Test without security manager so that we can isolate the problem.
-----Original Message-----
From: Oege de Moor [mailto:[EMAIL PROTECTED]
Sent: January 18, 2005 12:24 PM
To: Tomcat Users List
Subject: RE: tomcat4 + postgresql jdbc
Do you mean I should add something like:
grant codeBase "file:/var/lib/tomcat4/webapps/-" {
permission java.net.SocketPermission "127.0.0.1:5432", "connect";
permission java.net.SocketPermission "127.0.0.1:5432", "resolve"; };
Unfortunately that still doesn't work...
On Tue, 18 Jan 2005, Larry Isaacs wrote:
> If you are running Tomcat with a security manager, you will need to
> make sure the catalina.policy file includes permission for your webapp
> to connect to the server in question. The examples found in the
> comments at the end of the default catalina.policy file are examples
> of such a permission.
>
> Cheers,
> Larry
>
> > -----Original Message-----
> > From: [EMAIL PROTECTED]
> > [mailto:[EMAIL PROTECTED] On Behalf Of Oege de Moor
> > Sent: Tuesday, January 18, 2005 11:54 AM
> > To: Tomcat Users List
> > Subject: RE: tomcat4 + postgresql jdbc
> >
> >
> > Thanks for the suggestion!
> >
> > I can successfully connect with a normal Java program.
> > In pg_hba.conf, I've got the line
> >
> > host all all 127.0.0.1
> > 255.255.255.255 trust
> > host all all 192.168.53.2
> > 255.255.255.0 trust
> >
> > so all IP connections from the local network (192.168.53.xx) should
> > be accepted, even without a password...
> >
> > -Oege
> >
> > On Tue, 18 Jan 2005, Carlos Martins wrote:
> >
> > > Hi,
> > >
> > > Is it possible that the database connection credentials are
> > not right? Have you tried connecting to the database from the
> > standard client with the same username and password?
> > >
> > > Regards
> > > Carlos
> > >
> > > -----Original Message-----
> > > From: [EMAIL PROTECTED]
> > [mailto:[EMAIL PROTECTED] On Behalf Of Oege de Moor
> > > Sent: terça-feira, 18 de Janeiro de 2005 16:27
> > > To: tomcat-user@jakarta.apache.org
> > > Subject: tomcat4 + postgresql jdbc
> > >
> > > I'm attempting to install tomcat4 + postgresql jdbc under
> > Debian linux.
> > > I've put the jdbc jar at
> > /usr/share/tomcat4/common/lib/pg74.215.jdbc3.jar
> > >
> > > When I attempt to connect to a database via jsp, I get
> > > java.security.AccessControlException: access denied
> > > (java.net.SocketPermission localhost resolve)
> > >
> > > I've put a file "test2.jsp" at /var/lib/tomcat4/webapps/ROOT, with
> > > the following contents:
> > >
> > > -------------------------
> > >
> > > <[EMAIL PROTECTED] import="java.sql.*"%>
> > > <%
> > > // Define the connection
> > > Connection con = null;
> > > // Check that the DB2Driver class is available
> > > Class.forName("org.postgresql.Driver");
> > > try {
> > > // Attempt to connect to the Database
> > > con =
> > > DriverManager.getConnection("jdbc:postgresql:demodb","oege","xxx");
> > > out.println("The test is complete, your Database has been
> > > contacted");
> > > }
> > > // Make sure to catch any exceptions
> > > catch (SQLException e) {
> > > out.println(e.getMessage());
> > > }
> > > %>
> > > ---------------------------
> > >
> > > When I point my web browser at http://localhost:8180/test2.jsp,
> > > the above exception occurs. The full stack trace is appended
> > > below.
> > >
> > > I've attempted adding this line to the security policy file in
> > > /etc/tomcat4/policy.d/99examples.policy:
> > >
> > > grant codeBase
> > "file:/usr/share/tomcat4/common/lib/pg74.215.jdbc3.jar!/-"
> > > {
> > > permission java.security.AllPermission;
> > > };
> > >
> > >
> > > Any help would be much appreciated!
> > >
> > > -Oege
> > >
> > >
> > > Something unusual has occured to cause the driver to fail.
