This package provides a framework for authentication and authorization. The framework allows authentication to be performed in pluggable fashion. Different authentication modules can be plugged under an application without requiring modifications to the application itself. The authorization component allows specification of access controls based on code location, code signers and code executors (Subjects).

Since:: 1.4

Interface Summary
Interface	Description
Destroyable	Objects such as credentials may optionally implement this interface to provide the capability to destroy its contents.
Refreshable	Objects such as credentials may optionally implement this interface to provide the capability to refresh itself.

PrivateCredentialPermission

Class Summary
Class	Description
AuthPermission	This class is for authentication permissions.

Policy	Deprecated, for removal: This API element is subject to removal in a future version. Replaced by java.security.Policy.
This class is used to protect access to private Credentials belonging to a particular `Subject`.
Subject	A `Subject` represents a grouping of related information for a single entity, such as a person.
SubjectDomainCombiner	A `SubjectDomainCombiner` updates ProtectionDomains with Principals from the `Subject` associated with this `SubjectDomainCombiner`.

Exception Summary

Exception Description

DestroyFailedException
Signals that a destroy operation failed.

RefreshFailedException
Signals that a refresh operation failed.

Exception	Description
DestroyFailedException	Signals that a `destroy` operation failed.
RefreshFailedException	Signals that a `refresh` operation failed.

Package javax.security.auth