May 2001
Intermediate to advanced
618 pages
20h 50m
English
Content preview from Java Security, 2nd EditionBecome an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
The AccessController Class
Now we have all the pieces in place to
discuss the mechanics of the access controller. The access controller
is represented by a single class called, conveniently,
AccessController
(java.security.AccessController). There are no
instances of the AccessController
class -- its constructor is private so that it cannot be
instantiated. Instead, this class has a number of static methods that
can be called in order to determine if a particular operation should
succeed. The key method of this class takes a particular permission
and determines, based on the installed Policy
object, whether or not the permission should be granted:
- public static void checkPermission(Permission p)
Check the given permission against the policy in place for the program. If the permission is granted, this method returns normally; otherwise, it throws an
AccessControlException.
This method is used by the security manager to implement each of its methods.
We can use this method to determine whether or not a specified operation should be permitted:
package javasec.samples.ch05;
import java.applet.*;
import java.net.*;
import java.security.*;
public class AccessTest extends Applet {
public void init( ) {
SocketPermission sp = new SocketPermission(
getParameter("host") + ":6000", "connect");
try {
AccessController.checkPermission(sp);
System.out.println("Ok to open socket");
} catch (AccessControlException ace) {
System.out.println(ace);
}
}
}Whether the access controller allows or rejects ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access
More than 5,000 organizations count on O’Reilly
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.Julian F.
I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.Addison B.
I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.Amir M.
I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.