Applet Security

[Drain]

I'm having a little trouble with a client applet I'm making.

Code:

java.security.AccessControlException: access denied (java.net.SocketPermission [targetIp:port] connect,resolve)

I know that you have to sign the jar or mess with your policy file or something, but I haven't been able to figure it out. I want it to be as easy as possible on the end user (ie, click OK and accept the certificate).

I know I've seen IRC clients and such that don't require you to click anything, what's the deal with that? How are they doing it?

[awoodland]

Off the top of my head the default security model prevents applets from making any connections any server other than the one they were served from.

Alan

[Drain]

Yeah, I figure out how it worked a while ago.

[aaa]

I think the irc applets use a proxy. They're downloaded from it, can communicate with it, and use it to connect to other machines.

[cjard]

Originally posted by aaa
I think the irc applets use a proxy. They're downloaded from it, can communicate with it, and use it to connect to other machines.

clarification: the webserver they were downlaoded from runs a proxy that redirects the connection another machine. the applet is allowed to connect to the proxy, the proxy conencts to the irc server, the applet is none the wiser and thinks it has connected to an irc server

to be honest, applets are too retaarded for what youre trying to do with them. write a proper app and make it available using Java Web Start - all the benefits of an applet, with the power of a proper application (i.e. not retarded)