problem with security manager and manager webapp

Tue, 16 Mar 2004 07:54:27 -0800 

Hi.

I've been using the manager webapp, but after enabling the security
manager (-security on tomcat startup), the manager doesn't run any longer,
giving this error:

type Exception report

message

description The server encountered an internal error () that prevented it
from fulfilling this request.

exception

javax.servlet.ServletException: Wrapper cannot find servlet class
org.apache.catalina.manager.ManagerServlet or a class it depends on
....

And in the log file, I see that:

java.security.AccessControlException: access denied
(java.lang.RuntimePermission accessClassInPackage.org.apache.catalina)
        at
java.security.AccessControlContext.checkPermission(AccessControlContext.java:269)
        at
java.security.AccessController.checkPermission(AccessController.java:401)
        at
java.lang.SecurityManager.checkPermission(SecurityManager.java:524)
        at
java.lang.SecurityManager.checkPackageAccess(SecurityManager.java:1491)
        at java.lang.ClassLoader$1.run(ClassLoader.java:313)
        at java.security.AccessController.doPrivileged(Native Method)
        at java.lang.ClassLoader.checkPackageAccess(ClassLoader.java:311)
        at java.lang.ClassLoader.defineClass0(Native Method)
        at java.lang.ClassLoader.defineClass(ClassLoader.java:537)
        at
java.security.SecureClassLoader.defineClass(SecureClassLoader.java:123)
        at
org.apache.catalina.loader.WebappClassLoader.findClassInternal(WebappClassLoader.java:1677)
        at
org.apache.catalina.loader.WebappClassLoader.findClass(WebappClassLoader.java:900)
        at
org.apache.catalina.loader.WebappClassLoader.loadClass(WebappClassLoader.java:1350)
        at
org.apache.catalina.loader.WebappClassLoader.loadClass(WebappClassLoader.java:1230)
        at
org.apache.catalina.core.StandardWrapper$1.run(StandardWrapper.java:962)
        at java.security.AccessController.doPrivileged(Native Method)
        at
org.apache.catalina.core.StandardWrapper.loadServlet(StandardWrapper.java:958)
        at
org.apache.catalina.core.StandardWrapper.allocate(StandardWrapper.java:712)
        at
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:187)
        at
org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:151)
        at
org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:567)
        at
org.apache.catalina.core.StandardContextValve.invokeInternal(StandardContextValve.java:245)
        at
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:199)
        at
org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:151)
        at
org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:587)
        at
org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:149)
        at
org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:567)
        at
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:184)
        at
org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:151)
        at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:164)
        at
org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:149)

---

In the default Catalina.policy file, I see:

// libraries installed in the "server" directory
grant codeBase "file:${catalina.home}/server/-" {
        permission java.security.AllPermission;
};


Why can I not get the manager app to work with the security manager
enabled?

Thanks,

Jason Keltz
[EMAIL PROTECTED]


---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Reply via email to