How can I configure the Exception Site List?
This article applies to:
The Exception Site List feature is being introduced in the release of Java 7 Update 51. By adding application URL to the Exception list allows users to run Rich Internet Applications (RIAs) that would normally be blocked by security checks.
Listed below are cases which will allow applications to run by adding the application url to the exception site list:
- If application is not signed with a certificate from trusted certificate authority.
- If application is hosted locally.
- Jar file not having the Permission manifest attribute.
- Application signed with an expired certificate.
- Certificate used to sign the application cannot be checked for revocation.
Manage the Exception Site List
The exception site list is managed in the Security tab of the Java Control Panel. The list is shown in the tab. To add, edit or remove a URL from list, Click Edit Site List and follow the directions shown.
Add a URL
- Click on the Edit Site List button.
- Click the Add in the Exception Site List window.
- Click in the empty field under Location field to enter the URL.
Example: http://myexample.com (Note: URL should begin with http:// or https://)
- Click OK to save the URL that you entered.
- Click Continue on the Security Warning dialog.
Edit a URL
- Double click the URL that you want to edit in the Exception Site List window.
- Make change to the URL.
- Click OK to save the changes.
Remove a URL
- Click the URL that you want to remove in the Exception Site List window.
- Click Remove.
- Click OK to save your change.
Note: If an active deployment rule set is installed on the system, the deployment rules take precedence over the exception site list. The exception site list is considered only when the default rule applies. See Deployment Rule Set for more information about deployment rules.
MORE TECHNICAL INFORMATION
» Exception Site List in 7u51 (blogs.oracle.com)
» Exception Site List documentation (docs.oracle.com)
You might also be interested in: