40  * for registered MBeans.  This is the core component of the JMX

    40  * for registered MBeans.  This is the core component of the JMX

    41  * infrastructure.</p>

    41  * infrastructure.</p>

    42  *

    42  *

    43  * <p>User code does not usually implement this interface.  Instead,

    43  * <p>User code does not usually implement this interface.  Instead,

    44  * an object that implements this interface is obtained with one of

    44  * an object that implements this interface is obtained with one of

    46  *

    46  *

    47  * <p>Every MBean which is added to the MBean server becomes

    47  * <p>Every MBean which is added to the MBean server becomes

    48  * manageable: its attributes and operations become remotely

    48  * manageable: its attributes and operations become remotely

    49  * accessible through the connectors/adaptors connected to that MBean

    49  * accessible through the connectors/adaptors connected to that MBean

    50  * server.  A Java object cannot be registered in the MBean server

    50  * server.  A Java object cannot be registered in the MBean server

    60  * javax.management.MBeanServerDelegate MBeanServerDelegate}.  This

    60  * javax.management.MBeanServerDelegate MBeanServerDelegate}.  This

    61  * <CODE>ObjectName</CODE> is: <BR>

    61  * <CODE>ObjectName</CODE> is: <BR>

    62  * <CODE>JMImplementation:type=MBeanServerDelegate</CODE>.</p>

    62  * <CODE>JMImplementation:type=MBeanServerDelegate</CODE>.</p>

    63  *

    63  *

    64  * <p id="security">An object obtained from the {@link

    64  * <p id="security">An object obtained from the {@link

    67  * methods of the {@link MBeanServerFactory} class applies security

    71  * methods of the {@link MBeanServerFactory} class applies security

    68  * checks to its methods, as follows.</p>

    72  * checks to its methods, as follows.</p>

    69  *

    73  *

    70  * <p>First, if there is no security manager ({@link

    74  * <p>First, if there is no security manager ({@link

    71  * System#getSecurityManager()} is null), then an implementation of

    75  * System#getSecurityManager()} is null), then an implementation of

    72  * this interface is free not to make any checks.</p>

    76  * this interface is free not to make any checks.</p>

    73  *

    77  *

    74  * <p>Assuming that there is a security manager, or that the

    78  * <p>Assuming that there is a security manager, or that the

    75  * implementation chooses to make checks anyway, the checks are made

    79  * implementation chooses to make checks anyway, the checks are made

    77  * string returned by {@link MBeanInfo#getClassName()} for the target

    84  * string returned by {@link MBeanInfo#getClassName()} for the target

    79  *

   100  *

    80  * <p>If a security check fails, the method throws {@link

   101  * <p>If a security check fails, the method throws {@link

    81  * SecurityException}.</p>

   102  * SecurityException}.</p>

    82  *

   103  *

    83  * <p>For methods that can throw {@link InstanceNotFoundException},

   104  * <p>For methods that can throw {@link InstanceNotFoundException},

    87  *

   108  *

    88  * <ul>

   109  * <ul>

    89  *

   110  *

    90  * <li><p>For the {@link #invoke invoke} method, the caller's

   111  * <li><p>For the {@link #invoke invoke} method, the caller's

    91  * permissions must imply {@link

   112  * permissions must imply {@link

    94  *

   116  *

    95  * <li><p>For the {@link #getAttribute getAttribute} method, the

   117  * <li><p>For the {@link #getAttribute getAttribute} method, the

    96  * caller's permissions must imply {@link

   118  * caller's permissions must imply {@link

    99  *

   122  *

   100  * <li><p>For the {@link #getAttributes getAttributes} method, the

   123  * <li><p>For the {@link #getAttributes getAttributes} method, the

   101  * caller's permissions must imply {@link

   124  * caller's permissions must imply {@link

   104  * Additionally, for each attribute <em>a</em> in the {@link

   127  * Additionally, for each attribute <em>a</em> in the {@link

   105  * AttributeList}, if the caller's permissions do not imply {@link

   128  * AttributeList}, if the caller's permissions do not imply {@link

   108  * MBean server will behave as if that attribute had not been in the

   132  * MBean server will behave as if that attribute had not been in the

   109  * supplied list.</p>

   133  * supplied list.</p>

   110  *

   134  *

   111  * <li><p>For the {@link #setAttribute setAttribute} method, the

   135  * <li><p>For the {@link #setAttribute setAttribute} method, the

   112  * caller's permissions must imply {@link

   136  * caller's permissions must imply {@link

   115  * <code>attrName</code> is {@link Attribute#getName()

