Modifier and Type	Class and Description
private static class	ProtectionDomain.DebugHolder
private static class	ProtectionDomain.JavaSecurityAccessImpl
pack-priv static class	ProtectionDomain.Key Used for storing ProtectionDomains as keys in a Map.

Modifier and Type	Field and Description
private final ClassLoader	classloader
private final CodeSource	codesource
private static final boolean	filePermCompatInPD If `true`, `impliesWithAltFilePerm` will try to be compatible on FilePermission checking even if a 3rd-party Policy implementation is set.
private boolean	hasAllPerm
pack-priv final ProtectionDomain.Key	key
private PermissionCollection	permissions
private final Principal[]	principals
private final boolean	staticPermissions

Constructor Summary

Access Constructor and Description

Access	Constructor and Description
public	ProtectionDomain(CodeSource the codesource associated with this domain codesource, PermissionCollection the permissions granted to this domain permissions) Creates a new `ProtectionDomain` with the given `CodeSource` and permissions.
public	ProtectionDomain(CodeSource the `CodeSource` associated with this domain codesource, PermissionCollection the permissions granted to this domain permissions, ClassLoader the `ClassLoader` associated with this domain classloader, Principal[] the array of `Principal` objects associated with this domain. The contents of the array are copied to protect against subsequent modification. principals) Creates a new `ProtectionDomain` qualified by the given `CodeSource`, permissions, `ClassLoader` and array of principals.

public

ProtectionDomain(CodeSource

the codesource associated with this domain

codesource, PermissionCollection

the permissions granted to this domain

permissions)

Creates a new ProtectionDomain with the given CodeSource and permissions.

public

ProtectionDomain(CodeSource

the CodeSource associated with this domain

codesource, PermissionCollection

the permissions granted to this domain

permissions, ClassLoader

the ClassLoader associated with this domain

classloader, Principal[]

the array of Principal objects associated with this domain. The contents of the array are copied to protect against subsequent modification.

principals)

Creates a new ProtectionDomain qualified by the given CodeSource, permissions, ClassLoader and array of principals.

Method Summary

Modifier and Type	Method and Description
public final ClassLoader	Returns: the `ClassLoader` of this domain which may be `null`. getClassLoader() Returns the `ClassLoader` of this domain.
public final CodeSource	Returns: the `CodeSource` of this domain which may be `null`. getCodeSource() Returns the `CodeSource` of this domain.
public final PermissionCollection	Returns: the static set of permissions for this domain which may be `null`. getPermissions() Returns the static permissions granted to this domain.
public final Principal[]	Returns: a non-null array of principals for this domain. Returns a new array each time this method is called. getPrincipals() Returns an array of principals for this domain.
public boolean	Returns: `true` if `perm` is implied by this `ProtectionDomain`. implies(Permission the {code Permission} object to check. perm) Check and see if this `ProtectionDomain` implies the permissions expressed in the `Permission` object.
pack-priv boolean	impliesWithAltFilePerm(Permission perm) This method has almost the same logic flow as `implies` but it ensures some level of FilePermission compatibility after JDK-8164705.
private PermissionCollection	mergePermissions()
private static boolean	seeAllp() Return `true` (merge policy permissions) in the following cases: .
public final boolean	Returns: `true` if this domain contains only static permissions. staticPermissionsOnly() Returns `true` if this domain contains only static permissions and does not check the current `Policy` at the time of permission checking.
public String	toString() Overrides java.lang.Object.toString. Convert a `ProtectionDomain` to a `String`.

Inherited from java.lang.Object:: clone equals finalize getClass hashCode notify notifyAll wait wait wait

Field Detail

classloader	back to summary
private final ClassLoader classloader

codesource	back to summary
private final CodeSource codesource

filePermCompatInPD	back to summary
private static final boolean filePermCompatInPD If `true`, `impliesWithAltFilePerm` will try to be compatible on FilePermission checking even if a 3rd-party Policy implementation is set.

hasAllPerm	back to summary
private boolean hasAllPerm

key	back to summary
pack-priv final ProtectionDomain.Key key

permissions	back to summary
private PermissionCollection permissions

principals	back to summary
private final Principal[] principals

staticPermissions	back to summary
private final boolean staticPermissions

Constructor Detail

ProtectionDomain back to summary

ProtectionDomain	back to summary
public ProtectionDomain(CodeSource codesource, PermissionCollection permissions) Creates a new `ProtectionDomain` with the given `CodeSource` and permissions. If permissions is not `null`, then `setReadOnly()` will be called on the passed in permissions. The permissions granted to this domain are static, i.e. invoking the `staticPermissionsOnly()` method returns `true`. They contain only the ones passed to this constructor and the current policy will not be consulted. Parameters codesource:CodeSource the codesource associated with this domain permissions:PermissionCollection the permissions granted to this domain

public ProtectionDomain(CodeSource codesource, PermissionCollection permissions)

Creates a new ProtectionDomain with the given CodeSource and permissions. If permissions is not null, then setReadOnly() will be called on the passed in permissions.

