Hi! I am using JSWDK 1.0 EA and I want to load RMI stubs via a URL. RMI spec says a security manager is required to do this, however, setting the default RMISecurityManager by calling System.setSecurityManager results in numerous security exceptions when performing any kind of remote operation, JSP page, which is called after Bean initialization with application scope, refuses to compile because of lacking write access. Also, the server refuses to read a local file to be included with the jsp page using <jsp:include> directive. I'm running the reference implementation web server. In order to avoid the security exceptions I had to override the checkRead, checkWrite, checkConnect and checkMemberAccess method in my security manager which is a subclass of RMISecurityManager. Am I permitted to do this without compromising security, especially when overriding checkMemberAccess method, or is the RMISecurityManager intentionally more restrictive. If so, what can I do to load classes over the network? Do JavaServer Pages enable such a feature? Does Java Web Server 2.0 supports it? thanks, Primoz =========================================================================== To unsubscribe, send email to [EMAIL PROTECTED] and include in the body of the message "signoff JSP-INTEREST". For general help, send email to [EMAIL PROTECTED] and include in the body of the message "help".
