1 Reply Latest reply on May 10, 2004 9:27 AM by Dietmar Scheidl

    JBOSS-JWS security problem

    Aldo Martinez Newbie

      Hi,
      We are developing a client-server application with jboss and in the client we want to use jws. We have already test the aplication and it works outside jws, but when we try to connect to the server inside jws we get the following message:

      access denied (java.lang.RuntimePermission createSecurityManager)
      access denied (java.net.SocketPermission 230.0.0.4 connect,accept,resolve)
      


      Just in case.... the jars we use are ALL signed...

      We post here the jnlp files:

      <?xml version="1.0" encoding="utf-8"?>
      <!-- JNLP File for ColorChooserDemo -->
      <jnlp
       spec="1.0+"
       codebase="file:/home/kol/Desktop/prueba"
       href="ColorChooserDemo.jnlp">
       <information>
       <title>Aldo</title>
       <vendor>A&G</vendor>
       <homepage href=""/>
       <description>Demo</description>
       <description kind="short"></description>
       <offline-allowed/>
       </information>
       <resources>
       <j2se version="1.4+"/>
       <jar href="CLIENTE.jar"/>
       <extension href="jb.jnlp"/>
       </resources>
       <security>
       <all-permissions/>
       </security>
      <application-desc main-class="uy.edu.ort.client.ClientForm"/>
      </jnlp>
      


      <?xml version="1.0" encoding="utf-8"?>
      <jnlp
       spec="1.0+"
       codebase="$$codebase"
       href="jbossclient.jnlp">
       <information>
       <title>JBoss Client Library</title>
       <vendor>JBoss.org</vendor>
       <homepage href="index.html"/>
       <description>JBoss Client Library</description>
       <description kind="short">JBoss Client Library</description>
       </information>
      
       <resources>
       <j2se version="1.4+"/>
       <jar href="jbossall-client.jar" version="3.2.1"/>
       <jar href="PersonServices.jar" version="3.2.1"/>
       <jar href="hibernate2.jar" version="3.2.1"/>
       </resources>
       <security>
       <all-permissions/>
       </security>
       <component-desc/>
      </jnlp>
      


        • 1. Re: JBOSS-JWS security problem
          Dietmar Scheidl Newbie

          Did you sign the jar-files? You must also sign the jbossall-client.jar! The files distributed with jboss are not signed by default!

          To get "all-permission", every jar-file within the jnlp-file must be signed. All files within one jnlp-file must be signed with the same certificate. If the jar-files are signed by different people, organisations, ... you need to group them according to that in different jnlp-files.