java基础-典型的权限策略设置
public abstract class Permission
表示访问系统资源的抽象类
直接已知子类:
AllPermission, BasicPermission, FilePermission, MBeanPermission, PrivateCredentialPermission, ServicePermission, SocketPermission, UnresolvedPermission
如
public class Test {
??????? public static void main(String[] args){
??????????? try {?
???????????? FileWriter writer = new FileWriter("c:/test.txt");?
???????????? writer.write("test");?
???????????? writer.close();
?????????? } catch (IOException e) {?
???????????? e.printStackTrace();?
?????????? } ?
}
}策略文件
test.policy
grant {
? permission java.io.FilePermission "c:/test.txt", "read";
};VM argument
-Djava.security.manager
-Djava.security.policy=E:/workspace/Test/src/nio/test.policy我们也可以增加对socket的访问权限设置
permission java.net.SocketPermission "192.168.1.25:1024", "connect,accept";
表明我们仅对这个ip的1024端口有连接权限我们也可以修改tomcat的策略文件catalina.policy
