Message-Id: <199801051911.LAA03794@shorter.eng.sun.com>
Date: Mon, 5 Jan 1998 11:12:24 -0800 (PST)
From: Roland Schemers <Roland.Schemers@Eng>
Subject: Re: CodeSource and Protected domains
To: java-security@web2.javasoft.com, erich@creator.co.za
> I would like to request that the codesource concept be generalised into an
extendable "security information" class which will allow customisation of the
way in which protected domains are logically devided. This information could
include :
> code source,
> version information,
> run code on behalf of,
> allways privlage the code for certain permissions,
> etc.
We have been thinking along the same lines. At this point we have made
CodeSource non-final so it can be extended so more attributes can be
added.
> Using the security infromation class, proposed above, I would like to be able
to explicitely create protected domains and be able to retreive the security
information object associated with a particular protected domain.
We have also added the ability to create protection domains, and set/get
the protection domain of a class (which will be controlled by a
security permission).
roland