Package | Description |
---|---|
net.jini.security |
Provides mechanisms and abstractions for managing security, especially in the
presence of dynamically downloaded code.
|
net.jini.security.policy |
Provides an interface for security policy providers capable of dynamic
permission grants, an interface for security manager or policy providers
that use custom security context state, and a security policy provider
supporting dynamic permission grants.
|
org.apache.river.api.security |
This package contains a scalable cache based security manager that parallelises
domain security checks.
|
org.apache.river.start |
Provides the utilities and APIs used to launch the contributed services
provided in the Apache River release.
|
org.apache.river.tool |
Tools for: checking configuration files; checking for missing
serialVersionUID fields; computing class dependencies;
generating permission grants to debug security policy setup; providing
HTTP service; generating message digests; generating HTTPMD URLs;
generating wrapper JAR files; and generating preferred lists. |
Class and Description |
---|
SubjectDomain
A Marker interface used by
Security to mark
a ProtectionDomain added to the stack that represents an
authenticated Subject with
Principal 's. |
Class and Description |
---|
AbstractPolicy
A common superclass with utility methods for policy providers.
|
PermissionGrant
PermissionGrant implementations are expected to be immutable, non blocking,
thread safe and have a good hashCode implementation to perform well in
Collections. |
RevocablePolicy
RevocablePolicy, is a Java Security Policy Provider that supports
Runtime Dynamic addition and removal of PermissionGrant's
Warning: Not all Permission's are truly revocable, while any Permission can
be dynamically added and later removed from this policy, many JVM Permission
implementations are used in ways that allow references to escape
To quote Tim Blackman, from river-dev:
I remember talking with Bob and Mike Warres about this.
|
ScalableNestedPolicy
Policy providers can implement this interface to provide nested policies
a common interface to allow delayed creation of PermissionCollection
instances until all after all Permission objects are collected, allowing
the implementer to add Permission objects to a PermissionCollection in
an order that avoids unnecessary reverse DNS calls for example.
|
Class and Description |
---|
AbstractPolicy
A common superclass with utility methods for policy providers.
|
CachingSecurityManager
A CachingSecurityManager caches the result of check permission calls for
AccessControlContexts.
|
CertificateGrant |
CombinerSecurityManager
CombinerSecurityManager, is intended to be a highly scalable
SecurityManager implementation that caches the results of security checks
for each context, which may be an instance of SecurityContext or
AccessControlContext.
|
CombinerSecurityManager.Action |
ConcurrentPermissions.PermissionPendingResolution |
ConcurrentPermissions.PermissionPendingResolutionCollection |
DefaultPolicyScanner
This is a basic high-level tokenizer of policy files.
|
DefaultPolicyScanner.GrantEntry
Compound token representing grant clause.
|
DefaultPolicyScanner.InvalidFormatException
Specific exception class to signal policy file syntax error.
|
DefaultPolicyScanner.KeystoreEntry
Compound token representing keystore clause.
|
DefaultPolicyScanner.PermissionEntry
Compound token representing permission entry of a grant
clause.
|
DefaultPolicyScanner.PrincipalEntry
Compound token representing principal entry of a grant
clause.
|
PermissionGrant
PermissionGrant implementations are expected to be immutable, non blocking,
thread safe and have a good hashCode implementation to perform well in
Collections. |
PermissionGrantBuilder
The PermissionGrantBuilder creates Dynamic PermissionGrant's based on
information provided by the user.
|
PolicyParser
Parser of policy syntax.
|
PolicyUtils.ExpansionFailedException
Specific exception to signal that property expansion failed
due to unknown key.
|
PolicyUtils.GeneralExpansionHandler
Instances of this interface are intended for resolving
generalized expansion expressions, of the form ${{protocol:data}}.
|
PrincipalGrant |
ProtectionDomainGrant
ProtectionDomainGrant's become void if serialized, since ProtectionDomain's
cannot be serialized.
|
RemotePolicy
RemotePolicy is a service api that can be implemented by a distributed Policy service,
allowing local Policy providers to be updated remotely by a djinn group administrator.
|
ScalableNestedPolicy
Policy providers can implement this interface to provide nested policies
a common interface to allow delayed creation of PermissionCollection
instances until all after all Permission objects are collected, allowing
the implementer to add Permission objects to a PermissionCollection in
an order that avoids unnecessary reverse DNS calls for example.
|
Segment
Segments form a chain of String parts which represent a framework for
building complex String's from Substrings.
|
Segment.Status |
Class and Description |
---|
AbstractPolicy
A common superclass with utility methods for policy providers.
|
PermissionGrant
PermissionGrant implementations are expected to be immutable, non blocking,
thread safe and have a good hashCode implementation to perform well in
Collections. |
ScalableNestedPolicy
Policy providers can implement this interface to provide nested policies
a common interface to allow delayed creation of PermissionCollection
instances until all after all Permission objects are collected, allowing
the implementer to add Permission objects to a PermissionCollection in
an order that avoids unnecessary reverse DNS calls for example.
|
Class and Description |
---|
AbstractPolicy
A common superclass with utility methods for policy providers.
|
RevocablePolicy
RevocablePolicy, is a Java Security Policy Provider that supports
Runtime Dynamic addition and removal of PermissionGrant's
Warning: Not all Permission's are truly revocable, while any Permission can
be dynamically added and later removed from this policy, many JVM Permission
implementations are used in ways that allow references to escape
To quote Tim Blackman, from river-dev:
I remember talking with Bob and Mike Warres about this.
|
ScalableNestedPolicy
Policy providers can implement this interface to provide nested policies
a common interface to allow delayed creation of PermissionCollection
instances until all after all Permission objects are collected, allowing
the implementer to add Permission objects to a PermissionCollection in
an order that avoids unnecessary reverse DNS calls for example.
|
Copyright 2007-2013, multiple authors.
Licensed under the Apache License, Version 2.0, see the NOTICE file for attributions.