The permissions granted to this domain are static, i.e. invoking the staticPermissionsOnly() method returns true. They contain only the ones passed to this constructor and the current policy will not be consulted.

Parameters

codesource:CodeSource: the codesource associated with this domain
permissions:PermissionCollection: the permissions granted to this domain

ProtectionDomain back to summary

ProtectionDomain	back to summary
public ProtectionDomain(CodeSource codesource, PermissionCollection permissions, ClassLoader classloader, Principal[] principals) Creates a new `ProtectionDomain` qualified by the given `CodeSource`, permissions, `ClassLoader` and array of principals. If permissions is not `null`, then `setReadOnly()` will be called on the passed in permissions. The permissions granted to this domain are dynamic, i.e. invoking the `staticPermissionsOnly()` method returns `false`. They include both the static permissions passed to this constructor, and any permissions granted to this domain by the current policy at the time a permission is checked. This constructor is typically used by `ClassLoaders` and `DomainCombiners` which delegate to the `Policy` object to actively associate the permissions granted to this domain. This constructor affords the policy provider the opportunity to augment the supplied `PermissionCollection` to reflect policy changes. Parameters codesource:CodeSource the `CodeSource` associated with this domain permissions:PermissionCollection the permissions granted to this domain classloader:ClassLoader the `ClassLoader` associated with this domain principals:Principal[] the array of `Principal` objects associated with this domain. The contents of the array are copied to protect against subsequent modification. Since 1.4 See Also `Policy#refresh`, `Policy#getPermissions(ProtectionDomain)`

public ProtectionDomain(CodeSource codesource, PermissionCollection permissions, ClassLoader classloader, Principal[] principals)

Creates a new ProtectionDomain qualified by the given CodeSource, permissions, ClassLoader and array of principals. If permissions is not null, then setReadOnly() will be called on the passed in permissions.

The permissions granted to this domain are dynamic, i.e. invoking the staticPermissionsOnly() method returns false. They include both the static permissions passed to this constructor, and any permissions granted to this domain by the current policy at the time a permission is checked.

This constructor is typically used by ClassLoaders and DomainCombiners which delegate to the Policy object to actively associate the permissions granted to this domain. This constructor affords the policy provider the opportunity to augment the supplied PermissionCollection to reflect policy changes.

Parameters

codesource:CodeSource: the CodeSource associated with this domain
permissions:PermissionCollection: the permissions granted to this domain
classloader:ClassLoader: the ClassLoader associated with this domain
principals:Principal[]: the array of Principal objects associated with this domain. The contents of the array are copied to protect against subsequent modification.

Since

1.4

Method Detail

getClassLoader back to summary

getClassLoader	back to summary
public final ClassLoader getClassLoader() Returns the `ClassLoader` of this domain. Returns:ClassLoader the `ClassLoader` of this domain which may be `null`. Since 1.4

public final ClassLoader getClassLoader()

Returns the ClassLoader of this domain.

Returns:ClassLoader: the ClassLoader of this domain which may be null.
Since: 1.4

getCodeSource back to summary

getCodeSource	back to summary
public final CodeSource getCodeSource() Returns the `CodeSource` of this domain. Returns:CodeSource the `CodeSource` of this domain which may be `null`. Since 1.2

public final CodeSource getCodeSource()

Returns the CodeSource of this domain.

Returns:CodeSource: the CodeSource of this domain which may be null.
Since: 1.2

getPermissions back to summary

getPermissions	back to summary
public final PermissionCollection getPermissions() Returns the static permissions granted to this domain. Returns:PermissionCollection the static set of permissions for this domain which may be `null`. See Also `Policy#refresh`, `Policy#getPermissions(ProtectionDomain)`

public final PermissionCollection getPermissions()

Returns the static permissions granted to this domain.

Returns:PermissionCollection: the static set of permissions for this domain which may be null.
See Also: Policy#refresh, Policy#getPermissions(ProtectionDomain)

getPrincipals	back to summary
public final Principal[] getPrincipals() Returns an array of principals for this domain. Returns:Principal[] a non-null array of principals for this domain. Returns a new array each time this method is called. Since 1.4

getPrincipals

back to summary

public final Principal[] getPrincipals()

Returns an array of principals for this domain.

