JDK-8026015 : RFE: be able to set insecure properties in a jnlp file with a location based DRS run rule
  • Type: Enhancement
  • Component: deploy
  • Sub-Component: plugin
  • Affected Version: 7u45
  • Priority: P4
  • Status: Resolved
  • Resolution: Duplicate
  • OS: generic
  • CPU: generic
  • Submitted: 2013-10-07
  • Updated: 2014-08-07
  • Resolved: 2014-08-07
Related Reports
Relates :  
JDK-8026002 - Certificate based DRS rule does not work when main jar is in nested resource block or extension
Description
a possible misunderstanding is the use of DRS to circumvent the new requirement that all properties listed in a jnlp file shall only be honored if they are secure properties, or the jnlp file is signed. 

The app uses several insecure properties in the jnlp file, and the security fix in 7u45 is blocking them from being set.

Should consider an enhancement to set insecure properties that come from a jnlp file for which there is a location based DRS run rule, however the certificate of the signed jars cannot help this if the jnlp file itself is unsigned.
Comments
This was implemented as JDK-8028390
07-08-2014