glassfish
  1. glassfish
  2. GLASSFISH-3812

Java Web Start launch of app client with persistence unit fails with permission error

    Details

    • Type: Bug Bug
    • Status: Resolved
    • Priority: Critical Critical
    • Resolution: Fixed
    • Affects Version/s: 9.1peur1
    • Fix Version/s: 9.1peur1_dev
    • Component/s: standalone_client
    • Labels:
      None
    • Environment:

      Operating System: All
      Platform: All

    • Issuezilla Id:
      3,812
    • Status Whiteboard:
      Hide

      91ur1Approved

      Show
      91ur1Approved

      Description

      Build an app client that includes a persistence unit. Attempts to launch it
      using Java Web Start fail with a permission security violation.

        Activity

        Hide
        Tim Quinn added a comment -

        The problem is that to resolve some class loading issues with custom persistence
        providers, the default TopLinkEssentials provider and related JARs are not
        included in the system class path but are added to the class loader from inside
        the app client container. To satisfy the Java Web Start security sandbox
        requirements such GlassFish JARs need to be granted additional permissions.
        This is done for the other GlassFish JARs but when we began treating these
        persistence JARs a little differently we did not include them in the permissions
        processing.

        I have that fix working now in my local workspace.

        Show
        Tim Quinn added a comment - The problem is that to resolve some class loading issues with custom persistence providers, the default TopLinkEssentials provider and related JARs are not included in the system class path but are added to the class loader from inside the app client container. To satisfy the Java Web Start security sandbox requirements such GlassFish JARs need to be granted additional permissions. This is done for the other GlassFish JARs but when we began treating these persistence JARs a little differently we did not include them in the permissions processing. I have that fix working now in my local workspace.
        Hide
        basler added a comment -

        Approved for check into the SJSAS91_UR1_BRANCH

        Show
        basler added a comment - Approved for check into the SJSAS91_UR1_BRANCH
        Hide
        Tim Quinn added a comment -

        Change checked in for UR1, FCS, and main trunk:

        Checking in JWSACCMain.java;
        /cvs/glassfish/appserv-core/src/java/com/sun/enterprise/appclient/jws/boot/JWSACCMain.java,v
        <-- JWSACCMain.java
        new revision: 1.15.8.1; previous revision: 1.15
        done

        Checking in JWSACCMain.java;
        /cvs/glassfish/appserv-core/src/java/com/sun/enterprise/appclient/jws/boot/JWSACCMain.java,v
        <-- JWSACCMain.java
        new revision: 1.15.6.1; previous revision: 1.15
        done

        Checking in JWSACCMain.java;
        /cvs/glassfish/appserv-core/src/java/com/sun/enterprise/appclient/jws/boot/JWSACCMain.java,v
        <-- JWSACCMain.java
        new revision: 1.16; previous revision: 1.15
        done

        Show
        Tim Quinn added a comment - Change checked in for UR1, FCS, and main trunk: Checking in JWSACCMain.java; /cvs/glassfish/appserv-core/src/java/com/sun/enterprise/appclient/jws/boot/JWSACCMain.java,v <-- JWSACCMain.java new revision: 1.15.8.1; previous revision: 1.15 done Checking in JWSACCMain.java; /cvs/glassfish/appserv-core/src/java/com/sun/enterprise/appclient/jws/boot/JWSACCMain.java,v <-- JWSACCMain.java new revision: 1.15.6.1; previous revision: 1.15 done Checking in JWSACCMain.java; /cvs/glassfish/appserv-core/src/java/com/sun/enterprise/appclient/jws/boot/JWSACCMain.java,v <-- JWSACCMain.java new revision: 1.16; previous revision: 1.15 done

          People

          • Assignee:
            Tim Quinn
            Reporter:
            Tim Quinn
          • Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved: