We have an applet that also uses javascript to communicate with applets.
After java was updated to 7u45, in accordance with this link, we made changes to the assembly of jars using the manifest, for example:
- Permissions added: all-permissions for the manifest of all JARs
- Added Application-Library-Allowable-Codebase: * for the manifest of all JARs
- Added Caller-Allowable-Codebase: * for the manifest of all JARs
- Added Codebase: * for the manifest of all JARs
We also disabled the -Djnlp.packEnabled parameter.
With these changes, our application works correctly only if the available version of java is updated to JRE7u45.
- But, trying to run the same application with Java 7 update25 or update40, we get the error "
LiveConnect (JavaScript) blocked due to security settings ". But instead of including the above parameters in the manifest, if we just include the Trusted-Library and set it to true. We can start the application, but with warnings. The same approach cannot be used for the JRE7u45, where we again receive security warnings.
In one of the posts I saw an approach to building two cans (one with approach 1, and the other with approach 2) and based on the java version for deploying the corresponding can.
But this solution may not be so effective, because our application contains more than 5 jar files and supports two copies of each of them tiring.
Your suggestions would be useful for us to know the approach in which our application will be launched with all versions of java.
java security manifest signed-applet
user2931369
source share