SA-5279

Summary

Developers are not able to run any Connect-Rest rules successfully.
Upon running on any Connect-Rest the below error is being thrown.
access denied ("java.net.NetPermission" "getProxySelector").

Error Messages

Caused by: java.security.AccessControlException: access denied ("java.net.NetPermission" "getProxySelector")
    at java.security.AccessControlContext.checkPermission(AccessControlContext.java:372)
    at java.security.AccessController.checkPermission(AccessController.java:559)
    at java.lang.SecurityManager.checkPermission(SecurityManager.java:549)
    at java.net.ProxySelector.getDefault(ProxySelector.java:94)
    at com.pega.apache.http.impl.client.DefaultHttpClient.createHttpRoutePlanner(DefaultHttpClient.java:237)
    at com.pega.apache.http.impl.client.AbstractHttpClient.getRoutePlanner(AbstractHttpClient.java:614)
    at com.pega.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.java:814)
    at com.pega.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.java:759)
    at com.pegarules.generated.activity.ra_action_pyinvokerestconnector_8a79723d3fc74fcefcc75a22d239088a.step5_circum0(ra_action_pyinvokerestconnector_8a79723d3fc74fcefcc75a22d239088a.java:1294)
    ... 162 more

Steps to Reproduce

Run the connect rest wizard,
Try to perform the test on the screen where we can test the connectivity

Root Cause

It was found that Tomcat is running in security mode.
When Tomcat is run in security mode, required permissions should be provided for respective classes or files in Tomcat catalina.policy file.
Stacktrace indicates that this permission was not provided.

Resolution

Issue is resolved by adding "getProxySelector" permission on class "java.net.NetPermission" in Tomcat catalina.policy file (as shown below):


    permission java.net.NetPermission "getProxySelector";