[rules-users] BRMS Security in Websphere 6.1
Steven Williams
stevearoonie at gmail.com
Wed May 14 19:47:57 EDT 2008
Hi Vikas,
I haven't used the BRMS in WebSphere but the error you are getting should be
able to be resolved by adding
permission java.io.FilePermission
"\C:\ProgramFiles\IBM\SDP70\runtimes\base_v61\lib\EJBCommandTarget.jar",
"read";
in either the file:${application} or file:${jars} sections.
There are also some substitution parameters you can use so something like:
permission java.io.FilePermission
"${app.installed.path}\lib\EJBCommandTarget.jar", "read";
should also work.
Take a look at
http://publib.boulder.ibm.com/infocenter/wasinfo/v6r0/index.jsp?topic=/com.ibm.websphere.express.doc/info/exp/ae/tsec_waspolicyfile.html
regards
Steve
On Thu, May 15, 2008 at 8:08 AM, Vikas Phonsa <VPhonsa at mercuryinsurance.com>
wrote:
> Hi Everybody,
>
> Has anybody been able to enable BRMS security in Websphere 6.1? If I use
> "WSLogin" I get the exception shown below.
>
>
> Any ideas?
>
> Thanks in advance.
> Vikas
>
>
>
> ----------------------Exception Stack
> Trace---------------------------------
> SECJ0314W: Current Java 2 Security policy reported a potential
> violation of Java 2 Security Permission. Please refer to InfoCenter for
> further information.
>
> Permission:
>
> \C:\Program
> Files\IBM\SDP70\runtimes\base_v61\lib\EJBCommandTarget.jar : Access
> denied (java.io.FilePermission \C:\Program
> Files\IBM\SDP70\runtimes\base_v61\lib\EJBCommandTarget.jar read)
>
>
> Code:
>
> org.jboss.seam.init.DeploymentDescriptor in {file:/C:/Documents
> and
> Settings/vphonsa/RSAWorkspaces/MercuryMisc/.metadata/.plugins/org.eclips
> e.wst.server.core/tmp0/drools-jbrmsEAR.ear/drools-jbrms.war/WEB-INF/lib/
> jboss-seam-2.0.0.CR2.jar}
>
>
>
> Stack Trace:
>
> java.security.AccessControlException: Access denied
> (java.io.FilePermission \C:\Program
> Files\IBM\SDP70\runtimes\base_v61\lib\EJBCommandTarget.jar read)
> at
> java.security.AccessController.checkPermission(AccessController.java:104
> )
> at
> java.lang.SecurityManager.checkPermission(SecurityManager.java:547)
> at
> com.ibm.ws.security.core.SecurityManager.checkPermission(SecurityManager
> .java:189)
> at sun.misc.URLClassPath.check(URLClassPath.java:666)
> at sun.misc.URLClassPath.checkURL(URLClassPath.java:646)
> at java.net.URLClassLoader.findResource(URLClassLoader.java:755)
> at
> com.ibm.ws.bootstrap.ExtClassLoader.findResource(ExtClassLoader.java:448
> )
> at java.lang.ClassLoader.getResource(ClassLoader.java:387)
> at java.lang.ClassLoader.getResource(ClassLoader.java:382)
> at
> java.lang.ClassLoader.getResourceAsStream(ClassLoader.java:447)
> at
> com.ibm.ws.classloader.CompoundClassLoader.getResourceAsStream(CompoundC
> lassLoader.java:884)
> at
> com.ibm.ws.classloader.ReloadableClassLoader.getResourceAsStream(Reloada
> bleClassLoader.java:182)
> at
> com.ibm.ws.classloader.CompoundClassLoader.getResourceAsStream(CompoundC
> lassLoader.java:884)
> at
> org.jboss.seam.init.DeploymentDescriptor.<init>(DeploymentDescriptor.jav
> a:37)
> at org.jboss.seam.Seam.getEjbDescriptor(Seam.java:51)
> at org.jboss.seam.Seam.getComponentType(Seam.java:102)
> at org.jboss.seam.Component.<init>(Component.java:227)
> at org.jboss.seam.Component.<init>(Component.java:217)
> at
> org.jboss.seam.init.Initialization.addComponent(Initialization.java:949)
> at
> org.jboss.seam.init.Initialization.init(Initialization.java:536)
> at
> org.jboss.seam.servlet.SeamListener.contextInitialized(SeamListener.java
> :34)
> at
> com.ibm.ws.wswebcontainer.webapp.WebApp.notifyServletContextCreated(WebA
> pp.java:608)
> at
> com.ibm.ws.webcontainer.webapp.WebApp.commonInitializationFinish(WebApp.
