stan/jdk-24
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

8077055: Allow other named SecurityPermissions, RuntimePermissions, and AuthPermissions to be used

Browse Source 
Reviewed-by: weijun
This commit is contained in:
Sean Mullan 2015-08-11 08:48:18 -04:00
parent 1104878b02
commit 784379f7a4
3 changed files with 43 additions and 36 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

29
jdk/src/java.base/share/classes/java/lang/RuntimePermission.java
View File

@ -31,22 +31,19 @@ import java.util.Hashtable;
import java.util.StringTokenizer; import java.util.StringTokenizer;
/** /**
* This class is for runtime permissions. A RuntimePermission * This class is for runtime permissions. A {@code RuntimePermission}
* contains a name (also referred to as a "target name") but * contains a name (also referred to as a "target name") but no actions
* no actions list; you either have the named permission * list; you either have the named permission or you don't.
* or you don't. * <p>
*
* <P>
* The target name is the name of the runtime permission (see below). The * The target name is the name of the runtime permission (see below). The
* naming convention follows the hierarchical property naming convention. * naming convention follows the hierarchical property naming convention.
* Also, an asterisk * Also, an asterisk may appear at the end of the name, following a ".",
* may appear at the end of the name, following a ".", or by itself, to * or by itself, to signify a wildcard match. For example: "loadLibrary.*"
* signify a wildcard match. For example: "loadLibrary.*" and "*" signify a * and "*" signify a wildcard match, while "*loadLibrary" and "a*b" do not.
* wildcard match, while "*loadLibrary" and "a*b" do not. * <p>
* <P> * The following table lists the standard {@code RuntimePermission}
* The following table lists all the possible RuntimePermission target names, * target names, and for each provides a description of what the permission
* and for each provides a description of what the permission allows * allows and a discussion of the risks of granting code the permission.
* and a discussion of the risks of granting code the permission.
* *
* <table border=1 cellpadding=5 summary="permission target name, * <table border=1 cellpadding=5 summary="permission target name,
* what the target allows,and associated risks"> * what the target allows,and associated risks">
@ -353,6 +350,10 @@ import java.util.StringTokenizer;
* </tr> * </tr>
* </table> * </table>
* *
* @implNote
* Implementations may define additional target names, but should use naming
* conventions such as reverse domain name notation to avoid name clashes.
*
* @see java.security.BasicPermission * @see java.security.BasicPermission
* @see java.security.Permission * @see java.security.Permission
* @see java.security.Permissions * @see java.security.Permissions

30
jdk/src/java.base/share/classes/java/security/SecurityPermission.java
View File

@ -1,5 +1,5 @@
/* /*
* Copyright (c) 1997, 2013, Oracle and/or its affiliates. All rights reserved. * Copyright (c) 1997, 2015, Oracle and/or its affiliates. All rights reserved.
* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
* *
* This code is free software; you can redistribute it and/or modify it * This code is free software; you can redistribute it and/or modify it
@ -31,19 +31,19 @@ import java.util.Hashtable;
import java.util.StringTokenizer; import java.util.StringTokenizer;
/** /**
* This class is for security permissions. * This class is for security permissions. A {@code SecurityPermission}
* A SecurityPermission contains a name (also referred to as a "target name") * contains a name (also referred to as a "target name") but no actions list;
* but no actions list; you either have the named permission * you either have the named permission or you don't.
* or you don't. * <p>
* <P> * The target name is the name of a security configuration parameter
* The target name is the name of a security configuration parameter (see below). * (see below). Currently the {@code SecurityPermission} object is used to
* Currently the SecurityPermission object is used to guard access * guard access to the {@link AccessControlContext}, {@link Policy},
* to the Policy, Security, Provider, Signer, and Identity * {@link Provider}, {@link Security}, {@link Signer}, and {@link Identity}
* objects. * objects.
* <P> * <p>
* The following table lists all the possible SecurityPermission target names, * The following table lists the standard {@code SecurityPermission}
* and for each provides a description of what the permission allows * target names, and for each provides a description of what the permission
* and a discussion of the risks of granting code the permission. * allows and a discussion of the risks of granting code the permission.
* *
* <table border=1 cellpadding=5 summary="target name,what the permission allows, and associated risks"> * <table border=1 cellpadding=5 summary="target name,what the permission allows, and associated risks">
* <tr> * <tr>
@ -299,6 +299,10 @@ import java.util.StringTokenizer;
* *
* </table> * </table>
* *
* @implNote
* Implementations may define additional target names, but should use naming
* conventions such as reverse domain name notation to avoid name clashes.
*
* @see java.security.BasicPermission * @see java.security.BasicPermission
* @see java.security.Permission * @see java.security.Permission
* @see java.security.Permissions * @see java.security.Permissions

20
jdk/src/java.base/share/classes/javax/security/auth/AuthPermission.java
View File

@ -26,18 +26,17 @@
package javax.security.auth; package javax.security.auth;
/** /**
* This class is for authentication permissions. * This class is for authentication permissions. An {@code AuthPermission}
* An AuthPermission contains a name * contains a name (also referred to as a "target name") but no actions
* (also referred to as a "target name") * list; you either have the named permission or you don't.
* but no actions list; you either have the named permission
* or you don't.
* *
* <p> The target name is the name of a security configuration parameter * <p> The target name is the name of a security configuration parameter
* (see below). Currently the AuthPermission object is used to * (see below). Currently the {@code AuthPermission} object is used to
* guard access to the Policy, Subject, LoginContext, * guard access to the {@link Policy}, {@link Subject},
* and Configuration objects. * {@link javax.security.auth.login.LoginContext}, and
* {@link javax.security.auth.login.Configuration} objects.
* *
* <p> The possible target names for an Authentication Permission are: * <p> The standard target names for an Authentication Permission are:
* *
* <pre> * <pre>
* doAs - allow the caller to invoke the * doAs - allow the caller to invoke the
@ -125,6 +124,9 @@ package javax.security.auth;
* Subject-based access control policy. * Subject-based access control policy.
* </pre> * </pre>
* *
* @implNote
* Implementations may define additional target names, but should use naming
* conventions such as reverse domain name notation to avoid name clashes.
*/ */
public final class AuthPermission extends public final class AuthPermission extends
java.security.BasicPermission { java.security.BasicPermission {