Weird about signed applets ...

P

PMA

Hi there,

I have a very weird behavior of a signed applet :

1) I have made an applet that accesses the local file systems
2) I put all that code into a specific method (say blah())
3) I have designed a very poor ;-) interface using AWT to test it, the
interface just calling the blah() method
4) I have signed that stuff
5) I have tested it : everything is OK !

6) I changed my HTML page such as the method blah() is called directly
thru' Javascript then I got the marvellous :
access denied (java.io.FilePermission D:\XXXXXX\YYYYYY.ZZZ read)

I am using JDK 1.5_05

Any clue will help ... I really do not want to design an AWT or SWING
interface to that stuff, my applet is purelly a technical stuff ...

Thanx by advance
Philippe
 
J

Jeroen V.

This is for security reasons: the origin of the JavaScript can't be
verified. So allowing applet methods to be called from within Javascript
can be abused by malicious javascript.

If a user confirms the safeness of a signed applet by accepting its
certificate, the user only indicates his trust in the developer of the
applet, not in anything that may use the applet (except for himself,
when interacting with the applet via its GUI).

Jeroen
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Connecting to JMatlink with Applets / JWS 9
Signed applet problem with plugin 1.4.2 0
Security Exception in simple (no file accessing) Applets? 0
I have problem about applet deployment with jar files. 1
FilePermission in an Applet 2
reading image files from applet -- newbie question 4
comp.lang.java.gui FAQ 0
comp.lang.java.gui FAQ 0

Members online

No members online now.
Total: 255 (members: 0, guests: 255)
Robots: 227

Forum statistics

Threads
474,432
Messages
2,571,680
Members
48,796
Latest member
Greg L.

Latest Threads

Top