> java:266)
> at
> com.ibm.ws.wswebcontainer.webapp.WebApp.initialize(WebApp.java:272)
> at
> com.ibm.ws.wswebcontainer.webapp.WebGroup.addWebApplication(WebGroup.jav
> a:88)
> at
> com.ibm.ws.wswebcontainer.VirtualHost.addWebApplication(VirtualHost.java
> :157)
> at
> com.ibm.ws.wswebcontainer.WebContainer.addWebApp(WebContainer.java:655)
> at
> com.ibm.ws.wswebcontainer.WebContainer.addWebApplication(WebContainer.ja
> va:608)
> at
> com.ibm.ws.webcontainer.component.WebContainerImpl.install(WebContainerI
> mpl.java:333)
> at
> com.ibm.ws.webcontainer.component.WebContainerImpl.start(WebContainerImp
> l.java:549)
> at
> com.ibm.ws.runtime.component.ApplicationMgrImpl.start(ApplicationMgrImpl
> .java:1295)
> at
> com.ibm.ws.runtime.component.DeployedApplicationImpl.fireDeployedObjectS
> tart(DeployedApplicationImpl.java:1129)
> at
> com.ibm.ws.runtime.component.DeployedModuleImpl.start(DeployedModuleImpl
> .java:567)
> at
> com.ibm.ws.runtime.component.DeployedApplicationImpl.start(DeployedAppli
> cationImpl.java:814)
> at
> com.ibm.ws.runtime.component.ApplicationMgrImpl.startApplication(Applica
> tionMgrImpl.java:948)
> at
> com.ibm.ws.runtime.component.ApplicationMgrImpl$AppInitializer.run(Appli
> cationMgrImpl.java:2114)
> at
> com.ibm.wsspi.runtime.component.WsComponentImpl$_AsynchInitializer.run(W
> sComponentImpl.java:340)
> at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java:1510)
>
>
> Code Base Location:
>
>
> [5/14/08 15:03:33:437 PDT] 00000014 SecurityManag W SECJ0314W: Current
> Java 2 Security policy reported a potential violation of Java 2 Security
> Permission. Please refer to InfoCenter for further information.
>
> Permission:
>
> \C:\Program
> Files\IBM\SDP70\runtimes\base_v61\lib\EJBCommandTarget.jar : Access
> denied (java.io.FilePermission \C:\Program
> Files\IBM\SDP70\runtimes\base_v61\lib\EJBCommandTarget.jar read)
>
>
> Code:
>
> org.jboss.seam.init.DeploymentDescriptor in {file:/C:/Documents
> and
> Settings/vphonsa/RSAWorkspaces/MercuryMisc/.metadata/.plugins/org.eclips
> e.wst.server.core/tmp0/drools-jbrmsEAR.ear/drools-jbrms.war/WEB-INF/lib/
> jboss-seam-2.0.0.CR2.jar}
>
>
>
> Stack Trace:
>
> java.security.AccessControlException: Access denied
> (java.io.FilePermission \C:\Program
> Files\IBM\SDP70\runtimes\base_v61\lib\EJBCommandTarget.jar read)
> at
> java.security.AccessController.checkPermission(AccessController.java:104
> )
> at
> java.lang.SecurityManager.checkPermission(SecurityManager.java:547)
> at
> com.ibm.ws.security.core.SecurityManager.checkPermission(SecurityManager
> .java:189)
> at java.lang.SecurityManager.checkRead(SecurityManager.java:886)
> at sun.misc.URLClassPath.check(URLClassPath.java:672)
> at sun.misc.URLClassPath.checkURL(URLClassPath.java:646)
> at java.net.URLClassLoader.findResource(URLClassLoader.java:755)
> at
> com.ibm.ws.bootstrap.ExtClassLoader.findResource(ExtClassLoader.java:448
