Author: kkolinko
Date: Sat Jun 5 00:21:53 2010
New Revision: 951621
URL: http://svn.apache.org/viewvc?rev=951621&view=rev
Log:
Update in-document copy of the default catalina.policy file
Modified:
tomcat/trunk/webapps/docs/security-manager-howto.xml
Modified: tomcat/trunk/webapps/docs/security-manager-howto.xml
URL:
http://svn.apache.org/viewvc/tomcat/trunk/webapps/docs/security-manager-howto.xml?rev=951621&r1=951620&r2=951621&view=diff
==============================================================================
--- tomcat/trunk/webapps/docs/security-manager-howto.xml (original)
+++ tomcat/trunk/webapps/docs/security-manager-howto.xml Sat Jun 5 00:21:53
2010
@@ -269,6 +269,13 @@ grant codeBase "file:${catalina.home}/li
};
+// If using a per instance lib directory, i.e. ${catalina.base}/lib,
+// then the following permission will need to be uncommented
+// grant codeBase "file:${catalina.base}/lib/-" {
+// permission java.security.AllPermission;
+// };
+
+
// ========== WEB APPLICATION PERMISSIONS =====================================
@@ -327,6 +334,14 @@ grant {
permission java.util.PropertyPermission
"org.apache.el.parser.COERCE_TO_ZERO", "read";
+ // The cookie code needs these.
+ permission java.util.PropertyPermission
+ "org.apache.catalina.STRICT_SERVLET_COMPLIANCE", "read";
+ permission java.util.PropertyPermission
+ "org.apache.tomcat.util.http.ServerCookie.STRICT_NAMING", "read";
+ permission java.util.PropertyPermission
+ "org.apache.tomcat.util.http.ServerCookie.FWD_SLASH_IS_SEPARATOR", "read";
+
// Applications using Comet need to be able to access this package
permission java.lang.RuntimePermission
"accessClassInPackage.org.apache.catalina.comet";
};
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org
