CXF deploying in Tomcat checkPermission issue

2008-02-01 Thread Yadav, Yogendra (IT) 
Hi,
Having this issue while deploying CXF in Tomcat which has
SecurityManager enabled and can't turn off.
 
org.springframework.beans.factory.BeanCreationException: Error creating
bean with name 'helloWorld': Invocation of init method failed; nested
exception is java.security.AccessControlException: access denied
(javax.xml.ws.WebServicePermission publishEndpoint) Caused by:
java.security.AccessControlException: access denied
(javax.xml.ws.WebServicePermission publishEndpoint)
at
java.security.AccessControlContext.checkPermission(AccessControlContext.
java:264)
at
java.security.AccessController.checkPermission(AccessController.java:427
)
at
java.lang.SecurityManager.checkPermission(SecurityManager.java:532)
at
org.apache.cxf.jaxws.EndpointImpl.checkPublishPermission(EndpointImpl.ja
va:349)
 
The EndpointImpl.checkPublishPermission :
protected void checkPublishPermission() {
SecurityManager sm = System.getSecurityManager();
if (sm != null) {
sm.checkPermission(PUBLISH_PERMISSION);
} else if
(Boolean.getBoolean(CHECK_PUBLISH_ENDPOINT_PERMISSON_PROPERTY)) {
AccessController.checkPermission(PUBLISH_PERMISSION);
 
Where:
private static final WebServicePermission PUBLISH_PERMISSION =
new WebServicePermission(publishEndpoint);
 
thanx
-yogen


NOTICE: If received in error, please destroy and notify sender. Sender does not 
intend to waive confidentiality or privilege. Use of this email is prohibited 
when received in error.

Re: CXF deploying in Tomcat checkPermission issue

2008-02-01 Thread Daniel Kulp 

Unfortunately, this is completely required per the jaxws spec.   We HAVE 
to call the check permissions on the SecurityManager when an 
Endpoint.publish(..) call is made.  

You really have two options:

1) Configure the SecurityManager to allow the PUBLISH_PERMISSION check to 
succeed.   I think tomcat has some configs to allow you to keep the SM 
in place, but configured to allow publish.

2) Switch from using jaxws:endpoint to jaxws:server in your spring config 
file.   jaxws:server doesn't use the JAXWS Endpoint apis (It create the 
CXF internal representation that the JAXWS Endpoing thing more or less 
wrappers) so it may not be affected by that check.

Dan


On Friday 01 February 2008, Yadav, Yogendra (IT) wrote:
 Hi,
 Having this issue while deploying CXF in Tomcat which has
 SecurityManager enabled and can't turn off.

 org.springframework.beans.factory.BeanCreationException: Error
 creating bean with name 'helloWorld': Invocation of init method
 failed; nested exception is java.security.AccessControlException:
 access denied (javax.xml.ws.WebServicePermission publishEndpoint)
 Caused by: java.security.AccessControlException: access denied
 (javax.xml.ws.WebServicePermission publishEndpoint)
 at
 java.security.AccessControlContext.checkPermission(AccessControlContex
t. java:264)
 at
 java.security.AccessController.checkPermission(AccessController.java:4
27 )
 at
 java.lang.SecurityManager.checkPermission(SecurityManager.java:532)
 at
 org.apache.cxf.jaxws.EndpointImpl.checkPublishPermission(EndpointImpl.
ja va:349)

 The EndpointImpl.checkPublishPermission :
 protected void checkPublishPermission() {
 SecurityManager sm = System.getSecurityManager();
 if (sm != null) {
 sm.checkPermission(PUBLISH_PERMISSION);
 } else if
 (Boolean.getBoolean(CHECK_PUBLISH_ENDPOINT_PERMISSON_PROPERTY)) {
 AccessController.checkPermission(PUBLISH_PERMISSION);

 Where:
 private static final WebServicePermission PUBLISH_PERMISSION =
 new WebServicePermission(publishEndpoint);

 thanx
 -yogen
 

 NOTICE: If received in error, please destroy and notify sender. Sender
 does not intend to waive confidentiality or privilege. Use of this
 email is prohibited when received in error.



-- 
J. Daniel Kulp
Principal Engineer, IONA
[EMAIL PROTECTED]
http://www.dankulp.com/blog