Package com.sun.identity.security
Class ISSecurityPermission
- java.lang.Object
-
- java.security.Permission
-
- com.sun.identity.security.ISSecurityPermission
-
- All Implemented Interfaces:
Serializable
,Guard
@SupportedAll public class ISSecurityPermission extends Permission
This classISSecurityPermission
is used to protect the Access Manager resources which should be accessed only by trusted application. The resources this Permission is used to protect are: OpenAM administrator DN and password, and access to the encryption and decryption methods used to encrypt all passwords in OpenAM services. The supported permissions is"access"
and supported actions are"adminpassword"
and"crypt"
. So in the Java security policy file which will define the security options to grant this permission to code bases, it should be done as below:grant codeBase "file:{directory where jars are located}/-" { com.sun.identity.security.ISSecurityPermission "access", "adminpassword,crypt"; };
Note: The propertycom.sun.identity.security.checkcaller
should be set to true inAMConfig.properties
file to enable the Java security permissions check.- See Also:
- Serialized Form
-
-
Constructor Summary
Constructors Constructor Description ISSecurityPermission(String access)
ConstructsISSecurityPermission
object.ISSecurityPermission(String access, String action)
ConstructsISSecurityPermission
object.
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description boolean
equals(Object o)
Returns true if this object is equals too
.String
getActions()
int
hashCode()
Returns hash code for this object.boolean
implies(Permission p)
This method checks to see if this instance ofISSecurityPermission
implies the Permission being passed as the argument.-
Methods inherited from class java.security.Permission
checkGuard, getName, newPermissionCollection, toString
-
-
-
-
Constructor Detail
-
ISSecurityPermission
public ISSecurityPermission(String access, String action)
ConstructsISSecurityPermission
object.- Parameters:
access
- Has to be string "access"action
- Can beadminpassword
orcrypt
.
-
ISSecurityPermission
public ISSecurityPermission(String access)
ConstructsISSecurityPermission
object. This constructor sets the action to"adminpassword"
by default.- Parameters:
access
- Has to be string "access"
-
-
Method Detail
-
implies
public boolean implies(Permission p)
This method checks to see if this instance ofISSecurityPermission
implies the Permission being passed as the argument. For more information on this, see the Javadocs ofjava.security.Permission
- Specified by:
implies
in classPermission
- Parameters:
p
- Instance ofcom.sun.identity.security.ISSecurityPermission
- Returns:
- true if this instance of
ISSecurityPermission
implies the actions of the argument p. False otherwisejava.security.Permission
-
hashCode
public int hashCode()
Returns hash code for this object.- Specified by:
hashCode
in classPermission
- Returns:
- hash code representing this object
- See Also:
Permission.hashCode()
-
equals
public boolean equals(Object o)
Returns true if this object is equals too
.- Specified by:
equals
in classPermission
- Parameters:
o
- object fro comparison.- Returns:
- true if both object are similar.
-
getActions
public String getActions()
- Specified by:
getActions
in classPermission
- Returns:
- String representation of actions supported by
ISSecurityPermission
- See Also:
Permission.getActions()
-
-