From: Charlie.Lai@Eng (Charlie Lai)
Message-Id: <199801100050.QAA01441@angeles.eng.sun.com>
Subject: Re: signed applet writes but can't access system EventQueue
To: YFHSU@us.oracle.com (Yen-Fen Hsu)
Date: Fri, 9 Jan 1998 16:50:35 -0800 (PST)
In-Reply-To: <199801100038.QAA19411@mailseq4.us.oracle.com> from "Yen-Fen Hsu" at Jan 9, 98 04:36:50 pm
hi,
> Thanks for the answer. Do you know if appletviewer will be allowed to access
> EventQueue in future releases?
thanks for bringing this up.
in JDK1.2 (in beta now), we have a new permissions-based
security architecture. in JDK1.2, applets loaded by appletviewer
will be able to access the EventQueue if the security policy is
configured to allow such access.
for more info on the JDK1.2 security architecture:
http://java.sun.com/products/jdk/1.2/docs/guide/security/index.html
thanks,
charlie
> Date: 09 Jan 98 16:21:22
> From:"Charlie.Lai@Eng.Sun.COM (Charlie Lai)" <Charlie.Lai@Eng.Sun.COM>
> To:YFHSU@us.oracle.com,(Yen-Fen,Hsu)
> Subject:Re: signed applet writes but can't access system EventQueue
> Cc:java-security@web2.javasoft.com
> In-Reply-To:<199801080358.TAA26814@mailtst1> from "Yen-Fen Hsu" at Jan 7, 98 07:56:46 pm
> X-Mailer:ELM [version 2.4 PL21]
> Content-Type:text
> MIME-Version: 1.0
> Content-Transfer-Encoding:7bit
> Content-Type:text/plain; charset="us-ascii"
>
> hi,
>
> > My applet has 2 features that require signing: write to local disk and
> > access EventQueue (spplet.getToolkit().getSystemEventQueue()).
> > I use jar and javakey to sign the applet.
> > When I run it in the applet viewer, it wrote successfully
> > but generated a AppletSecurityException: checkawteventqueueaccess for
> > EventQueue access.
>
> unfortunately, the applet security manager used by appletviewer
> never allows an applet to access the EventQueue, even if the
> applet is signed.
>
> this is the appletviewer's security policy.
>
> is there a way to redesign your applet so it does not rely on the
> system event queue?
>
> thanks,
> charlie