[ http://jira.jboss.com/jira/browse/JBAS-1522?page=history ] Scott M Stark closed JBAS-1522: -------------------------------
Resolution: Done The org.jboss.security.httpInvoker.sslSocketFactoryBuilder system property is read in a PrivilegedAction, and failure simply results in the default https SSLSocketFactory being used. > HttpNamingContextFactory fails due to system property read when under a > security manager > ---------------------------------------------------------------------------------------- > > Key: JBAS-1522 > URL: http://jira.jboss.com/jira/browse/JBAS-1522 > Project: JBoss Application Server > Type: Bug > Components: Naming > Versions: JBossAS-4.0.1 SP1, JBossAS-4.0.1 Final, JBossAS-3.2.7 Final > Reporter: Scott M Stark > Assignee: Scott M Stark > Fix For: JBossAS-4.0.2RC1, JBossAS-5.0 Alpha, JBossAS-3.2.8 Final > > > Running under a security manager with the > org.jboss.naming.HttpNamingContextFactory can result in the following failure > due to the property access not being in a privileged block. The failure > should also be ignored since its an optional override setting. > java.lang.ExceptionInInitializerError > at > org.jboss.naming.HttpNamingContextFactory.getNamingServer(HttpNamingContextFactory.java:106) > at > org.jboss.naming.HttpNamingContextFactory.getInitialContext(HttpNamingContextFactory.java:65) > at javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:662) > at javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:243) > at javax.naming.InitialContext.init(InitialContext.java:219) > at javax.naming.InitialContext.(InitialContext.java:195) > at com.nineci.applet.HelloBeanApplet.start(HelloBeanApplet.java:31) > at sun.applet.AppletPanel.run(AppletPanel.java:377) > at java.lang.Thread.run(Thread.java:534) > Caused by: java.security.AccessControlException: access denied > (java.util.PropertyPermission > org.jboss.security.httpInvoker.sslSocketFactoryBuilder read) > at > java.security.AccessControlContext.checkPermission(AccessControlContext.java:269) > at java.security.AccessController.checkPermission(AccessController.java:401) > at java.lang.SecurityManager.checkPermission(SecurityManager.java:524) > at java.lang.SecurityManager.checkPropertyAccess(SecurityManager.java:1276) > at java.lang.System.getProperty(System.java:573) > at org.jboss.invocation.http.interfaces.Util.(Util.java:76) > ... 9 more -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://jira.jboss.com/jira/secure/Administrators.jspa - If you want more information on JIRA, or have a bug to report see: http://www.atlassian.com/software/jira ------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click _______________________________________________ JBoss-Development mailing list JBoss-Development@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-development