jdk-sandbox: comparison jdk/src/share/classes/javax/security/auth/Policy.java

equal deleted inserted replaced

-:ec84f0c313b0
+:90956ead732f
 /*
-* Copyright (c) 1998, 2012, Oracle and/or its affiliates. All rights reserved.
+* Copyright (c) 1998, 2013, Oracle and/or its affiliates. All rights reserved.
 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
 *
 * This code is free software; you can redistribute it and/or modify it
 * under the terms of the GNU General Public License version 2 only, as
 * published by the Free Software Foundation.  Oracle designates this
 /**
 * <p> This is an abstract class for representing the system policy for
 * Subject-based authorization.  A subclass implementation
 * of this class provides a means to specify a Subject-based
-* access control <code>Policy</code>.
+* access control {@code Policy}.
 *
-* <p> A <code>Policy</code> object can be queried for the set of
+* <p> A {@code Policy} object can be queried for the set of
 * Permissions granted to code running as a
-* <code>Principal</code> in the following manner:
+* {@code Principal} in the following manner:
 *
 * <pre>
 *      policy = Policy.getPolicy();
 *      PermissionCollection perms = policy.getPermissions(subject,
 *                                                      codeSource);
 * </pre>
 *
-* The <code>Policy</code> object consults the local policy and returns
+* The {@code Policy} object consults the local policy and returns
-* and appropriate <code>Permissions</code> object with the
+* and appropriate {@code Permissions} object with the
 * Permissions granted to the Principals associated with the
 * provided <i>subject</i>, and granted to the code specified
 * by the provided <i>codeSource</i>.
 *
-* <p> A <code>Policy</code> contains the following information.
+* <p> A {@code Policy} contains the following information.
 * Note that this example only represents the syntax for the default
-* <code>Policy</code> implementation. Subclass implementations of this class
+* {@code Policy} implementation. Subclass implementations of this class
 * may implement alternative syntaxes and may retrieve the
-* <code>Policy</code> from any source such as files, databases,
+* {@code Policy} from any source such as files, databases,
 * or servers.
 *
-* <p> Each entry in the <code>Policy</code> is represented as
+* <p> Each entry in the {@code Policy} is represented as
 * a <b><i>grant</i></b> entry.  Each <b><i>grant</i></b> entry
 * specifies a codebase, code signers, and Principals triplet,
 * as well as the Permissions granted to that triplet.
 *
 * <pre>
 *          permission java.io.FilePermission "/home/duke", "read, write";
 *      };
 * </pre>
 *
 * This <b><i>grant</i></b> entry specifies that code from "foo.com",
-* signed by "foo', and running as a <code>SolarisPrincipal</code> with the
+* signed by "foo', and running as a {@code SolarisPrincipal} with the
-* name, duke, has one <code>Permission</code>.  This <code>Permission</code>
+* name, duke, has one {@code Permission}.  This {@code Permission}
 * permits the executing code to read and write files in the directory,
 * "/home/duke".
 *
-* <p> To "run" as a particular <code>Principal</code>,
+* <p> To "run" as a particular {@code Principal},
-* code invokes the <code>Subject.doAs(subject, ...)</code> method.
+* code invokes the {@code Subject.doAs(subject, ...)} method.
 * After invoking that method, the code runs as all the Principals
-* associated with the specified <code>Subject</code>.
+* associated with the specified {@code Subject}.
-* Note that this <code>Policy</code> (and the Permissions
+* Note that this {@code Policy} (and the Permissions
-* granted in this <code>Policy</code>) only become effective
+* granted in this {@code Policy}) only become effective
-* after the call to <code>Subject.doAs</code> has occurred.
+* after the call to {@code Subject.doAs} has occurred.
 *
 * <p> Multiple Principals may be listed within one <b><i>grant</i></b> entry.
 * All the Principals in the grant entry must be associated with
-* the <code>Subject</code> provided to <code>Subject.doAs</code>
+* the {@code Subject} provided to {@code Subject.doAs}
-* for that <code>Subject</code> to be granted the specified Permissions.
