JAAS tutorial - how to force application to run with policy

Posted by wuntee on Stack Overflow See other posts from Stack Overflow or by wuntee
Published on 2010-05-26T04:15:52Z Indexed on 2010/05/26 4:21 UTC
Read the original article Hit count: 306

Filed under:

I just went through this tutorial:

http://java.sun.com/docs/books/tutorial/security/tour2/index.html

And was curios about the basic concept of JAAS... If every applcation needs to be run with the '-Djava.security.manager -Djava.security.policy=...' flags, what is enforcing security? Is it up to the end user to know when any Java application is being run, and modify the executable/script/whatever to include those flags? Or, how does a developer enforce that an application is run with the security manager enabled?

The whole concept doesnt seem very functional to me - as it is by default not enabled... Am I missing something?

© Stack Overflow or respective owner

Related posts about jaas