[icedtea-web][rfc] (Small patch) Fix for PR1102. When using javaws -headless, auto-deny all security decisions that would pop up

Omair Majid omajid at redhat.com
Wed Aug 1 15:03:06 PDT 2012

On 08/01/2012 05:00 PM, Adam Domurad wrote:
> Hey all. -headless is a rather nice option for ITW's reproducer system

-headless is not just meant for tests. It is meant primarily for users.
While it doesn't do what it says (gui security dialogs are shown after
all), it still tries its best to let the users run application.

> it allows for automated tests to not constantly show
> confirm/deny popups. 

Is this true? That sounds like a bug. How do I reproduce this?

Or are you thinking of how -Xtrustall answers "OK" to all dialogs before
they are shown?

> This makes sure some security dialogs that were still being seen with
> -headless do not pop up. (NB: The effect will be the same as if they
> were denied.)

I don't think it's okay to deny permissions in headless mode.  The right
behaviour for -headless would be to prompt the user (just like we do
with the gui) but on the terminal.

It would be nice to have an opposite of -Xtrustall for the tests, but it
shouldn't obstruct normal user functionality. Please make it a separate
option (-Xtrustnone maybe?)


More information about the distro-pkg-dev mailing list