Progress
Open Client
Developer’s Guide


Asking For Permission In Netscape Version 6

Asking for permissions in Netscape version 6 or when using a Java plug-in in your Microsoft Internet Explorer requires that you change the Java 2 security policy. The Java 2 security policy file is located in the JRE’s lib\security subdirectory. It might be combined with a per user policy file located in the user’s home directory.

The JRE’s file is named java.policy and the version in a user’s home directory is named .java.policy. Changing the JRE policy file grants permissions to every user on the system, while changing the policy file in the user’s home directory affects only that user. Progress Software recommends changing the user’s home directory on individual machines. For more information about Java 2 security policy files, refer to the Java 2 Security guides.

The Open Client applet requires additional network connection privileges to support HTTP and HTTPS. The Java permission is named java.net.SocketPermission, and it takes these arguments:

The following shows the full entry:

permission java.net.SocketPermission host:80, connect,resolve 

When using HTTPS in your Open Client applet, you might also need an additional Java permission to read the Root Digital Certificate files in order to validate the identity of the Web server for the AIA. If this is the case, you must add file read permissions that provide full read ability. The following shows the entry:

permission java.io.FilePermission *, read; 

The Java permissions should be placed in the Java 2 policy file Grant blocks. One permission grants access to only your Open Client applet code and the other permission grants access to only the Open Client Runtime.

The following shows some sample code for these permission grants:

grant codebase http://applicationhost.acme.com/aia/jars-{ 
permission java.net.SocketPermission 
https://aia.acme.com/aia/Aia1:443,connet,resolve; 
permission java.io.FilePermission *,read; 
}; 
grant codebase http://applicationhost.acme.com/aia/applets/-{ 
permission java.net.SocketPermission *, read; 
}; 

In this sample:


Copyright © 2004 Progress Software Corporation
www.progress.com
Voice: (781) 280-4000
Fax: (781) 280-4095