We welcome user feedback and feature requests!

Make a JDK available with the JCE Unlimited Strength Jurisdiction Policy Files applied

Currently, none of the JDK's have the JCE Unlimited Strength policy files applied.

http://www.oracle.com/technetwork/java/javase/downloads/jce8-download-2133166.html

Please can these either be applied by default or can there be an option to have them applied?

109 votes
Vote
Sign in
Check!
(thinking…)
Reset
or sign in with
  • facebook
  • google
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    Rupert Madden-Abbott shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

    7 comments

    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      Signed in as (Sign out)
      Submitting...
      • Joaquín Vano commented  ·   ·  Flag as inappropriate

        We are currently working on updating the JDK and Tomcat versions on App Service for our Windows offer. They will be available in few weeks.

      • Chris Forbes commented  ·   ·  Flag as inappropriate

        I've literally just hit this, thank you to @Andreas you saved me quite a lot of headache as to why none of my encryption would work in app-service. I also really like to see this feature added

      • Brian Hanna (TheHanna) commented  ·   ·  Flag as inappropriate

        Still waiting for movement on this. I have 3 application servers that must have JCE Unlimited Strength Crypto to utilize SSO. The current workaround is hacky and poor practice. Java 8 version 162 has it by default. Can someone look into allowing that to be deployed? I really don't want to have to convert my entire set of Web Apps to VMs just to use decent cryptography!

      • Andreas Falk commented  ·   ·  Flag as inappropriate

        Please stop reviewing this for so long and provide JDK capable of including JCE. Starting with Java 8 version 151 you simply have to change one property in a config file. More and more applications have to use strong encryption which is quite useless without JCE.

      • Brian Hanna (TheHanna) commented  ·   ·  Flag as inappropriate

        Not having this is making running Java on Azure very difficult for me. Currently I have to custom set the JRE_HOME, JAVA_OPTS, CATALINA_OPTS, and CATALINA_HOME just to utilize Spring Security with JCE Unlimited Strength Cryptography for SAML 2.0 authentication. It really decreases the value of using Azure app services--I may as well set up a VM.

      Feedback and Knowledge Base