   140  * <code>attrName</code> is {@link Attribute#getName()

   116  * attribute.getName()}.</p>

   141  * attribute.getName()}.</p>

   117  *

   142  *

   118  * <li><p>For the {@link #setAttributes setAttributes} method, the

   143  * <li><p>For the {@link #setAttributes setAttributes} method, the

   119  * caller's permissions must imply {@link

   144  * caller's permissions must imply {@link

   122  * Additionally, for each attribute <em>a</em> in the {@link

   147  * Additionally, for each attribute <em>a</em> in the {@link

   123  * AttributeList}, if the caller's permissions do not imply {@link

   148  * AttributeList}, if the caller's permissions do not imply {@link

   126  * MBean server will behave as if that attribute had not been in the

   152  * MBean server will behave as if that attribute had not been in the

   127  * supplied list.</p>

   153  * supplied list.</p>

   128  *

   154  *

   129  * <li><p>For the <code>addNotificationListener</code> methods,

   155  * <li><p>For the <code>addNotificationListener</code> methods,

   130  * the caller's permissions must imply {@link

   156  * the caller's permissions must imply {@link

   133  * "addNotificationListener")}.</p>

   159  * "addNotificationListener")}.</p>

   134  *

   160  *

   135  * <li><p>For the <code>removeNotificationListener</code> methods,

   161  * <li><p>For the <code>removeNotificationListener</code> methods,

   136  * the caller's permissions must imply {@link

   162  * the caller's permissions must imply {@link

   139  * "removeNotificationListener")}.</p>

   165  * "removeNotificationListener")}.</p>

   140  *

   166  *

   141  * <li><p>For the {@link #getMBeanInfo getMBeanInfo} method, the

   167  * <li><p>For the {@link #getMBeanInfo getMBeanInfo} method, the

   142  * caller's permissions must imply {@link

   168  * caller's permissions must imply {@link

   145  *

   172  *

   146  * <li><p>For the {@link #getObjectInstance getObjectInstance} method,

   173  * <li><p>For the {@link #getObjectInstance getObjectInstance} method,

   147  * the caller's permissions must imply {@link

   174  * the caller's permissions must imply {@link

   150  *

   178  *

   151  * <li><p>For the {@link #isInstanceOf isInstanceOf} method, the

   179  * <li><p>For the {@link #isInstanceOf isInstanceOf} method, the

   152  * caller's permissions must imply {@link

   180  * caller's permissions must imply {@link

   155  *

   184  *

   156  * <li><p>For the {@link #queryMBeans queryMBeans} method, the

   185  * <li><p>For the {@link #queryMBeans queryMBeans} method, the

   157  * caller's permissions must imply {@link

   186  * caller's permissions must imply {@link

   160  * Additionally, for each MBean that matches <code>name</code>,

   189  * Additionally, for each MBean that matches <code>name</code>,

   161  * if the caller's permissions do not imply {@link

   190  * if the caller's permissions do not imply {@link

   164  * MBean server will behave as if that MBean did not exist.</p>

   193  * MBean server will behave as if that MBean did not exist.</p>

   165  *

   194  *

   166  * <p>Certain query elements perform operations on the MBean server.

   195  * <p>Certain query elements perform operations on the MBean server.

   167  * If the caller does not have the required permissions for a given

   196  * If the caller does not have the required permissions for a given

   168  * MBean, that MBean will not be included in the result of the query.

   197  * MBean, that MBean will not be included in the result of the query.

