My Oracle Support Banner

OPSS11g WebLogic/OIM11gR2/EBS Transformers: Accessing the Secret Key from Weblogic Credential Store Framework Fails with: [JpsAuth] Check Permission (Doc ID 1682874.1)

Last updated on FEBRUARY 03, 2019

Applies to:

Oracle Platform Security for Java - Version and later
Information in this document applies to any platform.


OPSS Java Platform Security / WebLogic / OIM11gr2:EBS Transformers.

Trying to access the password from Weblogic Credential Store Framework by following the documentation.

The jar path (which resides in ThirdParty directory) has been added to the System Policies and required changes were made to the system-jazn-data.xml.

But still unable to access the key; getting the following error while accessing the key:

[JpsAuth] Check Permission
  PolicyContext: [null]
  Resource/Target: [context=SYSTEM,mapName=SecureTransformer,keyName=secureKey]
  Action: [read]
  Permission Class: []
  Result: [FAILED]
  Evaluator: [ACC]
  Failed ProtectionDomain:ClassLoader=com.thortech.xl.dataobj.tcADPClassLoader@11a4f47b
  Principals=total 0 of principals
  ( localhost:1024- listen,resolve)
  ( stripeName=system,keystoreName=trust,alias=* read)
  (java.util.PropertyPermission line.separator read)
  (java.util.PropertyPermission java.vm.specification.version read)
  (java.util.PropertyPermission java.vm.version read)
  (java.util.PropertyPermission java.vendor.url read)
  (java.util.PropertyPermission java.vm.specification.vendor read)
  (java.util.PropertyPermission read)
  (java.util.PropertyPermission read)
  (java.util.PropertyPermission java.vm.vendor read)
  (java.util.PropertyPermission path.separator read)
  (java.util.PropertyPermission os.version read)
  (java.util.PropertyPermission read)
  (java.util.PropertyPermission os.arch read)
  (java.util.PropertyPermission java.version read)
  (java.util.PropertyPermission java.class.version read)
  (java.util.PropertyPermission java.vendor read)
  (java.util.PropertyPermission file.separator read)
  (java.util.PropertyPermission read)
  (java.util.PropertyPermission java.specification.version read)
  (java.util.PropertyPermission java.specification.vendor read)
  (java.lang.RuntimePermission stopThread)
  Call Stack: access denied ( context=SYSTEM,mapName=SecureSSNTransformer,keyName=ssnKey read)$AuthorizationMechanism$3.checkPermission($Diagnostic.checkPermission($AuthorizationMechanism$6.checkPermission(

Reviewed Note:  Troubleshooting access denied due to Exception when Running Credential Store API Code <Document 1327577.1>
However, in this case there are two scenarios:
1. The jar file is in the Database
2. The jar file is in a directory (not war or war file)
The above Note above is expecting the jar file to be in a war file, which is not the case.


To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.