Message-Id: <199904200732.QAA08641@usst.edu.cn>
Date: Tue, 20 Apr 1999 15:31:11 +0800
From: Shi Yongmei <sym@sun.usst.edu.cn>
To: "java-security@java.sun.com" <java-security@java.sun.com>
Subject: A question!
Dear author:
I am a Chinese student. I want to use the signed applet to do some work. After visiting your company's homepage, I follow the
steps to run the your jdk1.2 signed applet example successfully. But when I try to put the same applet on my own server, it do
esn't work.
Server I use is WINNT. Web Server is IIS.
Client is Windows 95.
Browser is Netscape 4.05
My steps as follows:
server:
step 1:
keytool -genkey -alias sym -dname "cn=sym, ou=net manager, o=usst, c=cn"
step 2:
jar cfv signedWriteFile.jar writeFile.class writeFile.html
step 3:
jarsigner -verbose signedWriteFile.jar sym
step 4:
keytool -export -alias sym -file sym.x509 -rfc
client:
step 1:
keytool -import -alias sym -file sym.x509
step 2:
policytool
content of .java.policy :
keystore ".keystore";
grant signedBy "sym", codeBase "http://202.120.223.12/sym/signedWriteFile.jar" {
permission java.io.FilePermission "C:${/}writetest", "write";
};
I put the .java.policy and .keystore on the directory C:\Windows.
I don't know why the signed applet still can't access the client resources. Perhaps something wrong with my
operation, but I can't find it. Do we need do some configuration on Server?
Please give me some advices. Thank you!
Sincerely
Shi Yongmei
99/04/20