java.security.Policy#getPermissions

Source File: HostConfig.java From Tomcat8-Source-Read with MIT License

6 votes

private boolean isDeployThisXML(File docBase, ContextName cn) {
    boolean deployThisXML = isDeployXML();
    if (Globals.IS_SECURITY_ENABLED && !deployThisXML) {
        // When running under a SecurityManager, deployXML may be overridden
        // on a per Context basis by the granting of a specific permission
        Policy currentPolicy = Policy.getPolicy();
        if (currentPolicy != null) {
            URL contextRootUrl;
            try {
                contextRootUrl = docBase.toURI().toURL();
                CodeSource cs = new CodeSource(contextRootUrl, (Certificate[]) null);
                PermissionCollection pc = currentPolicy.getPermissions(cs);
                Permission p = new DeployXmlPermission(cn.getBaseName());
                if (pc.implies(p)) {
                    deployThisXML = true;
                }
            } catch (MalformedURLException e) {
                // Should never happen
                log.warn("hostConfig.docBaseUrlInvalid", e);
            }
        }
    }

    return deployThisXML;
}

Source File: WebappClassLoaderBase.java From Tomcat8-Source-Read with MIT License

6 votes

@Override
public boolean check(Permission permission) {
    if (!Globals.IS_SECURITY_ENABLED) {
        return true;
    }
    Policy currentPolicy = Policy.getPolicy();
    if (currentPolicy != null) {
        URL contextRootUrl = resources.getResource("/").getCodeBase();
        CodeSource cs = new CodeSource(contextRootUrl, (Certificate[]) null);
        PermissionCollection pc = currentPolicy.getPermissions(cs);
        if (pc.implies(permission)) {
            return true;
        }
    }
    return false;
}

Source File: WebappClassLoaderBase.java From tomcatsrc with Apache License 2.0

6 votes

@Override
public boolean check(Permission permission) {
    if (!Globals.IS_SECURITY_ENABLED) {
        return true;
    }
    Policy currentPolicy = Policy.getPolicy();
    if (currentPolicy != null) {
        ResourceEntry entry = findResourceInternal("/", "/", false);
        if (entry != null) {
            CodeSource cs = new CodeSource(
                    entry.codeBase, (java.security.cert.Certificate[]) null);
            PermissionCollection pc = currentPolicy.getPermissions(cs);
            if (pc.implies(permission)) {
                return true;
            }
        }
    }
    return false;
}

Source File: NullCodeSource.java From jdk8u-dev-jdk with GNU General Public License v2.0

5 votes

public static void main(String[] args) throws Exception {
    Policy policy = Policy.getPolicy();
    PermissionCollection perms = policy.getPermissions((CodeSource)null);
    if (perms.elements().hasMoreElements()) {
        System.err.println(perms);
        throw new Exception("PermissionCollection is not empty");
    }
}

Source File: NullCodeSource.java From jdk8u-jdk with GNU General Public License v2.0

5 votes

public static void main(String[] args) throws Exception {
    Policy policy = Policy.getPolicy();
    PermissionCollection perms = policy.getPermissions((CodeSource)null);
    if (perms.elements().hasMoreElements()) {
        System.err.println(perms);
        throw new Exception("PermissionCollection is not empty");
    }
}

Source File: NullCodeSource.java From jdk8u_jdk with GNU General Public License v2.0

5 votes

public static void main(String[] args) throws Exception {
    Policy policy = Policy.getPolicy();
    PermissionCollection perms = policy.getPermissions((CodeSource)null);
    if (perms.elements().hasMoreElements()) {
        System.err.println(perms);
        throw new Exception("PermissionCollection is not empty");
    }
}

Source File: NullCodeSource.java From openjdk-8 with GNU General Public License v2.0

5 votes

public static void main(String[] args) throws Exception {
    Policy policy = Policy.getPolicy();
    PermissionCollection perms = policy.getPermissions((CodeSource)null);
    if (perms.elements().hasMoreElements()) {
        System.err.println(perms);
        throw new Exception("PermissionCollection is not empty");
    }
}

Source File: NullCodeSource.java From openjdk-8-source with GNU General Public License v2.0

5 votes

public static void main(String[] args) throws Exception {
    Policy policy = Policy.getPolicy();
    PermissionCollection perms = policy.getPermissions((CodeSource)null);
    if (perms.elements().hasMoreElements()) {
        System.err.println(perms);
        throw new Exception("PermissionCollection is not empty");
    }
}

Source File: NullCodeSource.java From hottub with GNU General Public License v2.0

5 votes

public static void main(String[] args) throws Exception {
    Policy policy = Policy.getPolicy();
    PermissionCollection perms = policy.getPermissions((CodeSource)null);
    if (perms.elements().hasMoreElements()) {
        System.err.println(perms);
        throw new Exception("PermissionCollection is not empty");
    }
}

Source File: NullCodeSource.java From jdk8u-jdk with GNU General Public License v2.0

5 votes

public static void main(String[] args) throws Exception {
    Policy policy = Policy.getPolicy();
    PermissionCollection perms = policy.getPermissions((CodeSource)null);
    if (perms.elements().hasMoreElements()) {
        System.err.println(perms);
        throw new Exception("PermissionCollection is not empty");
    }
}

Source File: NullCodeSource.java From openjdk-jdk9 with GNU General Public License v2.0

