jogl Applets and AccessControlExceptions

We're trying to deploy jogl-enabled Applets from our site. The Applet tags are generated by Javascript. We're trying to launch the Applets via the JOGLAppletLauncher. When we do this, we get the following Exception:

java.security.AccessControlException: access denied (java.util.PropertyPermissions user.home read).

From other forum posts, it is my understanding that because we're calling the Applet from Javascript, permissions are more limited (hence the problem reading user.home).

If the JOGLAppletLauncher is signed, why is this a security issue?

Are there any ways around this issue, or is it fundamentally impossible to deploy jogl-enabled applets in this fashion?

Thanks.

-k

[730 byte] By [mspkylea] at [2007-10-3 9:41:06]

«« extracting longtext values from MySQL to JAVA
»» is it possible to give continue statement on finally block

# 1

For the current method to be allowed to do priveleged stuff (like user.home read) the entire stack needs to be trusted.

Since the current method is called by JScript (which is never trusted) the current method

isn't trusted as well.

Before 1.4.2 calls made by JScript were trusted, this was a bug and is fixed.

Use doprivileged or threaded applet.

Signing applets:

http://forum.java.sun.com/thread.jsp?forum=63&thread=524815

second post and reply 18 for the java class file using doprivileged

Still problems?

A Full trace might help us out:

http://forum.java.sun.com/thread.jspa?threadID=656028

harmmeijera at 2007-7-15 4:57:10 >

top of Java-index,Security,Signed Applets...

Java programming resources: FAQs, tutorials, compiler and browser download sites, documentation, books lists, IDEs, etc.

jogl Applets and AccessControlExceptions

Security New Topic

Security Hot Topic

Security

All Classified