Hello Gerd, have you got a solution for your problem? I have a simular one using RMI over IIOP. Please inform me when you give me a hint. Thank you Detlev -----Ursprüngliche Nachricht----- Von: gerd trautner [mailto:[EMAIL PROTECTED]] Gesendet am: Montag, 5. Februar 2001 08:05 An: [EMAIL PROTECTED] Betreff: tomcat.policy, SSL and SQL -> AccessControlException hi all, i have troubles configuring the tomcat.policy file. my application reads some data from a mysql database running on port 3306, localhost. i use the org.gjt.mm.mysql classes to connect to it and everything run fine. i also use basic authentification with tomcat, the user data are also in the mysql database. now i want make everything secure. i tried a lot and i got nearly everything working fine. but i am not able to set the tomcat.policy, that the org.gjt.mm.mysql classes within my servlets are allowed to connect to the mysql database. tomcat.policy: //java. the org.gjt.mm.mysql jars are in jdk1.2.2/jre/lib/ext. grant codeBase "file:d:/jdk1.2.2/lib/-" {permission java.security.AllPermission;}; grant codeBase "file:d:/jdk1.2.2/jre/lib/-" {permission java.security.AllPermission;}; grant codeBase "file:d:/jdk1.2.2/jre/lib/ext/-" {permission java.security.AllPermission;}; // Tomcat gets all permissions. grant codeBase "file:d:/tomcat/lib/-" {permission java.security.AllPermission;}; grant codeBase "file:d:/tomcat/classes/-" {permission java.security.AllPermission;}; //my application directory grant codeBase "file:d:/tomcat/webapps/shv_wb/WEB-INF/classes/-" {permission java.security.AllPermission;}; grant codeBase "file:d:/tomcat/webapps/shv_wb/WEB-INF/lib/-" {permission java.security.AllPermission;}; it is realy confusing, because tomcat is able to read the authority-data for the basic authentification out of the database, but my servlets are not allowed to do this. i get this message from tomcat: java.security.AccessControlException: access denied (java.net.SocketPermission localhost resolve) at java.security.AccessControlContext.checkPermission(AccessControlContext.java :195) at java.security.AccessController.checkPermission(AccessController.java:403) at java.lang.SecurityManager.checkPermission(SecurityManager.java:549) at java.lang.SecurityManager.checkConnect(SecurityManager.java:1019) at java.net.InetAddress.getAllByName0(InetAddress.java:565) at java.net.InetAddress.getAllByName0(InetAddress.java:546) at java.net.InetAddress.getByName(InetAddress.java:455) at java.net.Socket.<init>(Socket.java:98) at org.gjt.mm.mysql.MysqlIO.<init>(MysqlIO.java:114) at org.gjt.mm.mysql.Connection.<init>(Connection.java:229) at org.gjt.mm.mysql.Driver.connect(Driver.java:126) at java.sql.DriverManager.getConnection(DriverManager.java:457) at java.sql.DriverManager.getConnection(DriverManager.java:137) at KMAnmeldungen.doGet(KMAnmeldungen.java:65) at javax.servlet.http.HttpServlet.service(HttpServlet.java:740) at javax.servlet.http.HttpServlet.service(HttpServlet.java:853) at org.apache.tomcat.core.ServletWrapper.doService(ServletWrapper.java:404) at org.apache.tomcat.core.Handler.service(Handler.java:286) at org.apache.tomcat.core.ServletWrapper.service(ServletWrapper.java:372) at org.apache.tomcat.core.ContextManager.internalService(ContextManager.java:79 7) at org.apache.tomcat.core.ContextManager.service(ContextManager.java:743) at org.apache.tomcat.service.http.HttpConnectionHandler.processConnection(HttpC onnectionHandler.java:210) at org.apache.tomcat.service.TcpWorkerThread.runIt(PoolTcpEndpoint.java:416) at org.apache.tomcat.util.ThreadPool$ControlRunnable.run(ThreadPool.java:498) at java.lang.Thread.run(Thread.java:479) can anyone help? tanks a lot, gerd --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, email: [EMAIL PROTECTED]
Hello Tocat-users, I run a servlet in tomcat that uses RMI-IIOP provided by SDK1.3. The servlet will convert a stringified IOR to an org.omg.CORBA.Object object. When calling the string_to_object() method of the org.omg.CORBA.ORB class a java.lang.SecurityException with the message 'ORBSingleton: access denied' is thrown. I also tried to set the tomcat.policy to grant { permission java.security.AllPermission; }; what should give all servlets all permissions!!! But this doesn't helped. Who can help me to solve this problem or can give me a hint? Thank you very much Detlev Matthes --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, email: [EMAIL PROTECTED]
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, email: [EMAIL PROTECTED]
