Java Doc for WrapperServicePermission.java in » Collaboration » Java-Service-Wrapper » org » tanukisoftware » wrapper » security » Java Source Code / Java DocumentationJava Source Code and Java Documentation

Java Source Code / Java Documentation

1.	6.0 JDK Core
2.	6.0 JDK Modules
3.	6.0 JDK Modules com.sun
4.	6.0 JDK Modules com.sun.java
5.	6.0 JDK Modules sun
6.	6.0 JDK Platform
7.	Ajax
8.	Apache Harmony Java SE
9.	Aspect oriented
10.	Authentication Authorization
11.	Blogger System
12.	Build
13.	Byte Code
14.	Cache
15.	Chart
16.	Chat
17.	Code Analyzer
18.	Collaboration
19.	Content Management System
20.	Database Client
21.	Database DBMS
22.	Database JDBC Connection Pool
23.	Database ORM
24.	Development
25.	EJB Server geronimo
26.	EJB Server GlassFish
27.	EJB Server JBoss 4.2.1
28.	EJB Server resin 3.1.5
29.	ERP CRM Financial
30.	ESB
31.	Forum
32.	GIS
33.	Graphic Library
34.	Groupware
35.	HTML Parser
36.	IDE
37.	IDE Eclipse
38.	IDE Netbeans
39.	Installer
40.	Internationalization Localization
41.	Inversion of Control
42.	Issue Tracking
43.	J2EE
44.	JBoss
45.	JMS
46.	JMX
47.	Library
48.	Mail Clients
49.	Net
50.	Parser
51.	PDF
52.	Portal
53.	Profiler
54.	Project Management
55.	Report
56.	RSS RDF
57.	Rule Engine
58.	Science
59.	Scripting
60.	Search Engine
61.	Security
62.	Sevlet Container
63.	Source Control
64.	Swing Library
65.	Template Engine
66.	Test Coverage
67.	Testing
68.	UML
69.	Web Crawler
70.	Web Framework
71.	Web Mail
72.	Web Server
73.	Web Services
74.	Web Services apache cxf 2.0.1
75.	Web Services AXIS2
76.	Wiki Engine
77.	Workflow Engines
78.	XML
79.	XML UI

Java

Java Tutorial

Illustrator Tutorials

GIMP Tutorials

C# / C Sharp

C# / CSharp Tutorial

C# / CSharp Open Source

SQL Server / T-SQL Tutorial

Oracle PL / SQL

Oracle PL/SQL Tutorial

Flash / Flex / ActionScript

VBA / Excel / Access / Word

XML

XML Tutorial

Microsoft Office PowerPoint 2007 Tutorial

Microsoft Office Excel 2007 Tutorial

Microsoft Office Word 2007 Tutorial

Java Source Code / Java Documentation » Collaboration » Java Service Wrapper » org.tanukisoftware.wrapper.security

Source Cross Reference

Class Diagram

Java Document (Java Doc)

java.lang .Object

java.security .Permission

org.tanukisoftware.wrapper.security .WrapperServicePermission

WrapperServicePermission

public class WrapperServicePermission extends Permission (Code)

WrapperServicePermissions are used to grant the right to start, stop, pause, continue, interrogate, or send custom codes to other services running on a Windows system.

These permissions are inherently quite dangerous so great care should be taken when granting them. When doing so, try to only grant permission to those services which really need to be controlled.

The following are examples of how to specify the permission within a policy file.

 grant codeBase "file:../lib/-" {
 // Grant various permissions to a specific service.
 permission org.tanukisoftware.wrapper.security.WrapperServicePermission "myservice", "interrogate";
 permission org.tanukisoftware.wrapper.security.WrapperServicePermission "myservice", "interrogate,start,stop";
 permission org.tanukisoftware.wrapper.security.WrapperServicePermission "myservice", "userCode";
 permission org.tanukisoftware.wrapper.security.WrapperServicePermission "myservice", "*";
 // Grant various permissions to any service starting with "my".
 permission org.tanukisoftware.wrapper.security.WrapperServicePermission "my*", "*";
 // Let the calling code do anything to any service on the system
 permission org.tanukisoftware.wrapper.security.WrapperServicePermission "*", "*";
 permission org.tanukisoftware.wrapper.security.WrapperServicePermission "*";
 };

Possible actions include the following:

Permission Action Name What the Permission Allows Risks of Allowing this Permission

start Start a service which is installed but has not been started. Malicious code could potentially start any service that is not currently running. This includes services which were previously stopped or that are configured to be started manually. Many Windows systems have several services stopped by default because of the security hazards that they pose. Starting such services could open the system up to attacks related to that service.

stop Stop a service which is currently running. Malicious code could potentially stop running service. This could result in a denial of service attack if the service is a web or database server. Or it result in more dangerous attacks if the service is a firewall or virus scanner.

pause Pause a service which is currently running. Malicious code could potentially pause running service. This could result in a denial of service attack if the service is a web or database server. Or it result in more dangerous attacks if the service is a firewall or virus scanner.

continue Continue a service which was previously paused. Malicious code could resume services which had been paused for a good reason.

interrogate Interrogate a service as to its current state. Malicious code learn a lot about a system and its weakness by probing which services are currently running.

userCode Send any custom user code to a service. The danger of this action depends on whether or not the service understands custom user codes, and what it does with them. This could potentially be a very dangerous permission to grant.

author:
Leif Mortenson

Field Summary
public static String	ACTION_CONTINUE
public static String	ACTION_INTERROGATE
public static String	ACTION_PAUSE
public static String	ACTION_START
public static String	ACTION_STOP
public static String	ACTION_USER_CODE

Constructor Summary
public	WrapperServicePermission(String serviceName, String actions) Creates a new WrapperServicePermission for the specified service.
public	WrapperServicePermission(String serviceName) Creates a new WrapperServicePermission for the specified service.

