Docjar: A Java Source and Docuemnt Enginecom.*    java.*    javax.*    org.*    all    new    plug-in

Quick Search    Search Deep
Overview  Package   Class  Use  Deprecated  Index 
Home >> All >> java >> [ security overview ]  PREV CLASS  NEXT CLASS
SUMMARY: JavaDoc of java.security.Policy JAVADOC | Sourc code of java.security.Policy SOURCE | Download java.security.Policy DOWNLOAD | NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD

java.security
Class Policy  view Policy download Policy.java

java.lang.Object
  extended byjava.security.Policy
public abstract class Policy
extends java.lang.Object

Policy is an abstract class for managing the system security policy for the Java application environment. It specifies which permissions are available for code from various sources. The security policy is represented through a subclass of Policy.

Only one Policy is in effect at any time. A ProtectionDomain initializes itself with information from this class on the set of permssions to grant.

The location for the actual Policy could be anywhere in any form because it depends on the Policy implementation. The default system is in a flat ASCII file or it could be in a database.

The current installed Policy can be accessed with getPolicy() 55 and changed with setPolicy(Policy) 55 if the code has the correct permissions.

The refresh() 55 method causes the Policy instance to refresh/reload its configuration. The method used to refresh depends on the Policy implementation.

When a protection domain initializes its permissions, it uses code like the following:

policy = Policy.getPolicy(); PermissionCollection perms = policy.getPermissions(myCodeSource);

The protection domain passes the Policy handler a CodeSource instance which contains the codebase URL and a public key. The Policy implementation then returns the proper set of permissions for that CodeSource.

The default Policy implementation can be changed by setting the "policy.provider" security provider in the "java.security" file to the correct Policy implementation class.

Since:
1.2

Field Summary
private static Policy currentPolicy
           
private  java.util.Map pd2pc
          Map of ProtectionDomains to PermissionCollections for this instance.
 
Constructor Summary
Policy()
          Constructs a new Policy object.
 
Method Summary
(package private) static Policy getCurrentPolicy()
          Ensures/forces loading of the configured policy provider, while bypassing the java.lang.SecurityManager checks for "getPolicy" security permission.
abstract  PermissionCollection getPermissions(CodeSource codesource)
          Returns the set of Permissions allowed for a given CodeSource.
 PermissionCollection getPermissions(ProtectionDomain domain)
          Returns the set of Permissions allowed for a given ProtectionDomain.
static Policy getPolicy()
          Returns the currently installed Policy handler.
 boolean implies(ProtectionDomain domain, Permission permission)
          Checks if the designated Permission is granted to a designated ProtectionDomain.
(package private) static boolean isLoaded()
          Tests if currentPolicy is not null, thus allowing clients to not force loading of any policy provider; needed by ProtectionDomain.
abstract  void refresh()
          Causes this Policy instance to refresh / reload its configuration.
static void setPolicy(Policy policy)
          Sets the Policy handler to a new value.
private static void setup(Policy policy)
           
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Field Detail

currentPolicy

private static Policy currentPolicy

pd2pc

private java.util.Map pd2pc
Map of ProtectionDomains to PermissionCollections for this instance.

Constructor Detail

Policy

public Policy()
Constructs a new Policy object.

Method Detail

getPolicy

public static Policy getPolicy()
Returns the currently installed Policy handler. The value should not be cached as it can be changed any time by setPolicy(Policy) 55 .

setPolicy

public static void setPolicy(Policy policy)
Sets the Policy handler to a new value.

setup

private static void setup(Policy policy)

getCurrentPolicy

static Policy getCurrentPolicy()
Ensures/forces loading of the configured policy provider, while bypassing the java.lang.SecurityManager checks for "getPolicy" security permission. Needed by ProtectionDomain.

isLoaded

static boolean isLoaded()
Tests if currentPolicy is not null, thus allowing clients to not force loading of any policy provider; needed by ProtectionDomain.

getPermissions

public abstract PermissionCollection getPermissions(CodeSource codesource)
Returns the set of Permissions allowed for a given CodeSource.

getPermissions

public PermissionCollection getPermissions(ProtectionDomain domain)
Returns the set of Permissions allowed for a given ProtectionDomain.

Since:
1.4

implies

public boolean implies(ProtectionDomain domain,
                       Permission permission)
Checks if the designated Permission is granted to a designated ProtectionDomain.

Since:
1.4

refresh

public abstract void refresh()
Causes this Policy instance to refresh / reload its configuration. The method used to refresh depends on the concrete implementation.

Overview  Package   Class  Use  Deprecated  Index 
Home >> All >> java >> [ security overview ]  PREV CLASS  NEXT CLASS
SUMMARY: JavaDoc of java.security.Policy JAVADOC | Sourc code of java.security.Policy SOURCE | Download java.security.Policy DOWNLOAD | NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD