skip to Main Content

I am working on an artificial intelligence project which is a logic game and aims two user connecting to the server on the network who acts as an Admin and then start to play one by one.

In order to create connections, i have a server code which is just listening on localhost:8000 and assigning team values to the clients as they arrive. After connecting, clients make their move under Admin’s control.

The question is that when i try to put my code to work in the browser it fails with the following error:

java.security.AccessControlException: access denied (java.net.SocketPermission 127.0.0.1:8000 connect,resolve)

Even though i have created my own policy, first granting only Socket access permission to the codebase of my project folder (file:///home/xxx/projects/-), after it didn’t work i granted all permissions from all codebase. I tried placing my policy file both in the home directory and in the same directory where my applet code resides.

Appreciate any tips, thanks.

5

Answers


  1. Place the policy file where the JRE is.

    For instance, my policy file is located at C:Program FilesJavajre1.6.0_01libsecurity

    Login or Signup to reply.
  2. by default I think it looks for a file named .java.policy in your home directory

    you can check the file /lib/security/java.security to see where it looks.
    check the keys named policy.url.n

    Login or Signup to reply.
  3. I strongly suggest respecting the same-origin policy. Security implications are not necessarily obvious at the best of times. Also, an applet with standard permissions has better usability and should be easier to maintain.

    Login or Signup to reply.
  4. If you grant a permission to a specific JAR (codebase), this only works if the whole execution stack from the start of the thread to the method invocation is in that codebase/protection domain.

    If your method is alibrary, and you are sure that you access the operation safely, you can use a Priveledged Block, which essentially makes sure the part of the stack calling your block is not considered in the access calculation.

    Privileged Block, as described here:

    http://docs.oracle.com/javase/6/docs/technotes/guides/security/doprivileged.html

    Greetings
    Bernd

    Login or Signup to reply.
  5. You can set the location of the security policy file by using this command-line option

    -Djava.security.policy=policyfilepath
    

    with the java command.

    Or you can even set this propery using the System.setProperty() procedure.

    Login or Signup to reply.
Please signup or login to give your own answer.
Back To Top
Search