org.jboss.security.srp
Class SRPPermission
java.lang.Object
java.security.Permission
java.security.BasicPermission
org.jboss.security.srp.SRPPermission
- All Implemented Interfaces:
- java.security.Guard, java.io.Serializable
- public class SRPPermission
- extends java.security.BasicPermission
A custom permission class for protecting access to sensitive SRP information
like the private session key and private key.
The following table lists all the possible SRPPermission target names,
and for each provides a description of what the permission allows
and a discussion of the risks of granting code the permission.
| Permission Target Name |
What the Permission Allows |
Risks of Allowing this Permission |
| getSessionKey |
Access the private SRP session key |
This provides access the the private session key that results from
the SRP negiotation. Access to this key will allow one to encrypt/decrypt msgs
that have been encrypted with the session key.
|
- See Also:
- Serialized Form
|
Constructor Summary |
SRPPermission(java.lang.String name)
Creates new SRPPermission |
SRPPermission(java.lang.String name,
java.lang.String actions)
|
| Methods inherited from class java.security.BasicPermission |
equals, getActions, hashCode, implies, newPermissionCollection |
| Methods inherited from class java.security.Permission |
checkGuard, getName, toString |
| Methods inherited from class java.lang.Object |
clone, finalize, getClass, notify, notifyAll, wait, wait, wait |
SRPPermission
public SRPPermission(java.lang.String name)
- Creates new SRPPermission
SRPPermission
public SRPPermission(java.lang.String name,
java.lang.String actions)