Returns:Principal[]: a non-null array of principals for this domain. Returns a new array each time this method is called.
Since: 1.4

implies back to summary

implies	back to summary
public boolean implies(Permission perm) Check and see if this `ProtectionDomain` implies the permissions expressed in the `Permission` object. The set of permissions evaluated is a function of whether the `ProtectionDomain` was constructed with a static set of permissions or it was bound to a dynamically mapped set of permissions. If the `staticPermissionsOnly()` method returns `true`, then the permission will only be checked against the `PermissionCollection` supplied at construction. Otherwise, the permission will be checked against the combination of the `PermissionCollection` supplied at construction and the current policy binding. Parameters perm:Permission the {code Permission} object to check. Returns:boolean `true` if `perm` is implied by this `ProtectionDomain`. Annotations @SuppressWarnings:removal

public boolean implies(Permission perm)

Check and see if this ProtectionDomain implies the permissions expressed in the Permission object.

The set of permissions evaluated is a function of whether the ProtectionDomain was constructed with a static set of permissions or it was bound to a dynamically mapped set of permissions.

If the staticPermissionsOnly() method returns true, then the permission will only be checked against the PermissionCollection supplied at construction.

Otherwise, the permission will be checked against the combination of the PermissionCollection supplied at construction and the current policy binding.

Parameters

perm:Permission: the {code Permission} object to check.

Returns:boolean

true if perm is implied by this ProtectionDomain.

Annotations

@SuppressWarnings:removal

impliesWithAltFilePerm	back to summary
pack-priv boolean impliesWithAltFilePerm(Permission perm) This method has almost the same logic flow as `implies` but it ensures some level of FilePermission compatibility after JDK-8164705. This method is called by `AccessControlContext#checkPermission` and not intended to be called by an application.

mergePermissions	back to summary
private PermissionCollection mergePermissions()

seeAllp back to summary

seeAllp	back to summary
private static boolean seeAllp() Return `true` (merge policy permissions) in the following cases: . SecurityManager is `null` . SecurityManager is not `null`, debug is not `null`, SecurityManager implementation is in bootclasspath, Policy implementation is in bootclasspath (the bootclasspath restrictions avoid recursion) . SecurityManager is not `null`, debug is `null`, caller has Policy.getPolicy permission Annotations @SuppressWarnings:removal

private static boolean seeAllp()

Return true (merge policy permissions) in the following cases: . SecurityManager is null . SecurityManager is not null, debug is not null, SecurityManager implementation is in bootclasspath, Policy implementation is in bootclasspath (the bootclasspath restrictions avoid recursion) . SecurityManager is not null, debug is null, caller has Policy.getPolicy permission

Annotations

@SuppressWarnings:removal

staticPermissionsOnly back to summary

staticPermissionsOnly	back to summary
public final boolean staticPermissionsOnly() Returns `true` if this domain contains only static permissions and does not check the current `Policy` at the time of permission checking. Returns:boolean `true` if this domain contains only static permissions. Since 9

public final boolean staticPermissionsOnly()

Returns true if this domain contains only static permissions and does not check the current Policy at the time of permission checking.

Returns:boolean: true if this domain contains only static permissions.
Since: 9

toString back to summary

toString	back to summary
public String toString() Overrides java.lang.Object.toString. Convert a `ProtectionDomain` to a `String`. Returns:String Doc from java.lang.Object.toString. a string representation of the object Annotations @Override

public String toString()

Overrides java.lang.Object.toString.

Convert a ProtectionDomain to a String.

Returns:String

Doc from java.lang.Object.toString.

a string representation of the object

Annotations

@Override

java.security back to summary

private Class ProtectionDomain.DebugHolder

Class Inheritance

extends Object

java.lang.Object
java.security.ProtectionDomain.DebugHolder

Field Summary

Modifier and Type	Field and Description
private static final Debug	debug

Constructor Summary

Access	Constructor and Description
private	DebugHolder()

Method Summary

Inherited from java.lang.Object:: clone equals finalize getClass hashCode notify notifyAll toString wait wait wait

Field Detail

debug	back to summary
private static final Debug debug

Constructor Detail

DebugHolder	back to summary
private DebugHolder()

java.security back to summary

private Class ProtectionDomain.JavaSecurityAccessImpl

Class Inheritance

extends Object
implements JavaSecurityAccess

java.lang.Object
java.security.ProtectionDomain.JavaSecurityAccessImpl

All Implemented Interfaces

jdk.internal.access.JavaSecurityAccess

Constructor Summary

Access	Constructor and Description
private	JavaSecurityAccessImpl()

