NonStop Servlets for JavaServer Pages (5.0) System Administrator's Guide

Configuring NSJSP

NonStop Servlets for JavaServer Pages (NSJSP) System Administrator’s Guide—525644-002

3-26

Enhanced Security Manager

See the Java Debugging Support online documentation for more options that you can

specify for the java.security.debug property. This documentation is located at

http://java.sun.com/j2se/1.4.2/docs/guide/plugin/developer_guide/debugger.html.

Enhanced Security Manager

NSJSP allows you to configure which NSJSP internal packages are protected against

package definition and access. This configuration prevents a non-trusted application

from accessing sensitive NSJSP internal packages. For more information about the

security manager, see the documentation at http://jakarta.apache.org/tomcat/tomcat-

5.0-doc/security-manager-howto.html.

The default security property file nsjsp.properties used is located in the

nsjsp_bootstrap.jar file and can be overridden by creating a file named

$NSJSP_HOME/conf/nsjsp.properties.

A sample file is located at $NSJSP_HOME/conf/nsjsp.properties.sample and

its contents are the exact same as the default security property file

nsjsp.properties (in the nsjsp_bootstrap.jar file).

Example 3-17. Troubleshooting the NSJSP Security Manager

Arglist -Xbootclasspath/a:$env(JAVA_HOME)/lib/tools.jar -Xnoclassgc \

-Xmx64m -Xss128k -Dbrowserdebug=false \

-Djdbc.drivers=com.tandem.sqlmp.SQLMPDriver \

$NSJSP_SECMGR $NSJSP_SECMGR_POLICY $NSJSP_JAAS_CONFIG \

-Djava.security.debug=all \

-DEnableJMXProxyServlet=false \

-Djava.endorsed.dirs=$env(NSJSP_ENDORSED_DIRS) \

-Dcatalina.home=$env(NSJSP_HOME) \

-Djava.io.tmpdir=$env(NSJSP_HOME)/temp \

com.tandem.servlet.NSJSPBootstrap -config $nsjsp_config_file

start

Caution. The code in Example 3-17

generates many megabytes of output; however, you can

use this output to find problems: search for the word "FAILED" and determine which

permission was being checked for.