1 Reply Latest reply on May 10, 2004 9:27 AM by didi1976

    JBOSS-JWS security problem

    aldomartinez
    aldomartinez May 7, 2004 6:03 PM

      Hi,
      We are developing a client-server application with jboss and in the client we want to use jws. We have already test the aplication and it works outside jws, but when we try to connect to the server inside jws we get the following message:

      access denied (java.lang.RuntimePermission createSecurityManager)
access denied (java.net.SocketPermission 230.0.0.4 connect,accept,resolve)


      Just in case.... the jars we use are ALL signed...

      We post here the jnlp files: 

      <?xml version="1.0" encoding="utf-8"?>
<!-- JNLP File for ColorChooserDemo -->
<jnlp
 spec="1.0+"
 codebase="file:/home/kol/Desktop/prueba"
 href="ColorChooserDemo.jnlp">
 <information>
 <title>Aldo</title>
 <vendor>A&G</vendor>
 <homepage href=""/>
 <description>Demo</description>
 <description kind="short"></description>
 <offline-allowed/>
 </information>
 <resources>
 <j2se version="1.4+"/>
 <jar href="CLIENTE.jar"/>
 <extension href="jb.jnlp"/>
 </resources>
 <security>
 <all-permissions/>
 </security>
<application-desc main-class="uy.edu.ort.client.ClientForm"/>
</jnlp>



      <?xml version="1.0" encoding="utf-8"?>
<jnlp
 spec="1.0+"
 codebase="$$codebase"
 href="jbossclient.jnlp">
 <information>
 <title>JBoss Client Library</title>
 <vendor>JBoss.org</vendor>
 <homepage href="index.html"/>
 <description>JBoss Client Library</description>
 <description kind="short">JBoss Client Library</description>
 </information>

 <resources>
 <j2se version="1.4+"/>
 <jar href="jbossall-client.jar" version="3.2.1"/>
 <jar href="PersonServices.jar" version="3.2.1"/>
 <jar href="hibernate2.jar" version="3.2.1"/>
 </resources>
 <security>
 <all-permissions/>
 </security>
 <component-desc/>
</jnlp>


      • 3697 Views
      • Tags:
        • 1. Re: JBOSS-JWS security problem
          didi1976
          didi1976 May 10, 2004 9:27 AM (in response to aldomartinez)

          Did you sign the jar-files? You must also sign the jbossall-client.jar! The files distributed with jboss are not signed by default!

          To get "all-permission", every jar-file within the jnlp-file must be signed. All files within one jnlp-file must be signed with the same certificate. If the jar-files are signed by different people, organisations, ... you need to group them according to that in different jnlp-files.

            • Actions