> > Please report
> > > this exception: Exception:
> > java.security.AccessControlException: access
> > > denied (java.net.SocketPermission localhost resolve) Stack Trace:
> > > java.security.AccessControlException: access denied
> > > (java.net.SocketPermission localhost resolve) at
> > >
> > java.security.AccessControlContext.checkPermission(AccessContr
> > olContext.java:269)
> > > at
> > >
> > java.security.AccessController.checkPermission(AccessControlle
> > r.java:401)
> > > at
> > java.lang.SecurityManager.checkPermission(SecurityManager.java:524)
> > at
> > > java.lang.SecurityManager.checkConnect(SecurityManager.java:1023)
> > > at
> > > java.net.InetAddress.getAllByName0(InetAddress.java:1000) at
> > > java.net.InetAddress.getAllByName0(InetAddress.java:981) at
> > > java.net.InetAddress.getAllByName(InetAddress.java:975) at
> > > java.net.InetAddress.getByName(InetAddress.java:889) at
> > > java.net.InetSocketAddress.(InetSocketAddress.java:114) at
> > > java.net.Socket.(Socket.java:124) at
> > > org.postgresql.core.PGStream.(PGStream.java:47) at
> > >
> > org.postgresql.jdbc1.AbstractJdbc1Connection.openConnection(Ab
> > stractJdbc1Connection.java:197)
> > > at org.postgresql.Driver.connect(Driver.java:139) at
> > > java.sql.DriverManager.getConnection(DriverManager.java:512) at
> > > java.sql.DriverManager.getConnection(DriverManager.java:171) at
> > > org.apache.jsp.test2_jsp._jspService(test2_jsp.java:51) at
> > >
> > org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:92)
> > at
> > > javax.servlet.http.HttpServlet.service(HttpServlet.java:853) at
> > >
> > org.apache.jasper.servlet.JspServletWrapper.service(JspServlet
> > Wrapper.java:162)
> > > at
> > >
> > org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet
> > .java:240)
> > > at
> > org.apache.jasper.servlet.JspServlet.service(JspServlet.java:187) at
> > > javax.servlet.http.HttpServlet.service(HttpServlet.java:853) at
> > >
> > org.apache.catalina.core.ApplicationFilterChain.internalDoFilt
> > er(ApplicationFilterChain.java:200)
> > > at
> > >
> > org.apache.catalina.core.ApplicationFilterChain.access$000(App
> > licationFilterChain.java:51)
> > > at
> > >
> > org.apache.catalina.core.ApplicationFilterChain$1.run(Applicat
> > ionFilterChain.java:129)
> > > at java.security.AccessController.doPrivileged(Native Method) at
> > >
> > org.apache.catalina.core.ApplicationFilterChain.doFilter(Appli
> > cationFilterChain.java:125)
> > > at
> > >
> > org.apache.catalina.core.StandardWrapperValve.invoke(StandardW
> > rapperValve.java:209)
> > > at
> > >
> > org.apache.catalina.core.StandardPipeline$StandardPipelineValv
> > eContext.invokeNext(StandardPipeline.java:596)
> > > at
> > >
> > org.apache.catalina.core.StandardPipeline.invoke(StandardPipel
> > ine.java:433)
> > > at
> > org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:948
> > )
> > > at
> > >
> > org.apache.catalina.core.StandardContextValve.invoke(StandardC
> > ontextValve.java:144)
> > > at
> > >
> > org.apache.catalina.core.StandardPipeline$StandardPipelineValv
> > eContext.invokeNext(StandardPipeline.java:596)
> > > at
> > >
> > org.apache.catalina.core.StandardPipeline.invoke(StandardPipel
> > ine.java:433)
> > > at
> > org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:948
> > )
> > > at
> > >
> > org.apache.catalina.core.StandardContext.invoke(StandardContex
> > t.java:2358)
> > > at
> > >
> > org.apache.catalina.core.StandardHostValve.invoke(StandardHost
> > Valve.java:133)
> > > at
> > >
> > org.apache.catalina.core.StandardPipeline$StandardPipelineValv
> > eContext.invokeNext(StandardPipeline.java:596)
> > > at
> > >
> > org.apache.catalina.valves.ErrorDispatcherValve.invoke(ErrorDi
> > spatcherValve.java:118)
> > > at
> > >
> > org.apache.catalina.core.StandardPipeline$StandardPipelineValv
> > eContext.invokeNext(StandardPipeline.java:594)
> > > at
> > >
> > org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReport
> > Valve.java:116)
> > > at
> > >
> > org.apache.catalina.core.StandardPipeline$StandardPipelineValv
> > eContext.invokeNext(StandardPipeline.java:594)
> > > at
> > >
> > org.apache.catalina.core.StandardPipeline.invoke(StandardPipel
> > ine.java:433)
> > > at
> > org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:948
> > )
> > > at
> > >
> > org.apache.catalina.core.StandardEngineValve.invoke(StandardEn
> > gineValve.java:127)
> > > at
> > >
> > org.apache.catalina.core.StandardPipeline$StandardPipelineValv
> > eContext.invokeNext(StandardPipeline.java:596)
> > > at
> > >
> > org.apache.catalina.core.StandardPipeline.invoke(StandardPipel
> > ine.java:433)
> > > at
> > org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:948
> > )
> > > at
> > org.apache.coyote.tomcat4.CoyoteAdapter.service(CoyoteAdapter.
> > java:152)
> > > at
> > >
> > org.apache.coyote.http11.Http11Processor.process(Http11Process
> > or.java:799)
> > > at
> > >
> > org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandle
> > r.processConnection(Http11Protocol.java:705)
> > > at
> > >
> > org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoi
> > nt.java:577)
> > > at
> > >
> > org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(
> > ThreadPool.java:683)
> > > at java.lang.Thread.run(Thread.java:534) End of Stack Trace
> > >
> > >
> > >
> > >
> > --------------------------------------------------------------------
> > -
> > > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > > For additional commands, e-mail:
> > > [EMAIL PROTECTED]
> > >
> > >
> > >
> > > ----------
> > > Esta mensagem e quaisquer anexos são confidenciais, podendo conter
> > > informação sujeita a sigilo profissional ou qualquer outro dever
> > > de confidencialidade ou de segredo. Caso não seja o
> > destinatário deste e-mail,
> > > não deverá usar, copiar ou revelar o seu conteúdo,
> > solicitando-se que
> > > contacte o emissor com a brevidade possível e apague esta
> > > mensagem. Obrigado pela colaboração.
> > > ----------
> > > The information transmitted is intended for the person or entity
> > > to which it is addressed only and may contain confidential
> > and/or privileged
> > > material. Any review, retransmission, dissemination or
> > other use of, or
> > > taking of any action in reliance upon, this information by
> > persons or
> > > entities other than the intended recipient is prohibited.
> > If you received
> > > this in error, please contact the sender and delete the
> > material from any
> > > computer.
> > > Thank you for your cooperation.
> > >
> > >
> > >
> > --------------------------------------------------------------------
> > -
> > > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > > For additional commands, e-mail:
> > > [EMAIL PROTECTED]
> > >
> >
> > --------------------------------------------------------------------
> > -
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
> >
> >
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
!DSPAM:41ed4627106901254216280!
