Bug ID: JDK-6555282 signed applet pops up security warning with 5.0 even when policy is enforced

JDK-6555282 : signed applet pops up security warning with 5.0 even when policy is enforced

Type: Bug
Component: deploy
Sub-Component: plugin
Affected Version: 5.0u11

Priority: P3
Status: Closed
Resolution: Duplicate
OS: windows_xp
CPU: x86

Submitted: 2007-05-09
Updated: 2011-02-16
Resolved: 2009-06-12

Versions (Unresolved/Resolved/Fixed)

The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.

Other
5.0-poolResolved

Related Reports

Duplicate :

JDK-6280762 - Do not show HTTPS security dialog if certificate is valid and verified.

Description

According to 

http://java.sun.com/j2se/1.5.0/docs/guide/plugin/developer_guide/rsa_how.html#use

If the usePolicy permission is granted to the codesource by the configured security policy, no user prompting will take place; only the permissions specified in the security policy will be granted to the codesource.

This works with 6.0. It does not with 5.0. Instead one gets a security warning saying that
the certificate of the website was verified and if one wishes to continue.

Comments

EVALUATION This issue has been fixed in Mustang only, see bug #6280762 for detail. Reassgin to CTE group to see if it need to be backport to JDK 5 update release.

15-05-2007