Loading...

XML

Word

Printable

Type: Enhancement
Resolution: Fixed
Priority: P3
Fix Version/s: 23
Affects Version/s: None
Component/s: security-libs
Labels:
- post-jep411
- release-note=yes

Subcomponent:
javax.security
Resolved In Build:
b15

In the implementation of Subject.current() and Subject.doAs(), replace the dependencies on AccessController/AccessControlContext (which are deprecated for removal) with scoped values (see JEP 446).

csr for

JDK-8327134 Alternate implementation of user-based authorization Subject APIs that doesn't depend on Security Manager APIs

Closed

relates to

JDK-8327618 RMIConnectionImpl should remove AccessControlContext and JMXSubjectDomainCombiner usage.

Closed

JDK-8328263 JMX Monitor should migrate to storing a Subject, not AccessControlContext

Closed

JDK-8333344 JMX attaching of Subject does not work when security manager not allowed

Closed

JDK-8267108 Alternate Subject.getSubject and doAs APIs that do not depend on Security Manager APIs

Resolved

links to

Commit openjdk/jdk/d32746ef

Review openjdk/jdk/17472

(2 links to)

1.	Release Note: The `Subject.getSubject` API now Requires Setting the `java.security.manager` System Property to '`allow`' on the Command Line		Resolved	Weijun Wang
2.	Update JAAS reference guide with Subject::callAs and Subject::current examples		Closed	Raymond Gallardo

Assignee:: Weijun Wang
Reporter:: Sean Mullan
Votes:: 0 Vote for this issue
Watchers:: 4 Start watching this issue

Created:: 2022-11-02 10:40
Updated:: 2024-05-31 03:06
Resolved:: 2024-03-20 14:27

Details

Description

Attachments

Issue Links

Sub-Tasks

Activity

People

Dates