'Re: [commons-logging] cannot use commons-logging (or any library that uses it) in secure client'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       jakarta-commons-user
Subject:    Re: [commons-logging] cannot use commons-logging (or any library that uses it) in secure client
From:       "Wolfgang Wagner" <wwagner4 () gmail ! com>
Date:       2008-05-29 22:01:51
Message-ID: a17f5300805291501n2b64651etcc3ef0e0b6c76e38 () mail ! gmail ! com
[Download RAW message or body]

Thanks that helped

2008/5/28 simon.kitching@chello.at <simon.kitching@chello.at>:
> Wolfgang Wagner schrieb:
>> Hi
>> I have a problem starting my client in a secure context when I use a
>> library that uses commons-logging. (e.g. spring)
>>
>> Exception in thread "AWT-EventQueue-0" java.lang.ExceptionInInitializerError
>> at org.springframework.util.ClassUtils.<clinit>(Class Utils.java:73)
>> at org.springframework.core.io.DefaultResourceLoader.
>> <init>(DefaultResourceLoader.java:52)
>> (...)
>> at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
>> at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
>> at java.awt.EventDispatchThread.run(Unknown Source)
>> Caused by: java.security.AccessControlException: access denied
>> (java.util.PropertyPermission
>> org.apache.commons.logging.LogFactory.HashtableImp l read)
>> at java.security.AccessControlContext.checkPermission (Unknown Source)
>> at java.security.AccessController.checkPermission(Unk nown Source)
>> at java.lang.SecurityManager.checkPermission(Unknown Source)
>> at java.lang.SecurityManager.checkPropertyAccess(Unkn own Source)
>> at java.lang.System.getProperty(Unknown Source)
>> at org.apache.commons.logging.LogFactory.createFactor
>> yStore(LogFactory.java:320)
>> at org.apache.commons.logging.LogFactory.<clinit>(Log Factory.java:1725)
>> ... 34 more
>>
>> private static final Hashtable createFactoryStore() {
>> Hashtable result = null;
>> String storeImplementationClass
>> = System.getProperty(HASHTABLE_IMPLEMENTATION_PROPER TY);
>> if (storeImplementationClass == null) {
>> storeImplementationClass = WEAK_HASHTABLE_CLASSNAME;
>>
>>
>> I do not get the Problem If I sign the jars and use the
>> 'permision-all' tag in my jnlp, but that is not what I want.
>>
>> Does anyone have an idea how to overcome that problem ???
>>
>
> Are you using commons-logging version 1.1.1? If not, then try it as
> there was a security-related problem fixed in that release (see release
> notes).
>
> Regards,
> Simon
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: user-unsubscribe@commons.apache.org
> For additional commands, e-mail: user-help@commons.apache.org
>
>

---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@commons.apache.org
For additional commands, e-mail: user-help@commons.apache.org

[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic