如何解决java.security.AccessControlException

时间:2016-05-27 12:28:37

标签: java jsoup rmi

我需要有关java.security.AccessControlException的建议,我在执行以下代码时得到了。 (我在这里咨询过类似的问题,但没有成功使其发挥作用)

这是我的服务器代码:

 public class GetPageInfos extends UnicastRemoteObject  implements RemoteGetInfo{

    private static final String url="http://www.lemonde.fr/";
public class GetPageInfos extends UnicastRemoteObject  implements RemoteGetInfo{
    private static final String url="http://www.lemonde.fr/";

    public GetPageInfos() throws RemoteException{           
    }

    public String getSiteInfos() throws RemoteException {
         Document doc;
            try {                   
                 doc = Jsoup.connect(url).get();
                 String title = doc.title();  
                 return "title is "+title;                                       
            } catch (IOException e) {
                System.out.println("Faild! "+e.getMessage());
                return "not found";
            }  

    }

    public static void main(String[] args){
         try {

            GetPageInfos infos= new GetPageInfos();
            //System.setProperty("java.rmi.server.hostname","5lq04x1.gemalto.com");
            Naming.rebind("RemoteGetInfo", infos);
             /*GetPageInfos obj=new GetPageInfos(); 
             RemoteGetInfo stub = (RemoteGetInfo) UnicastRemoteObject.exportObject(obj, 0);
             Registry registry = LocateRegistry.getRegistry();
             registry.bind("RemoteGetInfo", stub);
             */
             System.out.println("server ready");

        } catch (RemoteException e) {
              System.out.println("GetPageInfos "+e.getMessage());
        }
        catch (MalformedURLException e) {
            // TODO Auto-generated catch block
            e.printStackTrace();
        }   
    }
}

这是我的客户代码:

//RMI Client
public class PrintSiteInfos {

    public static void main(String arg[]) 
    { 

        System.setSecurityManager(new RMISecurityManager());

             try 
                { 

                   /*String host=null;
                   Registry registry = LocateRegistry.getRegistry(host);
                   RemoteGetInfo stub = (RemoteGetInfo) registry.lookup("RemoteGetInfo");
                   String response = stub.getSiteInfos();
                   System.out.println(response); */
                 RemoteGetInfo obj = (RemoteGetInfo) Naming.lookup( "RemoteGetInfo");        
                 System.out.println(obj.getSiteInfos()); 
                } 
                catch (Exception e) 
                { 
                   System.out.println("PrintSiteInfos exception: " + e.getMessage()); 
                   e.printStackTrace(); 
                }  
    }   
}

所以我得到了

exception: access denied ("java.net.SocketPermission" "127.0.0.1:1099" "connect,resolve")

我发现我必须传递一个我喜欢的政策文件:

grant { 
  permission java.security.AllPermission;};
但是怎么样?还有其他建议吗?

2 个答案:

答案 0 :(得分:2)

您可以仅授予套接字权限而不授予所有权限(这可能存在安全风险)。因此像:

grant {
    permission java.net.SocketPermission "127.0.0.1:1099", "connect, resolve";
};

两种方法:

1)作为命令行的参数

java -Djava.security.policy=mypolicyfile PrintSiteInfo

2)在JRE环境中:

在JRE_HOME / lib / security / java.policy文件中添加权限

答案 1 :(得分:1)

摆脱安全管理员。除非您使用RMI代码库功能,否则不需要它。

相关问题
最新问题