> )
> at java.lang.ClassLoader.getResource(ClassLoader.java:387)
> at java.lang.ClassLoader.getResource(ClassLoader.java:382)
> at
> java.lang.ClassLoader.getResourceAsStream(ClassLoader.java:447)
> at
> com.ibm.ws.classloader.CompoundClassLoader.getResourceAsStream(CompoundC
> lassLoader.java:884)
> at
> com.ibm.ws.classloader.ReloadableClassLoader.getResourceAsStream(Reloada
> bleClassLoader.java:182)
> at
> com.ibm.ws.classloader.CompoundClassLoader.getResourceAsStream(CompoundC
> lassLoader.java:884)
> at
> org.jboss.seam.init.DeploymentDescriptor.<init>(DeploymentDescriptor.jav
> a:37)
> at org.jboss.seam.Seam.getEjbDescriptor(Seam.java:51)
> at org.jboss.seam.Seam.getComponentType(Seam.java:102)
> at org.jboss.seam.Component.<init>(Component.java:227)
> at org.jboss.seam.Component.<init>(Component.java:217)
> at
> org.jboss.seam.init.Initialization.addComponent(Initialization.java:949)
> at
> org.jboss.seam.init.Initialization.init(Initialization.java:536)
> at
> org.jboss.seam.servlet.SeamListener.contextInitialized(SeamListener.java
> :34)
> at
> com.ibm.ws.wswebcontainer.webapp.WebApp.notifyServletContextCreated(WebA
> pp.java:608)
> at
> com.ibm.ws.webcontainer.webapp.WebApp.commonInitializationFinish(WebApp.
> java:266)
> at
> com.ibm.ws.wswebcontainer.webapp.WebApp.initialize(WebApp.java:272)
> at
> com.ibm.ws.wswebcontainer.webapp.WebGroup.addWebApplication(WebGroup.jav
> a:88)
> at
> com.ibm.ws.wswebcontainer.VirtualHost.addWebApplication(VirtualHost.java
> :157)
> at
> com.ibm.ws.wswebcontainer.WebContainer.addWebApp(WebContainer.java:655)
> at
> com.ibm.ws.wswebcontainer.WebContainer.addWebApplication(WebContainer.ja
> va:608)
> at
> com.ibm.ws.webcontainer.component.WebContainerImpl.install(WebContainerI
> mpl.java:333)
> at
> com.ibm.ws.webcontainer.component.WebContainerImpl.start(WebContainerImp
> l.java:549)
> at
> com.ibm.ws.runtime.component.ApplicationMgrImpl.start(ApplicationMgrImpl
> .java:1295)
> at
> com.ibm.ws.runtime.component.DeployedApplicationImpl.fireDeployedObjectS
> tart(DeployedApplicationImpl.java:1129)
> at
> com.ibm.ws.runtime.component.DeployedModuleImpl.start(DeployedModuleImpl
> .java:567)
> at
> com.ibm.ws.runtime.component.DeployedApplicationImpl.start(DeployedAppli
> cationImpl.java:814)
> at
> com.ibm.ws.runtime.component.ApplicationMgrImpl.startApplication(Applica
> tionMgrImpl.java:948)
> at
> com.ibm.ws.runtime.component.ApplicationMgrImpl$AppInitializer.run(Appli
> cationMgrImpl.java:2114)
> at
> com.ibm.wsspi.runtime.component.WsComponentImpl$_AsynchInitializer.run(W
> sComponentImpl.java:340)
> at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java:1510)
>
>
> Code Base Location:
>
>
> [5/14/08 15:03:33:562 PDT] 00000014 SecurityManag W SECJ0314W: Current
> Java 2 Security policy reported a potential violation of Java 2 Security
> Permission. Please refer to InfoCenter for further information.
