File APIs for Java Developers
Manipulate DOC, XLS, PPT, PDF and many others from your application.
The moose likes Distributed Java and the fly likes ugent: policy file problems in JAR! Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Java » Distributed Java
Bookmark "ugent: policy file problems in JAR!" Watch "ugent: policy file problems in JAR!" New topic

ugent: policy file problems in JAR!

John Coleman
Ranch Hand

Joined: Jul 24, 2001
Posts: 65
I found a way to read my policy file from within the JAR (class.getResource)and managed to get a simple example going. But when I JAR my real application I get access denied, and my policy seems not to be picked up and used?
C:\John\server>set JAVA_HOME=C:\APPL\jbuilder5\jdk1.3
C:\John\server>set PROJECT_HOME=c:\john\server
C:\John\server>set CLASSPATH=c:\john\server\RMISSL.jar;c:\john\server\classes12.
C:\John\server>set PATH=C:\APPL\jbuilder5\jdk1.3\bin;C:\APPL\jbuilder5\jdk1.3\jr
C:\John\server>java -classpath c:\john\server\RMISSL.jar;c:\john\server\classes1; -Djava.rmi.server.codebase=file:c:/john/server/RMISSL.jar com.abnamro.wcs -policy=policy -keystore=RMISSks
/* RMI Secure Server permissions
Created by J S Coleman - Sopra Group
Grant access to the file, properties and network resources required.
grant {
// allow access to the servers key store
permission "${}", "read";
// allow properties read only
permission java.util.PropertyPermission "*", "read";
// allow any hosts on the network to access the RMI registry port
permission "", "connect, resolve";
permission "*:1024-", "accept, connect, listen, reso
// allow access to the DB server at port 1521 to access Oracle
permission "", "accept, connect, res

policy file=file:/C:/John/server/RMISSL.jar!/com/abnamro/wcs/orchard/gui/securit
keystore file=file:/C:/John/server/RMISSL.jar!/com/abnamro/wcs/orchard/gui/secur
call logging=true
lease period=600000
timeout period=43200000
RMISecureServer error: access denied ( c
onnect,resolve) access denied ( 1 connect,resolve)
at java.lang.SecurityManager.checkPermission(
at java.lang.SecurityManager.checkConnect(
at sun.rmi.transport.proxy.RMIDirectSocketFactory.createSocket(RMIDirect
at sun.rmi.transport.proxy.RMIMasterSocketFactory.createSocket(RMIMaster
at sun.rmi.transport.tcp.TCPEndpoint.newSocket(
at sun.rmi.transport.tcp.TCPChannel.createConnection(
at sun.rmi.transport.tcp.TCPChannel.newConnection(
at sun.rmi.server.UnicastRef.newCall(
at sun.rmi.registry.RegistryImpl_Stub.rebind(Unknown Source)
at java.rmi.Naming.rebind(
C:\John\server>rem java -classpath c:\john\server\RMISSL.jar;c:\john\server\clas; -Djava.rmi.server.codebase=file:c:/john/server/RMISSL.jar -Djava.secu
rity.debug=access -p
olicy=policy -keystore=RMISSks
any ideas please/

John Coleman, MSTA<br />Sun Certified Programmer for the Java� 2 Platform<br /><br />Eurobase banking solutions<br /><a href="" target="_blank" rel="nofollow"></a>
Michael Ernest
High Plains Drifter

Joined: Oct 25, 2000
Posts: 7292

It's not clear from your description what's different from one invocation to the next. 'Simple' and 'real' app shouldn't provide any difference, but I don't know what you mean between these two.
If the command line invocation at the bottom of your post is the actual one, I don't understand how it could be found within the JAR. It looks like it's location will expand to a point on the file system, not a containing JAR.

Make visible what, without you, might perhaps never have been seen.
- Robert Bresson
I agree. Here's the link:
subject: ugent: policy file problems in JAR!
It's not a secret anymore!