< prev index next >

src/java.base/share/classes/java/security/SecurityPermission.java

Print this page

        

*** 43,58 **** * <p> * The following table lists the standard {@code SecurityPermission} * target names, and for each provides a description of what the permission * allows and a discussion of the risks of granting code the permission. * ! * <table border=1 cellpadding=5 summary="target name,what the permission allows, and associated risks"> * <tr> * <th>Permission Target Name</th> * <th>What the Permission Allows</th> * <th>Risks of Allowing this Permission</th> * </tr> * * <tr> * <td>authProvider.{provider name}</td> * <td>Allow the named provider to be an AuthProvider for login and * logout operations. </td> --- 43,62 ---- * <p> * The following table lists the standard {@code SecurityPermission} * target names, and for each provides a description of what the permission * allows and a discussion of the risks of granting code the permission. * ! * <table class="altrows"> ! * <caption style="display:none">target name, what the permission allows, and associated risks</caption> ! * <thead> * <tr> * <th>Permission Target Name</th> * <th>What the Permission Allows</th> * <th>Risks of Allowing this Permission</th> * </tr> + * </thead> + * <tbody> * * <tr> * <td>authProvider.{provider name}</td> * <td>Allow the named provider to be an AuthProvider for login and * logout operations. </td>
*** 194,218 **** * may change the behavior or disable execution of other * parts of the program that would normally utilize the Provider, as * described under the "removeProvider.{provider name}" permission.</td> * </tr> * * </table> * * <P> * The following permissions have been superseded by newer permissions or are * associated with classes that have been deprecated: {@link Identity}, * {@link IdentityScope}, {@link Signer}. Use of them is discouraged. See the * applicable classes for more information. * ! * <table border=1 cellpadding=5 summary="target name,what the permission allows, and associated risks"> * <tr> * <th>Permission Target Name</th> * <th>What the Permission Allows</th> * <th>Risks of Allowing this Permission</th> * </tr> * * <tr> * <td>insertProvider.{provider name}</td> * <td>Addition of a new provider, with the specified name</td> * <td>Use of this permission is discouraged from further use because it is * possible to circumvent the name restrictions by overriding the --- 198,227 ---- * may change the behavior or disable execution of other * parts of the program that would normally utilize the Provider, as * described under the "removeProvider.{provider name}" permission.</td> * </tr> * + * </tbody> * </table> * * <P> * The following permissions have been superseded by newer permissions or are * associated with classes that have been deprecated: {@link Identity}, * {@link IdentityScope}, {@link Signer}. Use of them is discouraged. See the * applicable classes for more information. * ! * <table class="altrows"> ! * <caption style="display:none">target name, what the permission allows, and associated risks</caption> ! * <thead> * <tr> * <th>Permission Target Name</th> * <th>What the Permission Allows</th> * <th>Risks of Allowing this Permission</th> * </tr> + * </thead> * + * <tbody> * <tr> * <td>insertProvider.{provider name}</td> * <td>Addition of a new provider, with the specified name</td> * <td>Use of this permission is discouraged from further use because it is * possible to circumvent the name restrictions by overriding the
*** 306,315 **** --- 315,325 ---- * key, which would allow the attacker (who possesses the corresponding * private key) to unwrap the session key and decipher the communication * data encrypted under that session key.</td> * </tr> * + * </tbody> * </table> * * @implNote * Implementations may define additional target names, but should use naming * conventions such as reverse domain name notation to avoid name clashes.
< prev index next >