> I am not able to grant security permissions on individual jar files. Can
> someone tell me what I'm doing wrong?
>
> In my policy file (CATALINA_HOME/conf/catalina.policy) I have the
> following setting:
>
> grant codeBase "file:${catalina.home}/-" {
> permission java.security.AllPermission;
> };
>
> I would think this would grant all permissions to all jar files,
> classes, etc under the catalina directory, including webapps'
> classes/jars.
First, ensure you are running with the -security option that turns on Tomcat
with the security manager installed. Often you need to modify the
startup.sh script to include that options between 'start' and '$@'. In my
TC 4.1.12 startup.sh, I have:
exec "$PRGDIR"/"$EXECUTABLE" start -security "$@"
Second, you are granting your permissions far too low on the file path. At
the very least, consider something like
grant codeBase "file:${catalina.base}/webapps/yourappname/-" {
Third, are you actually running multiple instances in which your
catalina.base is different than your catalina.home? If so, make sure you
are modifying the right catalina.policy file (you want the one that's under
your catalina.base, not the one under catalina.home). If you are only
running a single instance of TC, though, then this should not be an issue.
Hope something here helps...
David Wall
www.yozons.com Electronic signatures with secure document delivery
--
To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