>
> Permission:
>
> suppressAccessChecks : Access denied
> (java.lang.reflect.ReflectPermission suppressAccessChecks)
>
>
> Code:
>
> org.jboss.seam.Component in {file:/C:/Documents and
> Settings/vphonsa/RSAWorkspaces/MercuryMisc/.metadata/.plugins/org.eclips
> e.wst.server.core/tmp0/drools-jbrmsEAR.ear/drools-jbrms.war/WEB-INF/lib/
> jboss-seam-2.0.0.CR2.jar}
>
>
>
> Stack Trace:
>
> java.security.AccessControlException: Access denied
> (java.lang.reflect.ReflectPermission suppressAccessChecks)
> at
> java.security.AccessController.checkPermission(AccessController.java:104
> )
> at
> java.lang.SecurityManager.checkPermission(SecurityManager.java:547)
> at
> com.ibm.ws.security.core.SecurityManager.checkPermission(SecurityManager
> .java:189)
> at
> java.lang.reflect.AccessibleObject.setAccessible(AccessibleObject.java:1
> 19)
> at org.jboss.seam.Component.scanMethod(Component.java:797)
> at org.jboss.seam.Component.initMembers(Component.java:548)
> at org.jboss.seam.Component.<init>(Component.java:254)
> at org.jboss.seam.Component.<init>(Component.java:217)
> at
> org.jboss.seam.init.Initialization.addComponent(Initialization.java:949)
> at
> org.jboss.seam.init.Initialization.init(Initialization.java:536)
> at
> org.jboss.seam.servlet.SeamListener.contextInitialized(SeamListener.java
> :34)
> at
> com.ibm.ws.wswebcontainer.webapp.WebApp.notifyServletContextCreated(WebA
> pp.java:608)
> at
> com.ibm.ws.webcontainer.webapp.WebApp.commonInitializationFinish(WebApp.
> java:266)
> at
> com.ibm.ws.wswebcontainer.webapp.WebApp.initialize(WebApp.java:272)
> at
> com.ibm.ws.wswebcontainer.webapp.WebGroup.addWebApplication(WebGroup.jav
> a:88)
> at
> com.ibm.ws.wswebcontainer.VirtualHost.addWebApplication(VirtualHost.java
> :157)
> at
> com.ibm.ws.wswebcontainer.WebContainer.addWebApp(WebContainer.java:655)
> at
> com.ibm.ws.wswebcontainer.WebContainer.addWebApplication(WebContainer.ja
> va:608)
> at
> com.ibm.ws.webcontainer.component.WebContainerImpl.install(WebContainerI
> mpl.java:333)
> at
> com.ibm.ws.webcontainer.component.WebContainerImpl.start(WebContainerImp
> l.java:549)
> at
> com.ibm.ws.runtime.component.ApplicationMgrImpl.start(ApplicationMgrImpl
> .java:1295)
> at
> com.ibm.ws.runtime.component.DeployedApplicationImpl.fireDeployedObjectS
> tart(DeployedApplicationImpl.java:1129)
> at
> com.ibm.ws.runtime.component.DeployedModuleImpl.start(DeployedModuleImpl
> .java:567)
> at
> com.ibm.ws.runtime.component.DeployedApplicationImpl.start(DeployedAppli
> cationImpl.java:814)
> at
> com.ibm.ws.runtime.component.ApplicationMgrImpl.startApplication(Applica
> tionMgrImpl.java:948)
> at
> com.ibm.ws.runtime.component.ApplicationMgrImpl$AppInitializer.run(Appli
> cationMgrImpl.java:2114)
> at
> com.ibm.wsspi.runtime.component.WsComponentImpl$_AsynchInitializer.run(W
> sComponentImpl.java:340)
> at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java:1510)
>
>
> Code Base Location:
>
>
> [5/14/08 15:03:33:625 PDT] 00000014 ServiceLogger I
> com.ibm.ws.ffdc.IncidentStreamImpl open FFDC0009I: FFDC opened incident
> stream file C:\Program
> Files\IBM\SDP70\runtimes\base_v61\profiles\AppSrv01\logs\ffdc\server1_14
> 181418_08.05.14_15.03.33_1.txt
> [5/14/08 15:03:33:750 PDT] 00000014 ServiceLogger I
> com.ibm.ws.ffdc.IncidentStreamImpl resetIncidentStream FFDC0010I: FFDC
> closed incident stream file C:\Program
> Files\IBM\SDP70\runtimes\base_v61\profiles\AppSrv01\logs\ffdc\server1_14
> 181418_08.05.14_15.03.33_1.txt
> [5/14/08 15:03:33:781 PDT] 00000014 WebApp E Exception caught
> while initializing context
> java.lang.RuntimeException: Could not create Component:
> org.jboss.seam.core.init
> at
> org.jboss.seam.init.Initialization.addComponent(Initialization.java:964)
> at
> org.jboss.seam.init.Initialization.init(Initialization.java:536)
> at
> org.jboss.seam.servlet.SeamListener.contextInitialized(SeamListener.java
> :34)
> at
> com.ibm.ws.wswebcontainer.webapp.WebApp.notifyServletContextCreated(WebA
> pp.java:608)
> at
> com.ibm.ws.webcontainer.webapp.WebApp.commonInitializationFinish(WebApp.