   177  * objects.  Note that a <code>"queryMBeans"</code> permission implies

   206  * objects.  Note that a <code>"queryMBeans"</code> permission implies

   178  * the corresponding <code>"queryNames"</code> permission.</p>

   207  * the corresponding <code>"queryNames"</code> permission.</p>

   179  *

   208  *

   180  * <li><p>For the {@link #getDomains getDomains} method, the caller's

   209  * <li><p>For the {@link #getDomains getDomains} method, the caller's

   181  * permissions must imply {@link

   210  * permissions must imply {@link

   186  * MBeanPermission#MBeanPermission(String,String,ObjectName,String)

   215  * MBeanPermission#MBeanPermission(String,String,ObjectName,String)

   187  * MBeanPermission(null, null, new ObjectName("<var>d</var>:x=x"),

   216  * MBeanPermission(null, null, new ObjectName("<var>d</var>:x=x"),

   188  * "getDomains")}, the domain is eliminated from the array.  Here,

   217  * "getDomains")}, the domain is eliminated from the array.  Here,

   189  * <code>x=x</code> is any <var>key=value</var> pair, needed to

   218  * <code>x=x</code> is any <var>key=value</var> pair, needed to

   190  * satisfy ObjectName's constructor but not otherwise relevant.</p>

   219  * satisfy ObjectName's constructor but not otherwise relevant.</p>

   191  *

   220  *

   192  * <li><p>For the {@link #getClassLoader getClassLoader} method, the

   221  * <li><p>For the {@link #getClassLoader getClassLoader} method, the

   193  * caller's permissions must imply {@link

   222  * caller's permissions must imply {@link

   196  * "getClassLoader")}.</p>

   225  * "getClassLoader")}.</p>

   197  *

   226  *

   198  * <li><p>For the {@link #getClassLoaderFor getClassLoaderFor} method,

   227  * <li><p>For the {@link #getClassLoaderFor getClassLoaderFor} method,

   199  * the caller's permissions must imply {@link

   228  * the caller's permissions must imply {@link

   202  * "getClassLoaderFor")}.</p>

   231  * "getClassLoaderFor")}.</p>

   203  *

   232  *

   204  * <li><p>For the {@link #getClassLoaderRepository

   233  * <li><p>For the {@link #getClassLoaderRepository

   205  * getClassLoaderRepository} method, the caller's permissions must

   234  * getClassLoaderRepository} method, the caller's permissions must

   206  * imply {@link

   235  * imply {@link

   209  *

   239  *

   210  * <li><p>For the deprecated <code>deserialize</code> methods, the

   240  * <li><p>For the deprecated <code>deserialize</code> methods, the

   211  * required permissions are the same as for the methods that replace

   241  * required permissions are the same as for the methods that replace

   212  * them.</p>

   242  * them.</p>

   213  *

   243  *

   214  * <li><p>For the <code>instantiate</code> methods, the caller's

   244  * <li><p>For the <code>instantiate</code> methods, the caller's

   215  * permissions must imply {@link

   245  * permissions must imply {@link

   218  *

   250  *

   219  * <li><p>For the {@link #registerMBean registerMBean} method, the

   251  * <li><p>For the {@link #registerMBean registerMBean} method, the

   220  * caller's permissions must imply {@link

   252  * caller's permissions must imply {@link

   225  *

   255  *

   226  * <p>If the <code>MBeanPermission</code> check succeeds, the MBean's

   256  * <p>If the <code>MBeanPermission</code> check succeeds, the MBean's

   227  * class is validated by checking that its {@link

   257  * class is validated by checking that its {@link

   228  * java.security.ProtectionDomain ProtectionDomain} implies {@link

   258  * java.security.ProtectionDomain ProtectionDomain} implies {@link

   229  * MBeanTrustPermission#MBeanTrustPermission(String)

   259  * MBeanTrustPermission#MBeanTrustPermission(String)

   239  * <code>instantiate</code> followed by

   269  * <code>instantiate</code> followed by

   240  * <code>registerMBean</code>.</p>

   270  * <code>registerMBean</code>.</p>

   241  *

   271  *

   242  * <li><p>For the {@link #unregisterMBean unregisterMBean} method,

   272  * <li><p>For the {@link #unregisterMBean unregisterMBean} method,

   243  * the caller's permissions must imply {@link

   273  * the caller's permissions must imply {@link

   246  *

   277  *

   247  * </ul>

   278  * </ul>

   248  *

   279  *

   249  * @since 1.5

   280  * @since 1.5

   250  */

   281  */