Home.... | log in.... | Pub my question! | Sign-up....
Java-index >> Security >> Signed Applets

AccessControlException Error

I am trying to run the signed applets and followed the steps described at http://forum.java.sun.com/thread.jsp?forum=30&thread=134099 .Here the steps I followed

On Server :

1) created the jar file containing the classes required.

2)generated the keystore using keytool -genkey

3) exported the key to .cer file using keytool -export

4)I signed the jar file using jarsigner

On Client Machine:

1)Copied the above generated .cer file into c:\progra~1\javasoft\jre\1.3.1\lib\security directory

2)Imported the key into cacerts keystore using keytool -import

3)Created html file using htmlconverter tool.

4)Tried to open the html file in Internet Explorer5.0.It is invoking Java Plugin. But it gives me the following error

*************************************************************************

Using JRE version 1.3.0 Java HotSpot(TM) Client VM

User home directory = C:\WINDOWS

Proxy Configuration: no proxy

JAR cache enabled.

java.security.AccessControlException: access denied (java.util.PropertyPermission nsRoot read)

at java.security.AccessControlContext.checkPermission(Unknown Source)

at java.security.AccessController.checkPermission(Unknown Source)

at java.lang.SecurityManager.checkPermission(Unknown Source)

at java.lang.SecurityManager.checkPropertyAccess(Unknown Source)

at java.lang.System.getProperty(Unknown Source)

at ns.gui.NSTreeRenderer.<init>(NSTreeRenderer.java:45)

at ns.gui.MainTree.createNodes(MainTree.java:74)

at ns.gui.MainTree.<init>(MainTree.java:47)

at ns.gui.Gui.initialGuiSetup(Gui.java:235)

at ns.gui.Gui.initCommon(Gui.java:65)

at ns.gui.Gui.<init>(Gui.java:1488)

at NSGuiApplet.init(NSGuiApplet.java:19)

at sun.applet.AppletPanel.run(Unknown Source)

at java.lang.Thread.run(Unknown Source)

*********************************************************************************************************

I even installed this certificate in IE browser.(If I double click the .cer file this install dailogue comes up)

Do I need to create any policy file using policy Tool.If so how it should look like and where to keep that?

In case Policy file is required do I need to give to all the clients who are trying to access this applet remotely?

I really appreciate your help in this matter.

[2465 byte] By [adabala_r] at [2007-9-26 6:01:19]
«« help! prolem with running application
»» null pointer exception won't go away.
# 1

Try using the -selfcert command instead of -genkey. From the keytool doc:

To generate a self-signed certificate, use the -selfcert command, as in

keytool -selfcert -alias dukeNew -keypass b92kqmp

-dname "cn=Duke Smith, ou=Purchasing, o=BlueSoft, c=US"

Also, it's a little funny that you're importing into the 1.3.1 cacerts file, but your control panel is reporting 1.3.0. Which did you want to be using? Suggest you uninstall the one you don't want.

By default, a signed applet running in the Plug-in has no security restrictions and the policy file on clients does not have to be altered.

kent_haidl at 2007-7-1 14:40:34 > top of Java-index,Security,Signed Applets...
Security
Signed Applets

Security New Topic

Security Hot Topic

Security

All Classified