Oracle Developer2000 and Java SSL ...

Joel Fries (jfries@nswc.navy.mil)
Wed, 11 Feb 1998 09:23:54 -0500

Message-Id: <4D8ED33CBC03D111834700A0C96FC0B92163B0@PROBE>
From: Joel Fries <jfries@nswc.navy.mil>
To: "'java-security@java.sun.com'" <java-security@web2.javasoft.com>
Subject: Oracle Developer2000 and Java SSL ...
Date: Wed, 11 Feb 1998 09:23:54 -0500

We are currently using Oracle's Developer2000 to deploy Forms
applications to the web that tie into our databases. Oracle allows
the forms apps to run through a "web cartridge" as Java applets.
We have SSL enabled on our web server, and haven't had much problems
connecting to the server through https. But we've seen a few anomolies
with the Java applet forms:
When we run the applets through Netscape 4.04 browser's Java engine, the
applet pops up, but shows as being unsecured (the lock icon is
unlocked).
When we run the applet straight through the latest Appletviewer, it
fails
to start, with an error about "unsupported protocol: https". So the
question is - can we get these forms applets to work against our secure
web server AND have data entered or queried be secure? Right now, it
looks as though Java doesn't really like https - which does not help us
with our secure environment. Would love to hear otherwise!

Any answers would be hugely appreciated!

Thanks,
Joel Fries
Naval Surface Warfare Center
jfries@nswc.navy.mil