5 votes

public static void main(String[] args) throws Exception {
    Policy policy = Policy.getPolicy();
    PermissionCollection perms = policy.getPermissions((CodeSource)null);
    if (perms.elements().hasMoreElements()) {
        System.err.println(perms);
        throw new Exception("PermissionCollection is not empty");
    }
}

Source File: NullCodeSource.java From openjdk-jdk8u-backup with GNU General Public License v2.0

5 votes

public static void main(String[] args) throws Exception {
    Policy policy = Policy.getPolicy();
    PermissionCollection perms = policy.getPermissions((CodeSource)null);
    if (perms.elements().hasMoreElements()) {
        System.err.println(perms);
        throw new Exception("PermissionCollection is not empty");
    }
}

Source File: NullCodeSource.java From openjdk-jdk8u with GNU General Public License v2.0

5 votes

public static void main(String[] args) throws Exception {
    Policy policy = Policy.getPolicy();
    PermissionCollection perms = policy.getPermissions((CodeSource)null);
    if (perms.elements().hasMoreElements()) {
        System.err.println(perms);
        throw new Exception("PermissionCollection is not empty");
    }
}

Source File: NullCodeSource.java From jdk8u60 with GNU General Public License v2.0

5 votes

public static void main(String[] args) throws Exception {
    Policy policy = Policy.getPolicy();
    PermissionCollection perms = policy.getPermissions((CodeSource)null);
    if (perms.elements().hasMoreElements()) {
        System.err.println(perms);
        throw new Exception("PermissionCollection is not empty");
    }
}

Source File: NullCodeSource.java From TencentKona-8 with GNU General Public License v2.0

5 votes

public static void main(String[] args) throws Exception {
    Policy policy = Policy.getPolicy();
    PermissionCollection perms = policy.getPermissions((CodeSource)null);
    if (perms.elements().hasMoreElements()) {
        System.err.println(perms);
        throw new Exception("PermissionCollection is not empty");
    }
}

Source File: NullCodeSource.java From dragonwell8_jdk with GNU General Public License v2.0

5 votes

public static void main(String[] args) throws Exception {
    Policy policy = Policy.getPolicy();
    PermissionCollection perms = policy.getPermissions((CodeSource)null);
    if (perms.elements().hasMoreElements()) {
        System.err.println(perms);
        throw new Exception("PermissionCollection is not empty");
    }
}

Source File: JspRuntimeContext.java From packagedrone with Eclipse Public License 1.0

4 votes

/**
 * Method used to initialize SecurityManager data.
 */
private void initSecurity() {

    // Setup the PermissionCollection for this web app context
    // based on the permissions configured for the root of the
    // web app context directory, then add a file read permission
    // for that directory.
    Policy policy = Policy.getPolicy();
    if( policy != null ) {
        try {          
            // Get the permissions for the web app context
            String docBase = context.getRealPath("/");
            if( docBase == null ) {
                docBase = options.getScratchDir().toString();
            }
            String codeBase = docBase;
            if (!codeBase.endsWith(File.separator)){
                codeBase = codeBase + File.separator;
            }
            File contextDir = new File(codeBase);
            URL url = contextDir.getCanonicalFile().toURL();
            codeSource = new CodeSource(url,(Certificate[])null);
            permissionCollection = policy.getPermissions(codeSource);

            // Create a file read permission for web app context directory
            if (!docBase.endsWith(File.separator)){
                permissionCollection.add
                    (new FilePermission(docBase,"read"));
                docBase = docBase + File.separator;
            } else {
                permissionCollection.add
                    (new FilePermission
                        (docBase.substring(0,docBase.length() - 1),"read"));
            }
            docBase = docBase + "-";
            permissionCollection.add(new FilePermission(docBase,"read"));

            // Create a file read permission for web app tempdir (work)
            // directory
            String workDir = options.getScratchDir().toString();
            if (!workDir.endsWith(File.separator)){
                permissionCollection.add
                    (new FilePermission(workDir,"read"));
                workDir = workDir + File.separator;
            }
            workDir = workDir + "-";
            permissionCollection.add(new FilePermission(workDir,"read"));

            // Allow the JSP to access org.apache.jasper.runtime.HttpJspBase
            permissionCollection.add( new RuntimePermission(
                "accessClassInPackage.org.apache.jasper.runtime") );

            ClassLoader parentClassLoader = getParentClassLoader();
            if (parentClassLoader instanceof URLClassLoader) {
                URL [] urls = ((URLClassLoader)parentClassLoader).getURLs();
                String jarUrl = null;
                String jndiUrl = null;
                for (int i=0; i<urls.length; i++) {
                    if (jndiUrl == null
                            && urls[i].toString().startsWith("jndi:") ) {
                        jndiUrl = urls[i].toString() + "-";
                    }
                    if (jarUrl == null
                            && urls[i].toString().startsWith("jar:jndi:")
                            ) {
                        jarUrl = urls[i].toString();
                        jarUrl = jarUrl.substring(0,jarUrl.length() - 2);
                        jarUrl = jarUrl.substring(0,
                                 jarUrl.lastIndexOf('/')) + "/-";
                    }
                }
                if (jarUrl != null) {
                    permissionCollection.add(
                            new FilePermission(jarUrl,"read"));
                    permissionCollection.add(
                            new FilePermission(jarUrl.substring(4),"read"));
                }
                if (jndiUrl != null)
                    permissionCollection.add(
                            new FilePermission(jndiUrl,"read") );
            }
        } catch(Exception e) {
            context.log("Security Init for context failed",e);
        }
    }
}

Java Code Examples for java.security.Policy#getPermissions()