Tomcat application gets java.security exception due to some permission error.

Article ID: 919 
Last Review: Oct,6 2008
Author:
Last updated by: system APPLIES TO:
  • Parallels Plesk for Linux/Unix

Resolution

Such problem usually occurs if an application tries to access some resources but it has no rights to access them due to Tomcat security settings which can be managed through $CATALINA_HOME/catalina.policy. The errors can be realated to MySQL dstsbsde connection or some file accessing. Let see typical permission errors.

1. An application cannot connect to MySQL database. The error received: "Unable to connect to any hosts due to exception: java.security.AccessControlException: access denied (java.net.SocketPermission localhost resolve)"

To allow DOMAIN.TLD/APPLICATION/ WebApp TCP/IP connections add the section into catalina.policy:
 
grant codeBase "file:/var/cache/tomcat4/work/PSA/DOMAIN.TLD/APPLICATION/-" {
permission java.net.SocketPermission "IP_ADDRESS", "resolve, connect";
};




Restart Tomcat service after catalina.policy modification.

See for more information: http://jakarta.apache.org/tomcat/tomcat-4.1-doc/security-manager-howto.html


Note: for Debian the lines must be added into /etc/tomcat4/policy.d/04webapps.policy.
Note: Tomcat 5 has similar settings, see http://tomcat.apache.org/tomcat-5.0-doc/security-manager-howto.html


Subscription for this article changesSubscription for this article changes

Please provide feedback on this article

Did this article help you solve your issue?
Yes
No
Partially
I do not know yet
 
Strongly Agree   Strongly Disagree
  9 8 7 6 5 4 3 2 1
The article is easy to understand
The article is accurate
Additional Comments:
*Please provide us with your email address in case we need to contact you.
* - required fields