Discussions
Categories
- 196.8K All Categories
- 2.2K Data
- 235 Big Data Appliance
- 1.9K Data Science
- 449.9K Databases
- 221.6K General Database Discussions
- 3.8K Java and JavaScript in the Database
- 31 Multilingual Engine
- 549 MySQL Community Space
- 478 NoSQL Database
- 7.9K Oracle Database Express Edition (XE)
- 3K ORDS, SODA & JSON in the Database
- 532 SQLcl
- 4K SQL Developer Data Modeler
- 186.9K SQL & PL/SQL
- 21.3K SQL Developer
- 295.4K Development
- 17 Developer Projects
- 138 Programming Languages
- 292.1K Development Tools
- 104 DevOps
- 3.1K QA/Testing
- 645.9K Java
- 28 Java Learning Subscription
- 37K Database Connectivity
- 154 Java Community Process
- 105 Java 25
- 22.1K Java APIs
- 138.1K Java Development Tools
- 165.3K Java EE (Java Enterprise Edition)
- 17 Java Essentials
- 158 Java 8 Questions
- 85.9K Java Programming
- 79 Java Puzzle Ball
- 65.1K New To Java
- 1.7K Training / Learning / Certification
- 13.8K Java HotSpot Virtual Machine
- 94.2K Java SE
- 13.8K Java Security
- 203 Java User Groups
- 24 JavaScript - Nashorn
- Programs
- 401 LiveLabs
- 37 Workshops
- 10.2K Software
- 6.7K Berkeley DB Family
- 3.5K JHeadstart
- 5.6K Other Languages
- 2.3K Chinese
- 171 Deutsche Oracle Community
- 1.1K Español
- 1.9K Japanese
- 230 Portuguese
Rmi server : authorize client with a policy file
843811
Member Posts: 49,851
Hello,
I have a Rmi client/server application
I wan't my server only authorize a list of clients.
For doing that I define a security manager started with my server :
My server is started :
java -java.security.manager=java.lang.SecurityManager -MyRmiServer
I defined a policy file :
// permission
grant {
permission java.io.FilePermission "<<ALL FILES>>", "execute, read, write, delete";
permission java.net.SocketPermission "127.0.0.1", "accept,connect,listen,resolve";
permission java.net.SocketPermission "client1", "accept,connect,listen,resolve";
};
With this system my client1 got ConnectException when trying to accessed rmi service.
Note : without security manager everything works fine.
Thanks Philippe
I have a Rmi client/server application
I wan't my server only authorize a list of clients.
For doing that I define a security manager started with my server :
My server is started :
java -java.security.manager=java.lang.SecurityManager -MyRmiServer
I defined a policy file :
// permission
grant {
permission java.io.FilePermission "<<ALL FILES>>", "execute, read, write, delete";
permission java.net.SocketPermission "127.0.0.1", "accept,connect,listen,resolve";
permission java.net.SocketPermission "client1", "accept,connect,listen,resolve";
};
With this system my client1 got ConnectException when trying to accessed rmi service.
Note : without security manager everything works fine.
Thanks Philippe
Comments
-
Hi Pinston,
Here is the code for the general policy file
For connect or to accept connections on unprivileged ports( ports greater than 1024) in any host.
grant
{
permission java.net.SocketPermission "*:1024-65535",
"connect,accept";
};
Connect to port 80
grant {
permission java.net.SocketPermission "*:80","connect";
};
Host name can be given while starting the server.
java -Djava.rmi.server.codebase=file:\/
-Djava.rmi.server.hostname=sundts1
-Djava.security.policy=java.policy
engine ComputeEngine.
I hope this will help you out.
Thanks
Bakrudeen
Technical Support Engineer
Sun MicroSystems Inc, India
This discussion has been closed.