Method Summary

Modifier and Type	Method and Description
public <T> T	doIntersectionPrivilege(PrivilegedAction<T> action, final AccessControlContext stack, final AccessControlContext context) Implements jdk.internal.access.JavaSecurityAccess.doIntersectionPrivilege. Deprecated as a consequence of `AccessControlContext` being deprecated.
public <T> T	doIntersectionPrivilege(PrivilegedAction<T> action, AccessControlContext context) Implements jdk.internal.access.JavaSecurityAccess.doIntersectionPrivilege. Deprecated as a consequence of `AccessControlContext` being deprecated.
private static AccessControlContext	getCombinedACC(AccessControlContext context, AccessControlContext stack) Deprecated as a consequence of `AccessControlContext` being deprecated.
public ProtectionDomain[]	getProtectDomains(AccessControlContext context) Implements jdk.internal.access.JavaSecurityAccess.getProtectDomains. Deprecated as a consequence of `AccessControlContext` being deprecated.
public JavaSecurityAccess.ProtectionDomainCache	getProtectionDomainCache() Implements jdk.internal.access.JavaSecurityAccess.getProtectionDomainCache. Returns the ProtectionDomainCache.

Inherited from java.lang.Object:: clone equals finalize getClass hashCode notify notifyAll toString wait wait wait

Constructor Detail

JavaSecurityAccessImpl	back to summary
private JavaSecurityAccessImpl()

Method Detail

doIntersectionPrivilege back to summary

doIntersectionPrivilege	back to summary
public <T> T doIntersectionPrivilege(PrivilegedAction<T> action, final AccessControlContext stack, final AccessControlContext context) Implements jdk.internal.access.JavaSecurityAccess.doIntersectionPrivilege. Deprecated as a consequence of `AccessControlContext` being deprecated. See corresponding docs for further information. Annotations @SuppressWarnings:removal @Override

public <T> T doIntersectionPrivilege(PrivilegedAction<T> action, final AccessControlContext stack, final AccessControlContext context)

Implements jdk.internal.access.JavaSecurityAccess.doIntersectionPrivilege.

Deprecated

as a consequence of AccessControlContext being deprecated. See corresponding docs for further information.

Annotations

@SuppressWarnings:removal
@Override

doIntersectionPrivilege back to summary

doIntersectionPrivilege	back to summary
public <T> T doIntersectionPrivilege(PrivilegedAction<T> action, AccessControlContext context) Implements jdk.internal.access.JavaSecurityAccess.doIntersectionPrivilege. Deprecated as a consequence of `AccessControlContext` being deprecated. See corresponding docs for further information. Annotations @SuppressWarnings:removal @Override

public <T> T doIntersectionPrivilege(PrivilegedAction<T> action, AccessControlContext context)

Implements jdk.internal.access.JavaSecurityAccess.doIntersectionPrivilege.

Deprecated

as a consequence of AccessControlContext being deprecated. See corresponding docs for further information.

Annotations

@SuppressWarnings:removal
@Override

getCombinedACC	back to summary
private static AccessControlContext getCombinedACC(AccessControlContext context, AccessControlContext stack) Deprecated as a consequence of `AccessControlContext` being deprecated. See corresponding docs for further information. Annotations @SuppressWarnings:removal

getProtectDomains back to summary

getProtectDomains	back to summary
public ProtectionDomain[] getProtectDomains(AccessControlContext context) Implements jdk.internal.access.JavaSecurityAccess.getProtectDomains. Deprecated as a consequence of `AccessControlContext` being deprecated. See corresponding docs for further information. Annotations @Override

public ProtectionDomain[] getProtectDomains(AccessControlContext context)

Implements jdk.internal.access.JavaSecurityAccess.getProtectDomains.

Deprecated

as a consequence of AccessControlContext being deprecated. See corresponding docs for further information.

Annotations

@Override

getProtectionDomainCache	back to summary
public JavaSecurityAccess.ProtectionDomainCache getProtectionDomainCache() Implements jdk.internal.access.JavaSecurityAccess.getProtectionDomainCache. Doc from jdk.internal.access.JavaSecurityAccess.getProtectionDomainCache. Returns the ProtectionDomainCache. Annotations @Override

getProtectionDomainCache

back to summary

public JavaSecurityAccess.ProtectionDomainCache getProtectionDomainCache()

Implements jdk.internal.access.JavaSecurityAccess.getProtectionDomainCache.

Doc from jdk.internal.access.JavaSecurityAccess.getProtectionDomainCache.

Returns the ProtectionDomainCache.

Annotations

@Override

public Class ProtectionDomain

Nested and Inner Type Summary

Field Summary

Constructor Summary

Method Summary

Field Detail

Constructor Detail

Method Detail

private Class ProtectionDomain.DebugHolder

Field Summary

Constructor Summary

Method Summary

Field Detail

Constructor Detail

private Class ProtectionDomain.JavaSecurityAccessImpl

Constructor Summary

Method Summary

Constructor Detail

Method Detail

pack-priv final Class ProtectionDomain.Key

Constructor Summary

Method Summary

Constructor Detail