jdk-sandbox: test/jdk/java/net/httpclient/security/3.policy@352e845ae744 (annotated)

48083 b1c1b4ef4be2 8191494: Refresh incubating HTTP Client chegar parents: 47216 diff changeset	1	//
56054 352e845ae744 http-client-branch: honor legacy jdk.http.auth.* property when handling proxy-authorization dfuchs parents: 55973 diff changeset	2	// Copyright (c) 2016, 2018, Oracle and/or its affiliates. All rights reserved.
48083 b1c1b4ef4be2 8191494: Refresh incubating HTTP Client chegar parents: 47216 diff changeset	3	// DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
b1c1b4ef4be2 8191494: Refresh incubating HTTP Client chegar parents: 47216 diff changeset	4	//
b1c1b4ef4be2 8191494: Refresh incubating HTTP Client chegar parents: 47216 diff changeset	5	// This code is free software; you can redistribute it and/or modify it
b1c1b4ef4be2 8191494: Refresh incubating HTTP Client chegar parents: 47216 diff changeset	6	// under the terms of the GNU General Public License version 2 only, as
b1c1b4ef4be2 8191494: Refresh incubating HTTP Client chegar parents: 47216 diff changeset	7	// published by the Free Software Foundation.
b1c1b4ef4be2 8191494: Refresh incubating HTTP Client chegar parents: 47216 diff changeset	8	//
b1c1b4ef4be2 8191494: Refresh incubating HTTP Client chegar parents: 47216 diff changeset	9	// This code is distributed in the hope that it will be useful, but WITHOUT
b1c1b4ef4be2 8191494: Refresh incubating HTTP Client chegar parents: 47216 diff changeset	10	// ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
b1c1b4ef4be2 8191494: Refresh incubating HTTP Client chegar parents: 47216 diff changeset	11	// FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
b1c1b4ef4be2 8191494: Refresh incubating HTTP Client chegar parents: 47216 diff changeset	12	// version 2 for more details (a copy is included in the LICENSE file that
b1c1b4ef4be2 8191494: Refresh incubating HTTP Client chegar parents: 47216 diff changeset	13	// accompanied this code).
b1c1b4ef4be2 8191494: Refresh incubating HTTP Client chegar parents: 47216 diff changeset	14	//
b1c1b4ef4be2 8191494: Refresh incubating HTTP Client chegar parents: 47216 diff changeset	15	// You should have received a copy of the GNU General Public License version
b1c1b4ef4be2 8191494: Refresh incubating HTTP Client chegar parents: 47216 diff changeset	16	// 2 along with this work; if not, write to the Free Software Foundation,
b1c1b4ef4be2 8191494: Refresh incubating HTTP Client chegar parents: 47216 diff changeset	17	// Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
b1c1b4ef4be2 8191494: Refresh incubating HTTP Client chegar parents: 47216 diff changeset	18	//
b1c1b4ef4be2 8191494: Refresh incubating HTTP Client chegar parents: 47216 diff changeset	19	// Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
b1c1b4ef4be2 8191494: Refresh incubating HTTP Client chegar parents: 47216 diff changeset	20	// or visit www.oracle.com if you need additional information or have any
b1c1b4ef4be2 8191494: Refresh incubating HTTP Client chegar parents: 47216 diff changeset	21	// questions.
b1c1b4ef4be2 8191494: Refresh incubating HTTP Client chegar parents: 47216 diff changeset	22	//
b1c1b4ef4be2 8191494: Refresh incubating HTTP Client chegar parents: 47216 diff changeset	23
36131 379db4b2f95d 8087112: HTTP API and HTTP/1.1 implementation michaelm parents: diff changeset	24	// Policy 3
379db4b2f95d 8087112: HTTP API and HTTP/1.1 implementation michaelm parents: diff changeset	25	grant {
379db4b2f95d 8087112: HTTP API and HTTP/1.1 implementation michaelm parents: diff changeset	26	// permissions common to all tests
37791 ae33107fd8b3 8155928: Remove hardcoded port numbers from httpclient/Security.java test michaelm parents: 36131 diff changeset	27	permission java.util.PropertyPermission "*", "read";
36131 379db4b2f95d 8087112: HTTP API and HTTP/1.1 implementation michaelm parents: diff changeset	28	permission java.io.FilePermission "${test.classes}${/}-", "read,write,delete";
379db4b2f95d 8087112: HTTP API and HTTP/1.1 implementation michaelm parents: diff changeset	29	permission java.lang.RuntimePermission "modifyThread";
379db4b2f95d 8087112: HTTP API and HTTP/1.1 implementation michaelm parents: diff changeset	30	permission java.util.logging.LoggingPermission "control", "";
379db4b2f95d 8087112: HTTP API and HTTP/1.1 implementation michaelm parents: diff changeset	31	permission java.net.SocketPermission "localhost:1024-", "accept,listen";
379db4b2f95d 8087112: HTTP API and HTTP/1.1 implementation michaelm parents: diff changeset	32	permission java.io.FilePermission "${test.src}${/}docs${/}-", "read";
379db4b2f95d 8087112: HTTP API and HTTP/1.1 implementation michaelm parents: diff changeset	33	permission java.lang.RuntimePermission "createClassLoader";
379db4b2f95d 8087112: HTTP API and HTTP/1.1 implementation michaelm parents: diff changeset	34
379db4b2f95d 8087112: HTTP API and HTTP/1.1 implementation michaelm parents: diff changeset	35
379db4b2f95d 8087112: HTTP API and HTTP/1.1 implementation michaelm parents: diff changeset	36	// permissions specific to this test
379db4b2f95d 8087112: HTTP API and HTTP/1.1 implementation michaelm parents: diff changeset	37	permission java.net.URLPermission "http://127.0.0.1:*/redirect/foo.txt", "GET";
