I’m writing a web service that will run on a Domino server to connect to IBM Filenet. When I try to make the connection, I’m getting the following error.
HTTP JVM: java.security.AccessControlException: Access denied (javax.security.auth.AuthPermission setLoginConfiguration)
12/15/2010 02:52:07 PM HTTP JVM: at java.security.AccessControlException.(AccessControlException.java:62)
12/15/2010 02:52:07 PM HTTP JVM: at java.security.AccessController.checkPermission(AccessController.java:68)
12/15/2010 02:52:07 PM HTTP JVM: at java.lang.SecurityManager.checkPermission(SecurityManager.java:532)
12/15/2010 02:52:07 PM HTTP JVM: at javax.security.auth.login.Configuration.setConfiguration(Configuration.java:308)
12/15/2010 02:52:07 PM HTTP JVM: at com.filenet.apiimpl.util.JaasConfiguration.setConfiguration(JaasConfiguration.java:175)
12/15/2010 02:52:07 PM HTTP JVM: at com.filenet.apiimpl.core.UserPasswordToken.getSubject(UserPasswordToken.java:102)
12/15/2010 02:52:07 PM HTTP JVM: at com.filenet.api.util.UserContext.createSubject(UserContext.java:240)
12/15/2010 02:52:07 PM HTTP JVM: at CEInterface4_5.loginToFilenet(Unknown Source)
Below is the code.
private void loginToFilenet() throws Exception {
System.out.println("loginToFilenet");
String username = "userid";
String password = "password";
// Get the connection
System.out.println("Getting connection");
conn = Factory.Connection.getConnection(CE_CONNECTION_STRING);
// Get the user context
System.out.println("Getting context");
UserContext uc = UserContext.get();
// Build the subject using the FileNetP8WSI stanza
// Use the FileNetP8WSI stanza for CEWS
System.out.println("pushing subject");
uc.pushSubject(
UserContext.createSubject(conn,username,password,"FileNetP8WSI" )
);
}
It is failing on the uc.pushSubject line. The web service is set up with a runtime security level of Allow restricted operations with full admin rights and it is signed with an admin id.
I’ve been told from a Filenet forum that the server that is running the web service must have the j2ee security set and I need to change it, but I don’t see anything in the server doc.
Thanks,
Chris