Discussions
Categories
- 385K All Categories
- 2.6K Data
- 595 Big Data Appliance
- 2K Data Science
- 452.1K Databases
- 222.4K General Database Discussions
- 3.8K Java and JavaScript in the Database
- 32 Multilingual Engine
- 576 MySQL Community Space
- 479 NoSQL Database
- 7.9K Oracle Database Express Edition (XE)
- 3.1K ORDS, SODA & JSON in the Database
- 575 SQLcl
- 4K SQL Developer Data Modeler
- 187.7K SQL & PL/SQL
- 21.5K SQL Developer
- 12 Data Integration
- 12 GoldenGate
- 297.7K Development
- 3 Application Development
- 18 Developer Projects
- 140 Programming Languages
- 294.3K Development Tools
- 118 DevOps
- 3.1K QA/Testing
- 646.5K Java
- 30 Java Learning Subscription
- 37K Database Connectivity
- 185 Java Community Process
- 107 Java 25
- 22.2K Java APIs
- 138.3K Java Development Tools
- 165.3K Java EE (Java Enterprise Edition)
- 22 Java Essentials
- 174 Java 8 Questions
- 86K Java Programming
- 82 Java Puzzle Ball
- 65.1K New To Java
- 1.7K Training / Learning / Certification
- 13.8K Java HotSpot Virtual Machine
- 94.3K Java SE
- 13.8K Java Security
- 206 Java User Groups
- 24 JavaScript - Nashorn
- Programs
- 584 LiveLabs
- 41 Workshops
- 10.2K Software
- 6.7K Berkeley DB Family
- 3.6K JHeadstart
- 5.7K Other Languages
- 2.3K Chinese
- 191 Deutsche Oracle Community
- 1.1K Español
- 1.9K Japanese
- 240 Portuguese
Policy files
843811
Member Posts: 49,851 Green Ribbon
Hello,
Anyone with experience with policy files?
I have this ibn a policy file. I load it using the property :
-Djava.security.auth.login.config=D:\pathh\...\raul_jaas.cfg
And in the policy file is:
grant Principal NTUserPrincipal "my_user_name"
{
permission com.mycomp.raul.RaulPermission "RaulPermissionName";
};
The access is denied all the time.
(Oh, I am using JAAS Nt modules for the LoginContext and Principals).
If I add:
permission com.mycomp.raul.RaulPermission "RaulPermissionName";
To the grant list of the java.policy then it works fine, I am allowed. But java.policy doesnt allow to include principals.
When I tried to get the permissions in the accessController, in the first case I dont get the perm, although if I make syntax errors in that policy file it complains "loudly".
In the second case, adding the permission to the java.policy it loads it like unresolved, but works fine after, when I call it.
Another solution that I didnt try yet, could be to create my own Policy implementation, that means use it instead sun.security.PolicyFile ( only one can survive ). I have to add my class, in this case, to the rt.jar or set the bootpath of the VM to the dir where it is.
Any help or comments?
Anyone with experience with policy files?
I have this ibn a policy file. I load it using the property :
-Djava.security.auth.login.config=D:\pathh\...\raul_jaas.cfg
And in the policy file is:
grant Principal NTUserPrincipal "my_user_name"
{
permission com.mycomp.raul.RaulPermission "RaulPermissionName";
};
The access is denied all the time.
(Oh, I am using JAAS Nt modules for the LoginContext and Principals).
If I add:
permission com.mycomp.raul.RaulPermission "RaulPermissionName";
To the grant list of the java.policy then it works fine, I am allowed. But java.policy doesnt allow to include principals.
When I tried to get the permissions in the accessController, in the first case I dont get the perm, although if I make syntax errors in that policy file it complains "loudly".
In the second case, adding the permission to the java.policy it loads it like unresolved, but works fine after, when I call it.
Another solution that I didnt try yet, could be to create my own Policy implementation, that means use it instead sun.security.PolicyFile ( only one can survive ). I have to add my class, in this case, to the rt.jar or set the bootpath of the VM to the dir where it is.
Any help or comments?
Comments
-
May be, try
grant Principal com.sun.security.auth.NTUserPrincipal "my_user_name"
instead of
grant Principal com.sun.security.auth.NTUserPrincipal "my_user_name"
-
instead ofsorry, instead of
grant Principal com.sun.security.auth.NTUserPrincipal "my_user_name"
grant Principal NTUserPrincipal "my_user_name"
This discussion has been closed.