Authorization layer API and low level access checks.
Peter Firmstone
peter.firmstone at zeus.net.au
Fri Jun 25 05:59:59 UTC 2021
Thanks Dalibor,
Would targeting Java 18 be practical?
Also it won't take long to code a prototype, just not sure of the process.
Cheers,
Peter.
On 24/06/2021 9:30 pm, Dalibor Topic wrote:
> On 24.06.2021 04:24, Peter Firmstone wrote:
>> Thanks Andrew,
>>
>> For the simple case, of replacing the SecurityManager stack walk, one
>> could use reflection.
>>
>> Thank you for also confirming that is not possible (or at least very
>> unlikely) to add a GuardBuilder to Java 8, the proposal is for JDK
>> code to use a provider mechanism, to intercept permission checks, so
>> custom authentication layers can be implemented, this could be
>> accepted in future versions of Java, but not existing. As it is said,
>> there is no harm in asking.
>
> Generally speaking, adding any public APIs to a platform release after
> its specification has been published, is always going to be a very
> tall order involving the JCP, among other things. It's not really
> worth it, when other technical solutions, such as multi-release JARs,
> already exist, that alleviate the necessity.
>
> cheers,
> dalibor topic
>
More information about the discuss
mailing list