catalina.policy

[juraj Lenharcik]

Hello,

I run catalina (TC 4.0.2-b2) with the security manager. After starting I get
a java.security.AccessControlException. I have extended the catalina.policy
with:

// These permissions are granted by default to all web applications
// In addition, a web application will be given a read FilePermission
// and JndiPermission for all files and directories in its document root.
grant { 
....

   permission java.io.FilePermission
"${catalina.home}/webapps/auth/WEB-INF/log4j.lcf", "read,write";
   permission java.lang.RuntimePermission "getClassLoader";
...
}; 

then it runs fine. But when I say:

grant codebase "file:${catalina.home}/webapps/auth/WEB-INF/lib/DIAA.jar" {
   // for log4j things important
   permission java.io.FilePermission
"${catalina.home}/webapps/auth/WEB-INF/log4j.lcf", "read,write";
   permission java.lang.RuntimePermission "getClassLoader";
};

I get the exception. 

$ Using CATALINA_BASE: D:\server\jakarta-tomcat-4.0.2-b2
Using CATALINA_HOME: D:\server\jakarta-tomcat-4.0.2-b2
Using CLASSPATH:
D:\server\jakarta-tomcat-4.0.2-b2\bin\bootstrap.jar;C:\j2sd
k1.4.0\lib\tools.jar
Using JAVA_HOME:     C:\j2sdk1.4.0

.....

... in die Log4J Configdatei -------------------------------------------
java.secur
ity.AccessControlException: access denied (java.io.FilePermission
D:\server\jaka
rta-tomcat-4.0.2-b2\webapps\auth\WEB-INF\log4j.lcf write)

Have someone an idea why?

thanks
juraj


--
To unsubscribe:   <mailto:[EMAIL PROTECTED]>
For additional commands: <mailto:[EMAIL PROTECTED]>
Troubles with the list: <mailto:[EMAIL PROTECTED]>