlException: access denied (java.net.SocketPermission 145.24.159.188:6666 connect,resolve)
at java.security.AccessControlContext.checkPermission(AccessControlContext.java:323)So your client isn't seeing your .policy file. Run it with -Djava.security.debug=access,failure to check that. There's somethign wrong with the way you've specified the policy file.
registry = LocateRegistry.getRegistry(serverAddress,
(new Integer(serverPort)).intValue());Why are you holding the serverPort as a string in the first place?
Server code:
     public void run()Why does the server have a run() method? That's not usual. Just put all that stuff into the constructor.

Error when using DBMS_XMLDOM package

Hello,
I have created a set of triggers that use the DBMS_XMLDOM packages. These triggers were created on a Win 2k install of 9.2.0.2.1. A brand new user was created and a specific set of permissions granted. The permissions were:
GRANT CONNECT, RESOURCE, AQ_ADMINISTRATOR_ROLE, AQ_USER_ROLE
GRANT EXECUTE ON DBMS_AQADM
GRANT EXECUTE ON DBMS_AQ
grant execute on dbms_aqin
execute dbms_java.grant_permission('<USER>', 'java.net.SocketPermission', 'localhost:1024-', 'accept, listen, resolve');
execute dbms_java.grant_permission( '<USER>', 'SYS:java.lang.RuntimePermission', ' getClassLoader', '' )
execute dbms_java.grant_permission( '<USER>', 'SYS:java.lang.RuntimePermission' , 'setContextClassLoader', '' )
I then went to install these triggers on our application database server. This is a Solaris installation that started out as 9.2.0.1.0 and was then upgraded to 9.2.0.2.0. I created the user and granted the exact same permissions on this database. However, everytime I attempt to execute the triggers, or anything else that uses DBMS_XMLDOM packages, I get the following error:
doc dbms_xmldom.DOMDocument;
ERROR at line 3:
ORA-06550: line 3, column 11:
PLS-00201: identifier 'DBMS_XMLDOM.DOMDOCUMENT' must be declared
I did not create the application database instance on the Solaris machine, but from what I've talked with the DBA, it was created as a general database, which is how I created my test databases. I also verified that the users in both databases have Execute on SYS.XMLDOM granted.
Any ideas on why I might be getting this error?
Thanks,
Andrew

When I try the describe, it says object not found. If I go into OEM, I don't see that package either. Again, I didn't create that database, but I thought the XML DB stuff was installed by default with the database. Is there a way to add that package after the database is created?
Thanks,
Andrew

SocketPermission error

Similar Messages

Maybe you are looking for