public final class AuthPermission extends BasicPermission
The target name is the name of a security configuration parameter (see below). Currently the AuthPermission object is used to guard access to the Policy, Subject, LoginContext, and Configuration objects.
The possible target names for an Authentication Permission are:
doAs - allow the caller to invoke theSubject.doAs
methods. doAsPrivileged - allow the caller to invoke theSubject.doAsPrivileged
methods. getSubject - allow for the retrieval of the Subject(s) associated with the current Thread. getSubjectFromDomainCombiner - allow for the retrieval of the Subject associated with the aSubjectDomainCombiner
. setReadOnly - allow the caller to set a Subject to be read-only. modifyPrincipals - allow the caller to modify theSet
of Principals associated with aSubject
modifyPublicCredentials - allow the caller to modify theSet
of public credentials associated with aSubject
modifyPrivateCredentials - allow the caller to modify theSet
of private credentials associated with aSubject
refreshCredential - allow code to invoke therefresh
method on a credential which implements theRefreshable
interface. destroyCredential - allow code to invoke thedestroy
method on a credentialobject
which implements theDestroyable
interface. createLoginContext.{name} - allow code to instantiate aLoginContext
with the specified name. name is used as the index into the installed loginConfiguration
(that returned byConfiguration.getConfiguration()
). name can be wildcarded (set to '*') to allow for any name. getLoginConfiguration - allow for the retrieval of the system-wide login Configuration. createLoginConfiguration.{type} - allow code to obtain a Configuration object viaConfiguration.getInstance
. setLoginConfiguration - allow for the setting of the system-wide login Configuration. refreshLoginConfiguration - allow for the refreshing of the system-wide login Configuration.
The following target name has been deprecated in favor of
createLoginContext.{name}
.
createLoginContext - allow code to instantiate a
LoginContext
.
javax.security.auth.Policy
has been
deprecated in favor of java.security.Policy
.
Therefore, the following target names have also been deprecated:
getPolicy - allow the caller to retrieve the system-wide Subject-based access control policy. setPolicy - allow the caller to set the system-wide Subject-based access control policy. refreshPolicy - allow the caller to refresh the system-wide Subject-based access control policy.
Constructor and Description |
---|
AuthPermission(String name)
Creates a new AuthPermission with the specified name.
|
AuthPermission(String name,
String actions)
Creates a new AuthPermission object with the specified name.
|
equals, getActions, hashCode, implies, newPermissionCollection
checkGuard, getName, toString
public AuthPermission(String name)
name
- the name of the AuthPermissionNullPointerException
- if name
is null
.IllegalArgumentException
- if name
is empty.public AuthPermission(String name, String actions)
name
- the name of the AuthPermission actions
- should be null.NullPointerException
- if name
is null
.IllegalArgumentException
- if name
is empty. Submit a bug or feature
For further API reference and developer documentation, see Java SE Documentation. That documentation contains more detailed, developer-targeted descriptions, with conceptual overviews, definitions of terms, workarounds, and working code examples.
Copyright © 1993, 2019, Oracle and/or its affiliates. All rights reserved. Use is subject to license terms. Also see the documentation redistribution policy.