Method Summary
public boolean	equals(Object obj) Checks two Permission objects for equality.
int	getActionMask() Returns the action mask of the Permission.
public String	getActions() Return the canonical string representation of the actions. Always returns present actions in the following order: start, stop, pause, continue, interrogate.
public int	hashCode() Returns the hash code value for this object.
public boolean	implies(Permission p2) Checks if this WrapperServicePermission object "implies" the specified permission. More specifically, this method returns true if: p2 is an instanceof FilePermission, p2's actions are a proper subset of this object's actions, and p2's service name is implied by this object's service name. For example, "MyApp" implies "MyApp". Parameters:* p2 - the permission to check against.
boolean	impliesIgnoreActionMask(WrapperServicePermission p2) Tests whether this permissions implies another without taking the action mask into account.
public PermissionCollection	newPermissionCollection() Returns an custom WSCollection implementation of a PermissionCollection.

Field Detail

ACTION_CONTINUE
public static String ACTION_CONTINUE(Code)

ACTION_INTERROGATE
public static String ACTION_INTERROGATE(Code)

ACTION_PAUSE
public static String ACTION_PAUSE(Code)

ACTION_START
public static String ACTION_START(Code)

ACTION_STOP
public static String ACTION_STOP(Code)

ACTION_USER_CODE
public static String ACTION_USER_CODE(Code)

Constructor Detail

WrapperServicePermission
public WrapperServicePermission(String serviceName, String actions)(Code)
	Creates a new WrapperServicePermission for the specified service. Parameters: serviceName - The name of the service whose access is beingcontrolled. Parameters: actions - The action or actions to be performed.

WrapperServicePermission
public WrapperServicePermission(String serviceName)(Code)
	Creates a new WrapperServicePermission for the specified service. This version of the constructor grants all actions. Parameters: serviceName - The name of the service whose access is beingcontrolled.

Method Detail

equals
public boolean equals(Object obj)(Code)
	Checks two Permission objects for equality. Do not use the equals method for making access control decisions; use the implies method. Parameters: obj - The object we are testing for equality with this object. True if both Permission objects are equivalent.

getActionMask
int getActionMask()(Code)
	Returns the action mask of the Permission.

getActions
public String getActions()(Code)
	Return the canonical string representation of the actions. Always returns present actions in the following order: start, stop, pause, continue, interrogate. userCode. the canonical string representation of the actions.

hashCode
public int hashCode()(Code)
	Returns the hash code value for this object. A hash code value for this object.

implies

public boolean implies(Permission p2)(Code)

Checks if this WrapperServicePermission object "implies" the specified permission.

More specifically, this method returns true if:

p2 is an instanceof FilePermission,
p2's actions are a proper subset of this object's actions, and
p2's service name is implied by this object's service name. For example, "MyApp*" implies "MyApp".

Parameters:
p2 - the permission to check against. true if the specified permission is implied by this object,

impliesIgnoreActionMask
boolean impliesIgnoreActionMask(WrapperServicePermission p2)(Code)
	Tests whether this permissions implies another without taking the action mask into account.

newPermissionCollection
public PermissionCollection newPermissionCollection()(Code)
	Returns an custom WSCollection implementation of a PermissionCollection.

Methods inherited from java.security.Permission

public void checkGuard(Object object) throws SecurityException(Code)(Java Doc)
abstract public boolean equals(Object obj)(Code)(Java Doc)
abstract public String getActions()(Code)(Java Doc)
final public String getName()(Code)(Java Doc)
abstract public int hashCode()(Code)(Java Doc)
abstract public boolean implies(Permission permission)(Code)(Java Doc)
public PermissionCollection newPermissionCollection()(Code)(Java Doc)
public String toString()(Code)(Java Doc)

Methods inherited from java.lang.Object

native protected Object clone() throws CloneNotSupportedException(Code)(Java Doc)
public boolean equals(Object obj)(Code)(Java Doc)
protected void finalize() throws Throwable(Code)(Java Doc)
final native public Class getClass()(Code)(Java Doc)
native public int hashCode()(Code)(Java Doc)
final native public void notify()(Code)(Java Doc)
final native public void notifyAll()(Code)(Java Doc)
public String toString()(Code)(Java Doc)
final native public void wait(long timeout) throws InterruptedException(Code)(Java Doc)
final public void wait(long timeout, int nanos) throws InterruptedException(Code)(Java Doc)
final public void wait() throws InterruptedException(Code)(Java Doc)

www.java2java.com | Contact Us

All other trademarks are property of their respective owners.