JSECURITY Issue: Exclude Option and Time Restriction Option

Maria Florio (tomas_l@equinoxlt.com)
Fri, 20 Nov 1998 10:12:53 GMT

Name: Tomas Lapienis
Email: tomas_l@equinoxlt.com
Organization: Equinox Europe
Location: Europe
System: WinNT
Referring URL: http://www.javasoft.com/features/1998/11/jdk.security.html

Comments on JavaTM Security Architecture (JDK1.2) Version 1.0

I want the ability to set exclude priviledge for files, sockects, etc. Example:
FilePermission p = new FilePermission("/home/gong/-", "read");
FilePermission p = new FilePermission("/home/gong/configDirectory", "nopermission");
So, this way, general rights allow to read all dirs and files to anybody, and only special software (which has additional rights) will be able to read files in configuration dir.

Also, I want to be able to set time when the permission takes aim. Example:
p = new SocketPermission("*.sun.com:80","accept");
p = new SocketPermission("*:80","accept;*!19:00:00-;-*!07:00:00");
Which means, accept connections from *.sun.com on port 80 at any time & accept connections from * any host on port 80 between *!19:00:00- (every day starting at 7pm) and -*!07:00:00 (until 7am for every day).

I understand that this functionality can be implemented in the application, but I think that it would be nice to manage these parameters from the single location - Security Manager.

Regards,
Tomas Lapienis