Home | Contact Us | FAQ | Search & Site Map | Link to Us
Sign In | Join | Other 45 Sites in Network
HomeAnnouncementsWhite Papers
Discussion GroupsFirst AidDatabasesJavaBeansGUIJava 3DVirtual MachineCORBASecurityToolsGeneral
Java DirectoryOpen Source ProjectsSample Book ChaptersUser GroupsWeb Resources
Related Topics
Databases.NETMore Topics ...
Java Forum / Security / October 2003

Tip: Looking for answers? Try searching our database.

Sun JVM Applet prompts for Authentication

Thread view: 
Enable EMail AlertsStart New Thread
Greg Province - 31 Oct 2003 00:26 GMT
I have a java applet on our intranet which queries the database for
data via a ASP webpage using openStream() of URL class.  This has
worked fine for me with the MSJVM in IE and with the JVM in older
versions of Netscape.  Since Microsoft is soon to dump MSJVM from IE,
I must switch to Sun's JVM.  The problem is that when using the Sun
JVM it seems that an extra authentication is required when the
connection back to the webserver is made from the applet.  I get a
login dialog at this time which I never got before with the older
JVMs.  Is there a way to hardcode these login parms in the applet
instead of bothering the user with them?  I have tried making the IIS
web anonymous, but it doesn't seem to matter - I still get prompted.
What can I do?  The login would be an annoyance for users.
Reply to this Message
David Stevenson - 31 Oct 2003 02:04 GMT
> I have a java applet on our intranet which queries the database for
> data via a ASP webpage using openStream() of URL class.  This has
[quoted text clipped - 8 lines]
> web anonymous, but it doesn't seem to matter - I still get prompted.
> What can I do?  The login would be an annoyance for users.

Some thoughts:

I have seen a login dialog popup occur when digest authentication is
turned on.
Is digest authentication mode turned on the web server?

I am also wondering if the applet needs to pass back the session id as
a cookie. The web server may see the openStream () request as being
a different session.

David Stevenson
Reply to this Message
Greg Province - 31 Oct 2003 18:58 GMT
> Some thoughts:
>
> I have seen a login dialog popup occur when digest authentication is
> turned on.
> Is digest authentication mode turned on the web server?

The digest authentication is off.  

> I am also wondering if the applet needs to pass back the session id as
> a cookie. The web server may see the openStream () request as being
> a different session.

It does seem like the applet is having to create a new session.  

But I'm unclear what you mean by "needs to pass back the session id as
a cookie"...  Don't you mean that the applet could be passed in a
session id from the webpage so that it could re-use that session?
Reply to this Message


Free Magazines

Get these publications absolutely FREE for up to 12 months. There are no hidden fees and no obligation. Simply choose a title, complete the application form and submit it. Read more ...

Oracle MagazineNetwork ComputingComputer WorldBio-IT WorldeWeekInformation WeekInfosecurity
 
Sign In
Join
My Latest Posts
My Monitored Threads
My Blog
My Photo Gallery
My Profile
My Homepage
Start New Thread
Enable EMail Alerts
Rate this Thread



©2008 Advenet LLC   Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.