JRE 7u55
Oracle has released a new update for JRE 7, this update added a new feature with security for Java applications; the full changelist may be found here: http://www.oracle.com/technetwork/java/javase/7u55-relnotes-2177812.html.
Prior to this patch, we had specified that security warnings not appear; Oracle has changed this in the update so that these warnings are now appearing mandatorily. During the installation of the update, the installer may ask to reset security prompts, doing so will cause all java security prompts for Rhythmyx to appear. The specific change that is causing these warnings to now appear is:
“Using "" in Caller-Allowable-Codebase Attribute.
If a stand-alone asterisk () is specified as the value for the Caller-Allowable-Codebase attribute, then calls from JavaScript code to RIA will show a security warning, and users have the choice to allow the call or block the call.
For more information, see JAR File Manifest Attributes for Security documentation.”
Oracle’s change has prevented us from possibly creating a patch to restore the prevention of the warnings from constantly appearing without user input.
When these warnings appear, ensure that the “Publisher” category is marked as Percussion or as Ephox, and that the location matches. To prevent these warnings from reappearing, check the “Do not show this again for apps from the publisher and location above” box, and click “Run” for any screens that ask “Do you want to run this application”.
More information:
JRE 7u55.pdf (577 KB)