Authorization layer API and low level access checks.
Dalibor Topic
dalibor.topic at oracle.com
Thu Jun 24 11:30:41 UTC 2021
On 24.06.2021 04:24, Peter Firmstone wrote:
> Thanks Andrew,
>
> For the simple case, of replacing the SecurityManager stack walk, one
> could use reflection.
>
> Thank you for also confirming that is not possible (or at least very
> unlikely) to add a GuardBuilder to Java 8, the proposal is for JDK code
> to use a provider mechanism, to intercept permission checks, so custom
> authentication layers can be implemented, this could be accepted in
> future versions of Java, but not existing. As it is said, there is no
> harm in asking.
Generally speaking, adding any public APIs to a platform release after
its specification has been published, is always going to be a very tall
order involving the JCP, among other things. It's not really worth it,
when other technical solutions, such as multi-release JARs, already
exist, that alleviate the necessity.
cheers,
dalibor topic
--
<http://www.oracle.com> Dalibor Topic
Consulting Product Manager
Phone: +494089091214 <tel:+494089091214>, Mobile: +491737185961
<tel:+491737185961>, Video: dalibor.topic at oracle.com
<sip:dalibor.topic at oracle.com>
Oracle Global Services Germany GmbH
Hauptverwaltung: Riesstr. 25, D-80992 München
Registergericht: Amtsgericht München, HRB 246209
Geschäftsführer: Ralf Herrmann
More information about the discuss
mailing list