Hi Folks,

I've built a java webstart application and embedded tomcat to it. Now I'm experiencing a weird problem about security. Tomcat starts fine, but when web application try to get some system property, an AccessCont********************ception is thrown:

java.security.AccessCont********************ceptio n: access denied (java.util.PropertyPermission user.name read)

I just need to know WHERE to set permissions for my web application (or maybe tomcat).

Is it better to create a catalina.policy file. Where to set it? As a system property like:

System.setProperty("java.security.manager", "");
System.setProperty("java.security.policy", "$CATALINA_BASE/conf/catalina.policy");

Or define policies programatically? I have no idea how to do it programatically...

Any ideas? I believe this is not a big deal.

Regards,

Allan