This package provides a framework for authentication and authorization. The framework allows authentication to be performed in pluggable fashion. Different authentication modules can be plugged under an application without requiring modifications to the application itself. The authorization component allows specification of access controls based on code location, code signers and code executors (Subjects).
Interface Summary Interface Description DestroyableObjects such as credentials may optionally implement this interface to provide the capability to destroy its contents. RefreshableObjects such as credentials may optionally implement this interface to provide the capability to refresh itself.
Class Summary Class Description AuthPermissionThis class is for authentication permissions. PrivateCredentialPermissionThis class is used to protect access to private Credentials belonging to a particular
Subjectrepresents a grouping of related information for a single entity, such as a person.
SubjectDomainCombinerupdates ProtectionDomains with Principals from the
Subjectassociated with this
Exception Summary Exception Description DestroyFailedExceptionSignals that a
RefreshFailedExceptionSignals that a