nucleus/distributions/nucleus-common/src/main/resources/lib/appclient/client.policy - glassfish - Git at Google

 /*
  * Copyright (c) 2004, 2018 Oracle and/or its affiliates. All rights reserved.
  *
  * This program and the accompanying materials are made available under the
  * terms of the Eclipse Public License v. 2.0, which is available at
  * http://www.eclipse.org/legal/epl-2.0.
  *
  * This Source Code may also be made available under the following Secondary
  * Licenses when the conditions for such availability set forth in the
  * Eclipse Public License v. 2.0 are satisfied: GNU General Public License,
  * version 2 with the GNU Classpath Exception, which is available at
  * https://www.gnu.org/software/classpath/license.html.
  *
  * SPDX-License-Identifier: EPL-2.0 OR GPL-2.0 WITH Classpath-exception-2.0
  */

 //core server classes get all permissions by default
 grant codeBase "file:${com.sun.aas.installRoot}/lib/-" {
 	permission java.security.AllPermission;
 };

 grant codeBase "file:${com.sun.aas.installRoot}/modules/-" {
         permission java.security.AllPermission;
 };

 //iMQ classes get all permissions by default
 grant codeBase "file:${com.sun.aas.imqLib}/-" {
 	permission java.security.AllPermission;
 };

 // Standard extensions get all permissions by default
 grant codeBase "file:${java.home}/lib/ext/-" {
 	permission java.security.AllPermission;
 };

 // For Sun implementations of Java
 grant codeBase "file:${java.home}/../lib/tools.jar" {
         permission java.security.AllPermission;
 };

 // For Apple implementations of Java
 grant codeBase "file:${java.home}/../Classes/classes.jar" {
         permission java.security.AllPermission;
 };


 // default permissions granted to all domains
 grant {
 	permission java.lang.RuntimePermission "loadLibrary.*";
 	permission java.lang.RuntimePermission "accessClassInPackage.*";
 	permission java.lang.RuntimePermission "exitVM";
 	permission java.lang.RuntimePermission "queuePrintJob";
 	permission java.lang.RuntimePermission "modifyThreadGroup";

 	permission java.awt.AWTPermission "accessClipboard";
 	permission java.awt.AWTPermission "accessEventQueue";
 	permission java.awt.AWTPermission "showWindowWithoutWarningBanner";

 	permission java.io.FilePermission "<<ALL FILES>>", "read,write";

 	permission java.net.SocketPermission "*", "connect,accept,resolve";
 	permission java.net.SocketPermission "localhost:1024-", "accept,listen";

 	// "standard" properies that can be read by anyone
 	permission java.util.PropertyPermission "*", "read";

 	// setting the JSSE provider for lazy authentication of app. clients.
 	// Please do not change it.
 	permission java.security.SecurityPermission "putProviderProperty.SunJSSE";
 	permission java.security.SecurityPermission "insertProvider.SunJSSE";

         permission java.util.logging.LoggingPermission  "control";
         //permission java.lang.RuntimePermission      "setSecurityManager";
 };
	/*
	* Copyright (c) 2004, 2018 Oracle and/or its affiliates. All rights reserved.
	*
	* This program and the accompanying materials are made available under the
	* terms of the Eclipse Public License v. 2.0, which is available at
	* http://www.eclipse.org/legal/epl-2.0.
	*
	* This Source Code may also be made available under the following Secondary
	* Licenses when the conditions for such availability set forth in the
	* Eclipse Public License v. 2.0 are satisfied: GNU General Public License,
	* version 2 with the GNU Classpath Exception, which is available at
	* https://www.gnu.org/software/classpath/license.html.
	*
	* SPDX-License-Identifier: EPL-2.0 OR GPL-2.0 WITH Classpath-exception-2.0
	*/

	//core server classes get all permissions by default
	grant codeBase "file:${com.sun.aas.installRoot}/lib/-" {
	permission java.security.AllPermission;
	};

	grant codeBase "file:${com.sun.aas.installRoot}/modules/-" {
	permission java.security.AllPermission;
	};

	//iMQ classes get all permissions by default
	grant codeBase "file:${com.sun.aas.imqLib}/-" {
	permission java.security.AllPermission;
	};

	// Standard extensions get all permissions by default
	grant codeBase "file:${java.home}/lib/ext/-" {
	permission java.security.AllPermission;
	};

	// For Sun implementations of Java
	grant codeBase "file:${java.home}/../lib/tools.jar" {
	permission java.security.AllPermission;
	};

	// For Apple implementations of Java
	grant codeBase "file:${java.home}/../Classes/classes.jar" {
	permission java.security.AllPermission;
	};


	// default permissions granted to all domains
	grant {
	permission java.lang.RuntimePermission "loadLibrary.*";
	permission java.lang.RuntimePermission "accessClassInPackage.*";
	permission java.lang.RuntimePermission "exitVM";
	permission java.lang.RuntimePermission "queuePrintJob";
	permission java.lang.RuntimePermission "modifyThreadGroup";

	permission java.awt.AWTPermission "accessClipboard";
	permission java.awt.AWTPermission "accessEventQueue";
	permission java.awt.AWTPermission "showWindowWithoutWarningBanner";

	permission java.io.FilePermission "<<ALL FILES>>", "read,write";

	permission java.net.SocketPermission "*", "connect,accept,resolve";
	permission java.net.SocketPermission "localhost:1024-", "accept,listen";

	// "standard" properies that can be read by anyone
	permission java.util.PropertyPermission "*", "read";

	// setting the JSSE provider for lazy authentication of app. clients.
	// Please do not change it.
	permission java.security.SecurityPermission "putProviderProperty.SunJSSE";
	permission java.security.SecurityPermission "insertProvider.SunJSSE";

	permission java.util.logging.LoggingPermission "control";
	//permission java.lang.RuntimePermission "setSecurityManager";
	};