> java:266)
> at
> com.ibm.ws.wswebcontainer.webapp.WebApp.initialize(WebApp.java:272)
> at
> com.ibm.ws.wswebcontainer.webapp.WebGroup.addWebApplication(WebGroup.jav
> a:88)
> at
> com.ibm.ws.wswebcontainer.VirtualHost.addWebApplication(VirtualHost.java
> :157)
> at
> com.ibm.ws.wswebcontainer.WebContainer.addWebApp(WebContainer.java:655)
> at
> com.ibm.ws.wswebcontainer.WebContainer.addWebApplication(WebContainer.ja
> va:608)
> at
> com.ibm.ws.webcontainer.component.WebContainerImpl.install(WebContainerI
> mpl.java:333)
> at
> com.ibm.ws.webcontainer.component.WebContainerImpl.start(WebContainerImp
> l.java:549)
> at
> com.ibm.ws.runtime.component.ApplicationMgrImpl.start(ApplicationMgrImpl
> .java:1295)
> at
> com.ibm.ws.runtime.component.DeployedApplicationImpl.fireDeployedObjectS
> tart(DeployedApplicationImpl.java:1129)
> at
> com.ibm.ws.runtime.component.DeployedModuleImpl.start(DeployedModuleImpl
> .java:567)
> at
> com.ibm.ws.runtime.component.DeployedApplicationImpl.start(DeployedAppli
> cationImpl.java:814)
> at
> com.ibm.ws.runtime.component.ApplicationMgrImpl.startApplication(Applica
> tionMgrImpl.java:948)
> at
> com.ibm.ws.runtime.component.ApplicationMgrImpl$AppInitializer.run(Appli
> cationMgrImpl.java:2114)
> at
> com.ibm.wsspi.runtime.component.WsComponentImpl$_AsynchInitializer.run(W
> sComponentImpl.java:340)
> at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java:1510)
> Caused by: java.security.AccessControlException: Access denied
> (java.lang.reflect.ReflectPermission suppressAccessChecks)
> at
> java.security.AccessController.checkPermission(AccessController.java:104
> )
> at
> java.lang.SecurityManager.checkPermission(SecurityManager.java:547)
> at
> com.ibm.ws.security.core.SecurityManager.checkPermission(SecurityManager
> .java:189)
> at
> java.lang.reflect.AccessibleObject.setAccessible(AccessibleObject.java:1
> 19)
> at org.jboss.seam.Component.scanMethod(Component.java:797)
> at org.jboss.seam.Component.initMembers(Component.java:548)
> at org.jboss.seam.Component.<init>(Component.java:254)
> at org.jboss.seam.Component.<init>(Component.java:217)
> at
> org.jboss.seam.init.Initialization.addComponent(Initialization.java:949)
> ... 19 more
>
>
> This email and/or any files or attachments transmitted with it are
> confidential and intended solely for the use of the individual or entity to
> whom they are addressed, and may contain information that is privileged,
> confidential and exempt from disclosure under applicable law. If you are not
> the intended recipient, or the employee or agent responsible for delivering
> the message to the intended recipient, you are hereby notified that any
> dissemination, distribution or copying of this e-mail and/or any files or
> attachments transmitted with it is strictly forbidden. If you have received
> this email in error, please delete the e-mail and/or any files or
> attachments, and also notify the system manager (
> PostMaster at mercuryinsurance.com) of the error. Please note that any views
> or opinions presented in this email are solely those of the author and do
> not necessarily represent those of the company. Finally, the recipient
> should check this email and any attachments for the presence of !
> viruses. The company accepts no liability for any damage caused by any
> virus transmitted by this email and/or any files or attachments transmitted
> with it.
>
>
>
> _______________________________________________
> rules-users mailing list
> rules-users at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/rules-users
>
--
Steven Williams
Supervising Consultant
Object Consulting
Office: 8615 4500 Mob: 0439 898 668 Fax: 8615 4501
steven.williams at objectconsulting.com.au
www.objectconsulting.com.au
consulting | development | training | support
our experience makes the difference
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/rules-users/attachments/20080515/c5a02e1d/attachment.html
More information about the rules-users
mailing list