Tomcat 4 SecurityManager code
I had looked at the code a while ago, and at that time the code to implement the Java SeucrityManager had been ported from Tomcat 3.2. When I looked at the code today, it is entirely different and unfinished. I was wondering who had been working on this and if they were planning on finishing it anytime in the near future. If not, I can spend some time finishing it up (most likely rewriting or reimplementing the Tomcat 3.x SecurityManager code). Regards, Glenn -- Glenn Nielsen [EMAIL PROTECTED] | /* Spelin donut madder| MOREnet System Programming | * if iz ina coment. | Missouri Research and Education Network | */ | --
Re: Tomcat 4 SecurityManager code
Glenn Nielsen wrote: I had looked at the code a while ago, and at that time the code to implement the Java SeucrityManager had been ported from Tomcat 3.2. When I looked at the code today, it is entirely different and unfinished. I was wondering who had been working on this and if they were planning on finishing it anytime in the near future. If not, I can spend some time finishing it up (most likely rewriting or reimplementing the Tomcat 3.x SecurityManager code). I had started working on this, but quickly came to the conclusion that I don't know enough about how protection domains work -- and the arcane games we had to play in Tomcat 3.x to maintain JDK 1.1 compatibility made that code indecipherable to me. I would really really appreciate your help on getting this stuff to work in Tomcat 4.0. Regards, Glenn Craig
Re: Tomcat 4 SecurityManager code
"Craig R. McClanahan" wrote: Glenn Nielsen wrote: I had looked at the code a while ago, and at that time the code to implement the Java SeucrityManager had been ported from Tomcat 3.2. When I looked at the code today, it is entirely different and unfinished. I was wondering who had been working on this and if they were planning on finishing it anytime in the near future. If not, I can spend some time finishing it up (most likely rewriting or reimplementing the Tomcat 3.x SecurityManager code). I had started working on this, but quickly came to the conclusion that I don't know enough about how protection domains work -- and the arcane games we had to play in Tomcat 3.x to maintain JDK 1.1 compatibility made that code indecipherable to me. I would really really appreciate your help on getting this stuff to work in Tomcat 4.0. Ok, I'll get started. I haven't looked at the Tomcat 4 code base much yet. Give me a chance to digest the ContextManager, ClassLoaders, and Jasper architecture. Then I'll put together a design doc so others can comment on how the SecurityManager is hooked in. Regards, Glenn -- Glenn Nielsen [EMAIL PROTECTED] | /* Spelin donut madder| MOREnet System Programming | * if iz ina coment. | Missouri Research and Education Network | */ | --
