The name is the name of the property ("java.home", "os.name", etc). The naming convention follows the hierarchical property naming convention. Also, an asterisk may appear at the end of the name, following a ".", or by itself, to signify a wildcard match. For example: "java.*" and "*" signify a wildcard match, while "*java" and "a*b" do not.
The actions to be granted are passed to the constructor in a string containing a list of one or more comma-separated keywords. The possible keywords are "read" and "write". Their meaning is defined as follows:
- read permission. Allows
System.getPropertyto be called.
- write permission. Allows
System.setPropertyto be called.
The actions string is converted to lowercase before processing.
Care should be taken before granting code permission to access certain system properties. For example, granting permission to access the "java.home" system property gives potentially malevolent code sensitive information about the system environment (the Java installation directory). Also, granting permission to access the "user.name" and "user.home" system properties gives potentially malevolent code sensitive information about the user environment (the user's account name and home directory).
Method SummaryModifier and TypeMethodDescription
Object obj)(Checks two PropertyPermission objects for equality.
()Returns the "canonical string representation" of the actions.
()Returns the hash code value for this object.
Permission p)(Checks if this PropertyPermission object "implies" the specified permission.
()Returns a new PermissionCollection object for storing PropertyPermission objects.
PropertyPermissionCreates a new PropertyPermission object with the specified name. The name is the name of the system property, and actions contains a comma-separated list of the desired actions granted on the property. Possible actions are "read" and "write".
impliespublic boolean implies(Permission p)Checks if this PropertyPermission object "implies" the specified permission.
More specifically, this method returns true if:
- p is an instanceof PropertyPermission,
- p's actions are a subset of this object's actions, and
- p's name is implied by this object's name. For example, "java.*" implies "java.home".
equalspublic boolean equals(Object obj)Checks two PropertyPermission objects for equality. Checks that obj is a PropertyPermission, and has the same name and actions as this object.
hashCodepublic int hashCode()Returns the hash code value for this object. The hash code used is the hash code of this permissions name, that is,
getNameis from the Permission superclass.
getActionspublic String getActions()Returns the "canonical string representation" of the actions. That is, this method always returns present actions in the following order: read, write. For example, if this PropertyPermission object allows both write and read actions, a call to
getActionswill return the string "read,write".
newPermissionCollectionpublic PermissionCollection newPermissionCollection()Returns a new PermissionCollection object for storing PropertyPermission objects.