+* for that {@code Subject} to be granted the specified Permissions.
 *
 * <pre>
 *      grant Principal com.sun.security.auth.SolarisPrincipal "duke",
 *            Principal com.sun.security.auth.SolarisNumericUserPrincipal "0" {
 *          permission java.io.FilePermission "/home/duke", "read, write";
 * This entry grants any code running as both "duke" and "0"
 * permission to read and write files in duke's home directory,
 * as well as permission to make socket connections to "duke.com".
 *
 * <p> Note that non Principal-based grant entries are not permitted
-* in this <code>Policy</code>.  Therefore, grant entries such as:
+* in this {@code Policy}.  Therefore, grant entries such as:
 *
 * <pre>
 *      grant CodeBase "foo.com", Signedby "foo" {
 *          permission java.io.FilePermission "/tmp/scratch", "read, write";
 *      };
 * </pre>
 *
 * are rejected.  Such permission must be listed in the
-* <code>java.security.Policy</code>.
+* {@code java.security.Policy}.
 *
 * <p> The default {@code Policy} implementation can be changed by
 * setting the value of the {@code auth.policy.provider} security property to
 * the fully qualified name of the desired {@code Policy} implementation class.
 *
 protected Policy() { }
 /**
 * Returns the installed Policy object.
 * This method first calls
-* <code>SecurityManager.checkPermission</code> with the
+* {@code SecurityManager.checkPermission} with the
-* <code>AuthPermission("getPolicy")</code> permission
+* {@code AuthPermission("getPolicy")} permission
 * to ensure the caller has permission to get the Policy object.
 *
 * <p>
 *
 * @return the installed Policy.  The return value cannot be
-*          <code>null</code>.
+*          {@code null}.
 *
 * @exception java.lang.SecurityException if the current thread does not
 *      have permission to get the Policy object.
 *
 * @see #setPolicy
 }
 /**
 * Sets the system-wide Policy object. This method first calls
-* <code>SecurityManager.checkPermission</code> with the
+* {@code SecurityManager.checkPermission} with the
-* <code>AuthPermission("setPolicy")</code>
+* {@code AuthPermission("setPolicy")}
 * permission to ensure the caller has permission to set the Policy.
 *
 * <p>
 *
 * @param policy the new system Policy object.
 return false;
 }
 /**
 * Retrieve the Permissions granted to the Principals associated with
-* the specified <code>CodeSource</code>.
+* the specified {@code CodeSource}.
 *
 * <p>
 *
-* @param subject the <code>Subject</code>
+* @param subject the {@code Subject}
 *                  whose associated Principals,
 *                  in conjunction with the provided
-*                  <code>CodeSource</code>, determines the Permissions
+*                  {@code CodeSource}, determines the Permissions
 *                  returned by this method.  This parameter
-*                  may be <code>null</code>. <p>
+*                  may be {@code null}. <p>
 *
-* @param cs the code specified by its <code>CodeSource</code>
+* @param cs the code specified by its {@code CodeSource}
 *                  that determines, in conjunction with the provided
-*                  <code>Subject</code>, the Permissions
+*                  {@code Subject}, the Permissions
 *                  returned by this method.  This parameter may be
-*                  <code>null</code>.
+*                  {@code null}.
 *
 * @return the Collection of Permissions granted to all the
-*                  <code>Subject</code> and code specified in
+*                  {@code Subject} and code specified in
 *                  the provided <i>subject</i> and <i>cs</i>
 *                  parameters.
 */
 public abstract java.security.PermissionCollection getPermissions
 (Subject subject,
 * Refresh and reload the Policy.
 *
 * <p>This method causes this object to refresh/reload its current
 * Policy. This is implementation-dependent.
 * For example, if the Policy object is stored in
-* a file, calling <code>refresh</code> will cause the file to be re-read.
+* a file, calling {@code refresh} will cause the file to be re-read.
 *
 * <p>
 *
 * @exception SecurityException if the caller does not have permission
 *                          to refresh the Policy.

changeset 18830	90956ead732f
parent 14775	2ed01c760aea
child 19439	57876ed3c426