Thanks Ashish, disabling the security manager does indeed fix the issue.
On our test OC4J system the security manager's policy file grants an
AllPermission to everybody:
grant {
permission java.security.AllPermission;
};
and I would expect that this is pretty much the same as using no
security manager - but either that's not the case or the policy file
is not being picked up correctly, or is overridden somewhere.
I guess I need to research what the default settings for security are
on OC4J and add specific grants to that. Sigh, I thought Rails
development was all about having fun ;-)
-- Steen
On 27/04/07, Ashish Sahni <[EMAIL PROTECTED]> wrote:
> Probably the security manager.
> On GlassFishv2 with JRuby 0.9.8 in order to ror app
> the following additional set of permissions was needed
>
> permission java.lang.RuntimePermission "createClassLoader";
> permission java.security.SecurityPermission "putProviderProperty.BC";
> permission java.lang.RuntimePermission "getenv.*";
> permission java.security.SecurityPermission "insertProvider.BC";
> permission java.lang.reflect.ReflectPermission "suppressAccessChecks";
>
> The BC-providers-related-security-permissions should no longer be needed
> with 0.9.9
> and the set of additional permissions you need will probably be
> different than this
> cause of the default set of privileges provided by the app servers is
> server dependent.
>
> You could avoid the whole issue by just disabling the security manager.
>
> -Ashish
>
>
> Steen Lehmann wrote:
> > Hi,
> >
> > As previously mentioned on the list I'm trying to deploy a Rails WAR
> > to an Oracle application server. The WAR works fine on Tomcat.
> >
> > I can get the Rails welcome page just fine, but when I try to do
> > anything else I get an error 500 and the following burp in the
> > application.log file.
> >
> > 07/04/27 11:45:11.970 10.1.3.1.0 Started
> > 07/04/27 11:45:12.786 tgt-admin: rails: Ruby is running in standalone mode
> > 07/04/27 11:45:12.843 tgt-admin: 10.1.3.1.0 Started
> > 07/04/27 11:45:42.145 tgt-admin: JRuby init time: 5162ms
> > 07/04/27 11:45:47.450 tgt-admin: Failed to load Rails: no such file to
> > load --
> > /Users/slehmann/svn/tgt/components/oc4j/j2ee/home/applications/tgt-admin/tgt-admin/config/environment
> >
> > 07/04/27 11:45:47.451 tgt-admin: Servlet error
> > java.lang.RuntimeException: java.security.PrivilegedActionException:
> > javax.servlet.ServletException: Could not load Rails. See the logs for
> > more details.
> > at com.evermind[Oracle Containers for J2EE 10g (10.1.3.1.0)
> > ].server.http.ServletRequestDispatcher.forward(ServletRequestDispatcher.java:207)
> > at org.jruby.webapp.FileServlet.doGet(FileServlet.java:98)
> > at javax.servlet.http.HttpServlet.service(HttpServlet.java:743)
> > at javax.servlet.http.HttpServlet.service(HttpServlet.java:856)
> > at com.evermind[Oracle Containers for J2EE 10g (10.1.3.1.0)
> > ].server.http.ServletRequestDispatcher.invoke(ServletRequestDispatcher.java:711)
> > [...]
> >
> > Now, the fact that this is a PrivilegedActionException tells me that
> > Oracle may not be allowing Rails to access its own configuration
> > files, but what I don't know is if this is something I can configure
> > using a security manager, or if it's some basic flaw. Has anyone
> > successfully deployed a rails-integration WAR file to an Oracle
> > server?
> >
> > I'm using JRuby 0.9.9 and Rails-Integration 1.2-SNAPSHOT.
> >
> > Cheers,
> >
> > -- Steen
> >
> > Steen Lehmann
> > [EMAIL PROTECTED]
> > Principal Consultant
> > Jayway Denmark
> > _______________________________________________
> > Jruby-extras-devel mailing list
> > [email protected]
> > http://rubyforge.org/mailman/listinfo/jruby-extras-devel
> >
>
> _______________________________________________
> Jruby-extras-devel mailing list
> [email protected]
> http://rubyforge.org/mailman/listinfo/jruby-extras-devel
>
_______________________________________________
Jruby-extras-devel mailing list
[email protected]
http://rubyforge.org/mailman/listinfo/jruby-extras-devel
