United StatesChange Country, Oracle Worldwide Web Sites Communities I am a... I want to...
Bug ID: 4775373 problem checking for updates on https codebase
4775373 : problem checking for updates on https codebase

Details
Type:
Bug
Submit Date:
2002-11-07
Status:
Resolved
Updated Date:
2002-11-19
Project Name:
JDK
Resolved Date:
2002-11-19
Component:
deploy
OS:
windows_nt
Sub-Component:
webstart
CPU:
x86
Priority:
P3
Resolution:
Fixed
Affected Versions:
1.2.0
Fixed Versions:
1.4.2

Related Reports

Sub Tasks

Description
Checking for updates for caches applications whos codebase uses https protocol,
causes https security dialog.
This causes problems in two places.
(this all assumes you run an app once, and accept the https certificate, 
but only for this time.)
1.) when  selecting an app from the Icon list, and update check is done to 
    fix the "update available" icon.  This is confusing to the user to have
    security dialog pop up at this time, we should just not update the icon 
   for https codebases.
2.) when launching a cached app from appman or a shortcut, security dialog will
    pop up from within the rapidUpdateCheck thread, and app will launch before
    the dialog is answered.
    Instead we should not launch the app till the security dialog is answered,
    and then only if user allows https connection.

Comments
SUGGESTED FIX

http://javaweb.sfbay/~ngthomas/webrevs/4775373/webrev/
2004-08-31 
CONVERTED DATA

BugTraq+ Release Management Values

COMMIT TO FIX:
mantis

FIXED IN:
mantis

INTEGRATED IN:
mantis
mantis-b08
2004-08-31 
EVALUATION

fixed in mantis


Our current fix is not complete yet - if the jnlp file contains a icon, the https dialog will still pop up due to the update checker in CacheImageLoader.

testcase:  https://sqe-jpi-01.sfbay.sun.com:8443/javawstest/yuwang/https_bat.jnlp

we should not check for the updates in this case too.

###@###.### 2002-12-02
2002-12-02


Hardware and Software, Engineered to Work Together