Friday, February 7, 2014

Java’s escape hatch: Getting legacy applets to work again.

Oracle is putting the screws to Java browser applets and those screws are getting tighter on each release. That’s the good news. The bad news is that legacy Java applets probably aren’t up to snuff and won’t be updated anytime soon. Java 7u51 provided an escape hatch to make exceptions for URLs to Java applets that can be trusted. Individual users can make exceptions directly through the Java settings in the Control Panel. Large organizations would be better off implementing this through Deployment Rule Sets.

GUI Method

  1. Open the Configure Java window by clicking the Start button, clicking All Programs, clicking Java, and then clicking Configure Java.
  2. Choose the Security tab.
  3. Click the “Edit Site List…” button near the bottom.
  4. A new window will open.

    Edit Site List (empty)

  5. Click the Add button.

  6. Edit Site List (populated)

    Right: https://www.example.com/someApplication/
    Wrong: https://www.example.com/someApplication/filename.html

  7. Click OK. The window will close.
  8. Back on the control panel, click OK to close it.
  9. Reload the web page on your browser.

Alternative Method


This method can be added to a batch file and be automated.
  1. Open the Command Prompt window by clicking the Start button, clicking All Programs, clicking Accessories, and then clicking Command Prompt.
  2. Copy and paste the following command into the Command Prompt window:
    echo https://www.example.com/someApplication/>
        %APPDATA%\..\LocalLow\Sun\Java\Deployment\security\exception.sites
  3. Press Enter. If no errors occurred, close the Command Prompt window.
  4. Reload the web page on your browser.
Note the lack of a space before the “>” character. If additional entries are desired, use “>>” to append them, otherwise the exceptions.sites list will be overwritten.

No comments:

Post a Comment