While I tried to open oracle form (The Oracle Forms Server is on a remote machine) I got an error message: SecurityException.
After a short research, I found that the JAR file manifest contains information about the contents of the JAR file, including security and configuration information and we have to add attributes to the manifest before the JAR file is signed. The Permissions attribute is used to verify that the permissions level requested by the RIA when it runs matches the permissions level that was set when the JAR file was created. We use this attribute to help prevent someone from re-deploying an application that is signed with your certificate and running it at a different privilege level. So we have to set this attribute to one of the following values:
- sandbox – runs in the security sandbox and does not require additional permissions.
- all-permissions – requires access to the user’s system resources.
The following changes to Security Slider were included in this release(7u51):
- Block Self-Signed and Unsigned applets on High Security Setting
- Require Permissions Attribute for High Security Setting
- Warn users of missing Permissions Attributes for Medium Security Setting
For more information, you can see Java Control Panel documentation.
This comment from stackoverflow get me to read more about blocked applications by security settings with the latest Java (Java 7 Update 51). So I finally reach the conclusion that Java has further enhanced security to make the user system less vulnerable to external exploits. Starting with Java 7 Update 51, Java does not allow users to run applications that are not signed (unsigned), self-signed (not signed by trusted authority) or that are missing permission attributes. Decision for me was to follow steps to Add URLs to the Exception Site list:
- Go to the Java Control Panel (On Windows Click Start and then Configure Java)
- Click on the Security tab
- Click on the Edit Site List button
- Click Add in the Exception Site List window
- Click in the empty field under the Location field to enter the URL
For more information, you can check this link here:
