Re: Q: Policy Entry & multiple key signers

Charlie Lai (charlie@angeles.eng.sun.com)
Wed, 23 Dec 1998 15:03:29 -0800 (PST)

hi,

> As stated in the Policy Tool document a new policy entry is defined by a
> CodeBase (URL) [Optional], SignedBy (alias name in a keystore) [Optional] &
> one or more permissions. The documentation states that multiple signers
> separated by commas imply a Boolean AND relationship and not a Boolean OR.
> If I want to use an OR relationship for my signers is there a syntax in
> the policy file to allow this or must I make a separate policy entry for
> each signer?

currently you'll have to create separate entries for each signer.

> If there is a syntax what sort of operands are available: AND, OR, NOT...?
> And how sophisticated can I get?

right now, we don't support any operands.
thus, you can't get very sophisticated.
in the future, we'll look towards possibly making the policy more
flexible.

thanks,
charlie