I have been reading JDK 1.2 New Security features.
My application creates my own subclass of ClassLoader to load and run Java
classes at runtime. My application classes are loaded by the JVM from
c:\myapp and my application in turn use my own ClassLoader to load MyGame
from c:\mygame.
1) I want to run my application without any SecurityManager. Can I impose
security restriction programmatically for classes such as MyGame loaded by
my own ClassLoader?
2) If I run my application with SecurityManager and grant c:\myapp full
access, what will be the security restriction for classes such as MyGame
loaded by my own ClassLoader? Is it correct to assume that since the JVM
does not know that MyGame indeed come from c:\mygame, MyGame class will
inherit the security priviledge of my application (including my own
ClassLoader which is loaded from c:\myapp) which is full access?
3) In summary, could you please let me know how to create a sandbox of
security restriction for classes loaded by my own ClassLoader?
Please help.
Regards,
Tony
Regards,
Tony
______________________________________________________
Online Innovation specialises in developing web-based
and e-commerce software. Our products include
Oi Servlet Suite, Oi Web Desktop, Oi Net Theater,
Oi Servlet World and Oi Shop Sphere.
Visit http://i.am/onlineinnovation now!