org.apache.river.api.security

Class DelegateSecurityManager

java.lang.Object

java.lang.SecurityManager

org.apache.river.api.security.CombinerSecurityManager

org.apache.river.api.security.DelegateSecurityManager

All Implemented Interfaces:

CachingSecurityManager

public class DelegateSecurityManager
extends CombinerSecurityManager

The DelegateSecurityManager is designed to enable the use of Delegate decorators to encapsulate security sensitive objects using Li Gong's method guard pattern.

In this manner we can prevent references to security sensitive object's from escaping.

See "Inside Java 2 Platform Security" 2nd Edition, ISBN:0-201-78791-1, page 176.

Delegate implementations are available separately from the Apache River release.

Delegates can be enabled at runtime by using the DelegateSecurityManager, but only for code that utilises delegates.

Since:

3.0.0

Author:

Peter Firmstone

See Also:

DelegatePermission

Field Summary

Fields inherited from class java.lang.SecurityManager

inCheck

Constructor Summary

Constructors

Constructor and Description
DelegateSecurityManager()

Method Summary

Modifier and Type	Method and Description
protected boolean	checkPermission(ProtectionDomain pd, Permission p) Enables customisation of permission check.

Methods inherited from class org.apache.river.api.security.CombinerSecurityManager

checkPermission, checkPermission, clearCache, getSecurityContext

Methods inherited from class java.lang.SecurityManager

checkAccept, checkAccess, checkAccess, checkAwtEventQueueAccess, checkConnect, checkConnect, checkCreateClassLoader, checkDelete, checkExec, checkExit, checkLink, checkListen, checkMemberAccess, checkMulticast, checkMulticast, checkPackageAccess, checkPackageDefinition, checkPrintJobAccess, checkPropertiesAccess, checkPropertyAccess, checkRead, checkRead, checkRead, checkSecurityAccess, checkSetFactory, checkSystemClipboardAccess, checkTopLevelWindow, checkWrite, checkWrite, classDepth, classLoaderDepth, currentClassLoader, currentLoadedClass, getClassContext, getInCheck, getThreadGroup, inClass, inClassLoader

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

DelegateSecurityManager

public DelegateSecurityManager()

Method Detail

checkPermission

protected boolean checkPermission(ProtectionDomain pd,
                                  Permission p)

Description copied from class: CombinerSecurityManager

Enables customisation of permission check.

Overrides:

checkPermission in class CombinerSecurityManager

Returns:

true if ProtectionDomain pd has Permission p.