public abstract class SecurityController
extends java.lang.Object
Three main pieces of functionality are required to implement security for JavaScript. First, it must be possible to define classes with an associated security domain. (This security domain may be any object incorporating notion of access restrictions that has meaning to an embedding; for a client-side JavaScript embedding this would typically be java.security.ProtectionDomain or similar object depending on an origin URL and/or a digital certificate.) Next it must be possible to get a security domain object that allows a particular action only if all security domains associated with code on the current Java stack allows it. And finally, it must be possible to execute script code with associated security domain injected into Java stack.
These three pieces of functionality are encapsulated in the SecurityController class.
Context.setSecurityController(SecurityController), 
ClassLoader| Constructor and Description | 
|---|
| SecurityController() | 
| Modifier and Type | Method and Description | 
|---|---|
| java.lang.Object | callWithDomain(java.lang.Object securityDomain,
              Context cx,
              Callable callable,
              Scriptable scope,
              Scriptable thisObj,
              java.lang.Object[] args)Call  Callable.call(Context cx, Scriptable scope, Scriptable thisObj,
               Object[] args)of callable under restricted security domain where an action is
 allowed only if it is allowed according to the Java stack on the
 moment of the execWithDomain call and securityDomain. | 
| abstract GeneratedClassLoader | createClassLoader(java.lang.ClassLoader parentLoader,
                 java.lang.Object securityDomain)Get class loader-like object that can be used
 to define classes with the given security context. | 
| static GeneratedClassLoader | createLoader(java.lang.ClassLoader parent,
            java.lang.Object staticDomain)Create  GeneratedClassLoaderwith restrictions imposed by
 staticDomain and all current stack frames. | 
| java.lang.Object | execWithDomain(Context cx,
              Scriptable scope,
              Script script,
              java.lang.Object securityDomain)Deprecated. 
 The application should not override this method and instead
 override
  callWithDomain(Object securityDomain, Context cx, Callable callable, Scriptable scope, Scriptable thisObj, Object[] args). | 
| abstract java.lang.Object | getDynamicSecurityDomain(java.lang.Object securityDomain)Get dynamic security domain that allows an action only if it is allowed
 by the current Java stack and securityDomain. | 
| static java.lang.Class<?> | getStaticSecurityDomainClass() | 
| java.lang.Class<?> | getStaticSecurityDomainClassInternal() | 
| static boolean | hasGlobal()Check if global  SecurityControllerwas already installed. | 
| static void | initGlobal(SecurityController controller)Initialize global controller that will be used for all
 security-related operations. | 
public static boolean hasGlobal()
SecurityController was already installed.public static void initGlobal(SecurityController controller)
Context-specific controllers and cause
 any subsequent call to
 Context.setSecurityController(SecurityController)
 to throw an exception.
 The method can only be called once.
hasGlobal()public abstract GeneratedClassLoader createClassLoader(java.lang.ClassLoader parentLoader, java.lang.Object securityDomain)
parentLoader - parent class loader to delegate search for classes
        not defined by the class loader itselfsecurityDomain - some object specifying the security
        context of the code that is defined by the returned class loader.public static GeneratedClassLoader createLoader(java.lang.ClassLoader parent, java.lang.Object staticDomain)
GeneratedClassLoader with restrictions imposed by
 staticDomain and all current stack frames.
 The method uses the SecurityController instance associated with the
 current Context to construct proper dynamic domain and create
 corresponding class loader.
 
 If no SecurityController is associated with the current Context ,
 the method calls Context.createClassLoader(ClassLoader parent).
 
parent - parent class loader. If null,
        Context.getApplicationClassLoader() will be used.staticDomain - static security domain.public static java.lang.Class<?> getStaticSecurityDomainClass()
public java.lang.Class<?> getStaticSecurityDomainClassInternal()
public abstract java.lang.Object getDynamicSecurityDomain(java.lang.Object securityDomain)
public java.lang.Object callWithDomain(java.lang.Object securityDomain,
                                       Context cx,
                                       Callable callable,
                                       Scriptable scope,
                                       Scriptable thisObj,
                                       java.lang.Object[] args)
Callable.call(Context cx, Scriptable scope, Scriptable thisObj,
               Object[] args)
 of callable under restricted security domain where an action is
 allowed only if it is allowed according to the Java stack on the
 moment of the execWithDomain call and securityDomain.
 Any call to getDynamicSecurityDomain(Object) during
 execution of callable.call(cx, scope, thisObj, args)
 should return a domain incorporate restrictions imposed by
 securityDomain and Java stack on the moment of callWithDomain
 invocation.
 The method should always be overridden, it is not declared abstract for compatibility reasons.
@Deprecated public java.lang.Object execWithDomain(Context cx, Scriptable scope, Script script, java.lang.Object securityDomain)
callWithDomain(Object securityDomain, Context cx, Callable callable, Scriptable scope, Scriptable thisObj, Object[] args).