GrantPermission can imply 'extra' permissions
---------------------------------------------
Key: RIVER-248
URL: https://issues.apache.org/jira/browse/RIVER-248
Project: River
Issue Type: Improvement
Components: net_jini_security
Affects Versions: jtsk_2.0_002
Reporter: Juan Ramirez
Priority: Minor
Using GrantPermission, a user can set policies that enable code to grant
permissions which it may not itself have to begin with (this permission may be
granted to itself too). Though it is not a security issue in itself, it is
helpful to have a note which explicitly states that.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
