0

我们用 JAVA 开发了一个小程序,主要用于从 keystore 访问数字证书。

小程序在大多数情况下都能正常工作,但在某些安全的银行网络中,小程序的行为变得不可预测。

我们在 HTML 中使用 applet 标签来访问 applet。

我的第一个问题是我们是否需要为此使用 JNLP 进行部署?

其次,我在过去准备了一个测试应用程序,我只是调用了一种小程序方法,该方法正在加载所有证书公共详细信息并将其打印到控制台上。它曾经工作得很好。

以下是相同的代码。

小程序方法

   public void init() {
    printMessageToConsole("Applet Initialized Version : " + appletVersion);
    browserName = "Internet Explorer";
    try {
        String osName = System.getProperty("os.name");
        printMessageToConsole("Operating system name =>" + osName);

    } catch (Exception e) {
        printMessageToConsole("Error in Get OS Init.");
        e.printStackTrace();
    }
}


 public List<String> getCertificateAllDetails() throws NoSuchFieldException,
        SecurityException, IllegalArgumentException,
        IllegalAccessException, NoSuchMethodException,
        InvocationTargetException {
    printMessageToConsole("Get All Certificate Details");
    String certString = "";
    int count =0;
    String pubKey = "";
    KeyStore browserKeyStore = null;
    String certDetails = "";
    browserKeyStore = initializeBrowserKeyStore();
    List<String> resultValues = new ArrayList<String>();
    String aliasnew = null;

    printMessageToConsole(browserName);
    if (browserKeyStore != null) {
        printMessageToConsole("INSIDE IE CERTIFICATE READING");
        Field spiField = KeyStore.class.getDeclaredField("keyStoreSpi");
        spiField.setAccessible(true);
        KeyStoreSpi spi = (KeyStoreSpi) spiField.get(browserKeyStore);
        Field entriesField = spi.getClass().getSuperclass().getDeclaredField("entries");
        entriesField.setAccessible(true);
        @SuppressWarnings("rawtypes")
        Collection entries = (Collection) entriesField.get(spi);
        resultValues.add("Total Certificates in Browser : " + entries.size() + "<br><br><br>");
        printMessageToConsole("Total Certificates in Browser : " + entries.size());
        for (Object entry : entries) {
            aliasnew = (String) invokeGetter(entry, "getAlias");
            PrivateKey privateKey = (PrivateKey) invokeGetter(entry,"getPrivateKey");
            X509Certificate[] certificateChain = (X509Certificate[]) invokeGetter(entry, "getCertificateChain");
            for (X509Certificate current : certificateChain) {
                certString = "";
                if (certDetails != null && getkeyUsage(current.getKeyUsage()) != "") {
                    count ++;
                    pubKey = this.bASE64Encoder.encode(current.getPublicKey().getEncoded());
                    certDetails = getX509CertificateDetails(current);
                    Map<String, String> valueMap = new HashMap<String, String>();
                    valueMap = getMetadata(certDetails);
                    certString += "====================== Certificate Details for Certificate No : " + count + "======================<br>";
                    certString += "Alias : " + aliasnew + " <br>";
                    certString += "Name : "+ valueMap.get(CERT_DETAILS.NAME) + " <br>";
                    certString += "Key Usage : " + getkeyUsage(current.getKeyUsage()) + "<br>";
                    certString += "CNName : "+ valueMap.get(CERT_DETAILS.CN_NAME) + "<br>";
                    printMessageToConsole(certString);
                    resultValues.add(certString);
                    break;
                } else {
                    printMessageToConsole("Cert Details is NULL");
                }
            }
        }
    }
    else {
        printMessageToConsole("Keystore is NULL");
    }

    return resultValues;
}

网页

<html>
<head> 
    <title></title>
    <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
<SCRIPT LANGUAGE="JavaScript">
    function getAllCertificates()
    {
        document.write("Certificate Reading Started.")
        var certificates = document.securityApplet.getCertificateAllDetails();
        document.write(certificates);


    }
</SCRIPT>
<body>
    <div>Digital Certificate Test Application</div>
    <script src="http://www.java.com/js/deployJava.js"></script>

    <applet name="securityApplet" code="SecurityApplet.class"
    archive="securityApplet.jar" width="0" height="0" MAYSCRIPT="true"
    scriptable="true" > </applet>
    <button type="button" onclick="getAllCertificates()">Load Certificates!</button>

</body>

我最近打开了这个页面,现在在我的本地网络中,小程序正在正确初始化,但是点击按钮后它无法进一步调用任何东西。

加载页面时的控制台输出。

Applet Initialized Version : 30
Operating system name =>Windows 7
basic: Applet initialized
basic: Starting applet
basic: completed perf rollup
basic: Applet made visible
basic: Applet started
basic: Told clients applet is started

在加载之前一切正常

当我单击加载证书按钮时,以下是控制台日志,然后没有任何反应。而在安全网络中,最后两条线路甚至都没有出现。

basic: Starting applet teardown
basic: Finished applet teardown
basic: Removed progress listener: sun.plugin.util.ProgressMonitorAdapter@1b9bbe8
plugin2manager.parentwindowDispose

以下是控制台输出,它进入循环。

期待同样的答案。提前致谢。

4

1 回答 1

0

我发现了问题。这里没有什么可以做 JNLP 的。唯一的问题是我已经完成了 document.write,它阻塞并让小程序处理。我已经从 HTML 中删除了 document.write,并且使用以下 HTML 代码可以完全正常工作。

<html>
<head> 
    <title> Digital Certificate Test Application </title>
    <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
 <script src="http://www.java.com/js/deployJava.js"></script>
    <applet name="securityApplet" code="SecurityApplet.class"
    archive="securityApplet.jar" width="0" height="0" MAYSCRIPT="true"
    scriptable="true" > </applet> 
<SCRIPT LANGUAGE="JavaScript">

    function getAllCertificates()
    {
        alert("Certificate Reading Started");
        var certificates = document.securityApplet.getCertificateAllDetails();
        document.getElementById("displaymessage").innerHTML = certificates;
    }
</SCRIPT>
<body>
    <div>Digital Certificate Test Application</div>
    <div id="displaymessage">

    </div>
    <button type="button" onclick="getAllCertificates()">Load Certificates!</button>

</body>

于 2013-07-31T07:36:48.110 回答