379db4b2f95d 8087112: HTTP API and HTTP/1.1 implementation michaelm parents: diff changeset	38	};
379db4b2f95d 8087112: HTTP API and HTTP/1.1 implementation michaelm parents: diff changeset	39
379db4b2f95d 8087112: HTTP API and HTTP/1.1 implementation michaelm parents: diff changeset	40	// For proxy only. Not being tested
379db4b2f95d 8087112: HTTP API and HTTP/1.1 implementation michaelm parents: diff changeset	41	grant codebase "file:${test.classes}/proxydir/-" {
379db4b2f95d 8087112: HTTP API and HTTP/1.1 implementation michaelm parents: diff changeset	42	permission java.net.SocketPermission "localhost:1024-", "accept,listen,connect";
379db4b2f95d 8087112: HTTP API and HTTP/1.1 implementation michaelm parents: diff changeset	43	permission java.net.SocketPermission "127.0.0.1:1024-", "connect,resolve";
379db4b2f95d 8087112: HTTP API and HTTP/1.1 implementation michaelm parents: diff changeset	44	};
379db4b2f95d 8087112: HTTP API and HTTP/1.1 implementation michaelm parents: diff changeset	45
42460 7133f144981a 8170648: Move java.net.http package out of Java SE to incubator namespace michaelm parents: 37791 diff changeset	46	grant codeBase "jrt:/jdk.incubator.httpclient" {
7133f144981a 8170648: Move java.net.http package out of Java SE to incubator namespace michaelm parents: 37791 diff changeset	47	permission java.lang.RuntimePermission "accessClassInPackage.sun.net";
46093 5d86e010d558 8185794: java/net/httpclient/security/Driver.java fails in timeout dfuchs parents: 42460 diff changeset	48	permission java.lang.RuntimePermission "accessClassInPackage.sun.net.util";
42460 7133f144981a 8170648: Move java.net.http package out of Java SE to incubator namespace michaelm parents: 37791 diff changeset	49	permission java.lang.RuntimePermission "accessClassInPackage.sun.net.www";
7133f144981a 8170648: Move java.net.http package out of Java SE to incubator namespace michaelm parents: 37791 diff changeset	50	permission java.lang.RuntimePermission "accessClassInPackage.jdk.internal.misc";
7133f144981a 8170648: Move java.net.http package out of Java SE to incubator namespace michaelm parents: 37791 diff changeset	51
7133f144981a 8170648: Move java.net.http package out of Java SE to incubator namespace michaelm parents: 37791 diff changeset	52	// ## why is SP not good enough. Check API @throws signatures and impl
7133f144981a 8170648: Move java.net.http package out of Java SE to incubator namespace michaelm parents: 37791 diff changeset	53	permission java.net.SocketPermission "*","connect,resolve";
7133f144981a 8170648: Move java.net.http package out of Java SE to incubator namespace michaelm parents: 37791 diff changeset	54	permission java.net.URLPermission "http:",":*";
7133f144981a 8170648: Move java.net.http package out of Java SE to incubator namespace michaelm parents: 37791 diff changeset	55	permission java.net.URLPermission "https:",":*";
7133f144981a 8170648: Move java.net.http package out of Java SE to incubator namespace michaelm parents: 37791 diff changeset	56	permission java.net.URLPermission "ws:",":*";
7133f144981a 8170648: Move java.net.http package out of Java SE to incubator namespace michaelm parents: 37791 diff changeset	57	permission java.net.URLPermission "wss:",":*";
7133f144981a 8170648: Move java.net.http package out of Java SE to incubator namespace michaelm parents: 37791 diff changeset	58	permission java.net.URLPermission "socket:*","CONNECT"; // proxy
7133f144981a 8170648: Move java.net.http package out of Java SE to incubator namespace michaelm parents: 37791 diff changeset	59
7133f144981a 8170648: Move java.net.http package out of Java SE to incubator namespace michaelm parents: 37791 diff changeset	60	// For request/response body processors, fromFile, asFile
7133f144981a 8170648: Move java.net.http package out of Java SE to incubator namespace michaelm parents: 37791 diff changeset	61	permission java.io.FilePermission "<<ALL FILES>>","read,write"; // delete???
7133f144981a 8170648: Move java.net.http package out of Java SE to incubator namespace michaelm parents: 37791 diff changeset	62
7133f144981a 8170648: Move java.net.http package out of Java SE to incubator namespace michaelm parents: 37791 diff changeset	63	permission java.util.PropertyPermission "jdk.httpclient.*","read";
56054 352e845ae744 http-client-branch: honor legacy jdk.http.auth.* property when handling proxy-authorization dfuchs parents: 55973 diff changeset	64	permission java.util.PropertyPermission "jdk.http.auth.*","read";
42460 7133f144981a 8170648: Move java.net.http package out of Java SE to incubator namespace michaelm parents: 37791 diff changeset	65
48083 b1c1b4ef4be2 8191494: Refresh incubating HTTP Client chegar parents: 47216 diff changeset	66	permission java.net.NetPermission "getProxySelector";
42460 7133f144981a 8170648: Move java.net.http package out of Java SE to incubator namespace michaelm parents: 37791 diff changeset	67	};
7133f144981a 8170648: Move java.net.http package out of Java SE to incubator namespace michaelm parents: 37791 diff changeset	68

author	dfuchs
	Wed, 31 Jan 2018 16:18:41 +0000
branch	http-client-branch
changeset 56054	352e845ae744
parent 55973	4d9b002587db
child 56089	42208b2f224e
permissions	-rw-r--r--