The MindFusion Forums - Deploying java appletr application as SSL site

(UTC)

The MindFusion Forums › Flow Diagramming Components › ASP.NET › Deploying java appletr application as SSL site

(Moderator: Slavcho)

‹ Previous Topic | Next Topic ›

Pages: 1

Deploying java appletr application as SSL site (Read 4956 times)

jcollins@scires Junior Member Offline I love YaBB 1G - SP1! Posts: 53 Joined: Feb 17^th, 2009	Deploying java appletr application as SSL site Sep 3^rd, 2009 at 3:15pm	Print Post
	Hello, I have recently deployed my application that uses the java applet mode as an SSL site. When I first hit the site I get prompted for my cert. I select my cert an everything works okay for a while. But then intermittently I keep getting prompted to give my cert. again. This happens intermittently and at various times. I have my cert listed as a trusted cert in the java control panel. I also have the site listed as a secure site in the java control panel. How can avoid having to choose my certificate over and over again? It seems to be java related as other sites that do not use a java applet that are deployed as SSL seem to be working fine on the same server. Thanks. jay


	IP Logged

Stoyo God Member Offline MindFusion support Posts: 13230 Joined: Jul 20^th, 2005	Re: Deploying java appletr application as SSL site Reply #1 - Sep 3^rd, 2009 at 5:55pm	Print Post
	The applet shouldn't need to connect to the server once it has been loaded. Could you enable IIS logging and see if there are any GET request coming for .class files by some chance?


	IP Logged

jcollins@scires Junior Member Offline I love YaBB 1G - SP1! Posts: 53 Joined: Feb 17^th, 2009	Re: Deploying java appletr application as SSL site Reply #2 - Sep 3^rd, 2009 at 7:05pm	Print Post
	I checked the logs and there is no GET on .class files. I think it might have something to do with this: http://bugs.sun.com/bugdatabase/view_bug.do?bug_id=6186280 Read all the way down to where people are making comments. I have more than one cert and am also using a smart card. There seem to be problems if you have more than one cert. If only one cert is installed, everything works fine and you are only prompted once for your cert. Is there a workaround you can provide within the java applet itself? I seem to have recalled seeing workarounds for this online but you have to do it within the java which of course I do not have access to. Any help would be greatly appreciated. Thanks. jay


	IP Logged

Stoyo God Member Offline MindFusion support Posts: 13230 Joined: Jul 20^th, 2005	Re: Deploying java appletr application as SSL site Reply #3 - Sep 3^rd, 2009 at 7:31pm	Print Post
	We'll research this. One thing that might open an additional http connection is the ShapeLibraryLocation property - are you using it? If yes, you might try setting the URL to an unprotected location on your site and load shl files via http rather than https. Stoyan


	IP Logged

jcollins@scires Junior Member Offline I love YaBB 1G - SP1! Posts: 53 Joined: Feb 17^th, 2009	Re: Deploying java appletr application as SSL site Reply #4 - Sep 3^rd, 2009 at 7:38pm	Print Post
	Hey Stoyan. Nope, I am not using the ShapeLibraryLocation property. Thanks for looking into this. jay


	IP Logged

jcollins@scires Junior Member Offline I love YaBB 1G - SP1! Posts: 53 Joined: Feb 17^th, 2009	Re: Deploying java appletr application as SSL site Reply #5 - Oct 1^st, 2009 at 7:36pm	Print Post
	Hey Stoyan, I think I might have a workaround for this problem given one thing: Do you have a static url that I can use to point to the jarlocation that exists on your site? I could not find a direct url to just the .jar file. Theortically, I could set up a non-SSL site on my server and expose just the jarfile as non-SSL. Unfortunately, the security requirements for the DOD prevent us from creating non-SSL sites on the servers. Thus, if you could give me a a direct url to download just the Jdiagram.jar file, I could work around that security limitation. Let me know what you think. Thanks. jay


	IP Logged

Stoyo God Member Offline MindFusion support Posts: 13230 Joined: Jul 20^th, 2005	Re: Deploying java appletr application as SSL site Reply #6 - Oct 2^nd, 2009 at 10:23am	Print Post
	Hi Jay, I'm afraid we can't host this file for end-users that might eventually need it through our customers applications. This might generate heavy traffic and then we must guarantee some % server uptime, which is not exactly our business 8) If just for the test, I could upload the file temporarily and send you a link. Stoyan


	IP Logged

jcollins@scires Junior Member Offline I love YaBB 1G - SP1! Posts: 53 Joined: Feb 17^th, 2009	Re: Deploying java appletr application as SSL site Reply #7 - Oct 2^nd, 2009 at 2:32pm	Print Post
	Well, I tried hosting the .jar file on a different machine(nonSSL) and it still does not work. I still get multiple cert. prompts. So my theory was incorrect anyways. Is there not a way for you guys to cache the cert being used inside the applet and resend the same one back on every request? jay


	IP Logged

Stoyo God Member Offline MindFusion support Posts: 13230 Joined: Jul 20^th, 2005	Re: Deploying java appletr application as SSL site Reply #8 - Oct 5^th, 2009 at 8:34am	Print Post
	From what we can find in the applet code, there are only two places where it opens an HttpURLConnection of its own. One is to load a shape library from ShapeLibraryLocation, the other one is to load the image specified via BackgroundImageUrl. There are also the public loadImage and requestImage functions in the applet class that might be called from JavaScript. If you are not using any of these properties or methods, then it is the Java plugin that creates the connections for some reason, and we can't do anything about this. If you email us an IIS log showing the GET requests from the time you get certificate prompts, we could check if there are some additional connections made by the applet we don't know about.


	IP Logged

Pages: 1

‹ Previous Topic | Next Topic ›