stackoom
  简体   繁体   中英

java applet AccessControlException in 3rd party library

 原文  2011-09-02 20:38:46       java/ applet

Question

I'm using a 3rd party library (jar) in my java applet and I'm getting this error: 

java.security.AccessControlException: access denied ("java.util.PropertyPermission" "*" "read,write")
    at java.security.AccessControlContext.checkPermission(Unknown Source)
    at java.security.AccessController.checkPermission(Unknown Source)
    at java.lang.SecurityManager.checkPermission(Unknown Source)
    at java.lang.SecurityManager.checkPropertiesAccess(Unknown Source)
    at java.lang.System.getProperties(Unknown Source)
    at sfs2x.client.core.sockets.TCPSocketLayer.initNetty(TCPSocketLayer.java:63)
    at sfs2x.client.core.sockets.TCPSocketLayer.<init>(TCPSocketLayer.java:59)
    at sfs2x.client.bitswarm.BitSwarmClient.init(BitSwarmClient.java:90)
    at sfs2x.client.SmartFox.initialize(SmartFox.java:148)
    at sfs2x.client.SmartFox.<init>(SmartFox.java:127)
    at bfwd.RedemptionOnline.Client.RedemptionOnlineApplet.init(RedemptionOnlineApplet.java:29)
    at com.sun.deploy.uitoolkit.impl.awt.AWTAppletAdapter.init(Unknown Source)
    at sun.plugin2.applet.Plugin2Manager$AppletExecutionRunnable.run(Unknown Source)
    at java.lang.Thread.run(Unknown Source)

I'm testing this on my development server and trying to connect to localhost. Why would I be getting this error now, and how would I prevent it in the future?

Ok, I even self-signed my jar, yet it STILL comes up with this error.

1 answers

solution1
 0  2011-09-02 20:52:03

at sfs2x.client.core.sockets.TCPSocketLayer.initNetty(TCPSocketLayer.java:63)

SFS2X seems to be a game server. Netty is a TCP/IP server. Why are you trying to run a game server on the client side? I'm not sure if your webpage visitors are ever going to be happy with this. What's the functional requirement after all? Did you consider letting your webserver do the job?

Regardless, you need to sign the applet in order to get it to work. Unsigned applets have very restrictive security rules (otherwise it would be very easy to leech the entire "My Documents" down and send it to the server, for example). Basically, you need to send your code to some RSA signing company and have them to review the code and get some RSA certificate back which you provide along your applet so that clients know that it's trusted software.

You can also sign your applet with a homemade certificate which is valid for only 6 months. But the enduser would still get a security warning when your applet is to be loaded; the enduser is asked for confirmation if this is really trusted software and may be executed. You however still need to wrap the applet main init() inside an AccessController#doPrivileged() . 

public void init() {
    AccessController.doPrivileged(new PrivilegedAction<Void>() {
        @Override public Void run() {
            // Put your original init() here.
        }
    });
}

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Deploying applet with 3rd party library Create a stub of 3rd party Java library Java: how to serialize a 3rd party library produced Java Object? Any way to terminate a Java thread in a 3rd party library? Creating java library containing 3rd party (jar) libraries How to use 3rd party library in Java9 module? Waiting for a thread to finish from a 3rd party library (OpenMap/Java)? Options for using an unsigned 3rd party applet in Java 1.7.0_51 and later Can't find a 3rd party library Store 3rd party library object in database
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM