Problems signing WAR-File

Thu, 17 Jan 2002 13:22:03 -0800 

Hallo,


i like to sign my servlet.war file, but when i start tomcat (3.3 or 4.0.1)
with the security option i always get the traceback

access: access denied (java.io.FilePermission c:\tmp\testelei.txt write)
java.lang.Exception: Stack trace
        at java.lang.Thread.dumpStack(Thread.java:983)
        at
java.security.AccessControlContext.checkPermission(AccessControlContext.java,

Compiled Code)
        at
java.security.AccessController.checkPermission(AccessController.java,
Compiled Code)
        at java.lang.SecurityManager.checkPermission(SecurityManager.java,
Compiled Code)
        at java.lang.SecurityManager.checkWrite(SecurityManager.java:958)
        at java.io.FileOutputStream.<init>(FileOutputStream.java:96)
        at java.io.FileOutputStream.<init>(FileOutputStream.java:62)
        at java.io.FileWriter.<init>(FileWriter.java:35)
        at
de.tegis.servlet.secure.SecurityServlet.writeFile(SecurityServlet.java:41)
        at
de.tegis.servlet.secure.SecurityServlet.doGet(SecurityServlet.java:20)
..........

access: domain that failed ProtectionDomain
(file:/C:/Programme/jakarta-tomcat-4.0.1/webapps/secureTest/WEB-INF/classes/de/tegis/TestServlet.class

<no certificates>)


when i use the signedBy "alias" statement in my policy-file (tomcat.policy
or catalina.policy).

When i leave this signedBy - statement out the policy-entries are accepted
by tomcat.
I guess, that tomcat uses not the right keystore because of the "no
certificates" - statement.

Does someone has successful trials with signed Servlet-War-Files?

Thanks for your effort.
Christian Pfeffer















--
To unsubscribe:   <mailto:[EMAIL PROTECTED]>
For additional commands: <mailto:[EMAIL PROTECTED]>
Troubles with the list: <mailto:[EMAIL PROTECTED]>

Reply via email to