Re: [jakartaee-platform-dev] Safe to remove permissions.xsd?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

Re: [jakartaee-platform-dev] Safe to remove permissions.xsd?

From: Jared Anderson <jhanders@xxxxxxxxxx>
Date: Tue, 9 Jul 2024 21:53:00 +0000
Accept-language: en-US
Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=us.ibm.com; dmarc=pass action=none header.from=us.ibm.com; dkim=pass header.d=us.ibm.com; arc=none
Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=32rU9PI3Ru9etzbFJLXH8mOGz5fPGwi08NJfaAt3bEA=; b=PhmnN5K9s0fE8EwohKRSMiBNIwVDsgat88KL9JrYkRF4asHJaVTWEC4AWKsSBX40r92XfliLX/CbO0Vo8GpQTYQtcHGn26khjF/aZfsYJNf+fCgOUHUrwlwJQyrdLkgIdoUdi/4nSbqfjMSwLeiWEadHdsGg2FDSS1waxFISf9sMeBfqOKK3fsoUXuVReFtHycONJl/aYbQlEfk1Uzzbd86ywQJUdZKIz1FLtdOpCfFxb9DGRd3PFqqS6jD6PkRitArpIRZbFj4/viWRe9pGQODxT/agUaLZIwYgCp105Ju5/hHkswgQlJ0kYQFTwl6pp37y7JXfLlC9TzHCLzHsCw==
Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=I1kJdsSBFsOaarkSO0rNwRpJKnD+618mAFtCcJeIDKPheFtRtW1kWEOqoeBNyY2wxkwqvncnrOP8beL2cQjGd+sq3K9YCOaLOyIYnxKxB9VEtss+HmCTO9sz75nl+P6ieShlTP1jVMI3btgYdVuvnKpA6BqcTKQ7EK4TjD9DW+IeOTVrMEnwHvp+3DBVRz3ujk7JhaHBHj1Y7DZ6xyoLZ4IXayfA22YgfIPBIkSqd/jZ5OUFfQp82/CPV2rgZo+qpLYQdOvGn9M8wEQdzzX5/jSDhu6OUJOD7mbuMYUkNf2xXRXlk+E5P/bVsT72HAOWMsrXqRiDgC8fiMgSVnlqVQ==
Delivered-to: jakartaee-platform-dev@xxxxxxxxxxx
List-archive: <https://www.eclipse.org/mailman/private/jakartaee-platform-dev/>
List-help: <mailto:jakartaee-platform-dev-request@eclipse.org?subject=help>
List-subscribe: <https://www.eclipse.org/mailman/listinfo/jakartaee-platform-dev>, <mailto:jakartaee-platform-dev-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://www.eclipse.org/mailman/options/jakartaee-platform-dev>, <mailto:jakartaee-platform-dev-request@eclipse.org?subject=unsubscribe>
Thread-index: AQHa0kclWrlCHP0t30KbM238g6kEebHu8CoA
Thread-topic: [EXTERNAL] [jakartaee-platform-dev] Safe to remove permissions.xsd?

I thought about the same thing this morning at the Jakarta Platform call. I did some research during the call and found that Authorization 3.0 removes references to the Java security manager, but still uses Permissions. The big change in 3.0 is to add our own Policy class in Jakarta instead of using java.security.Policy.

Looking at the platform specification changes that I made last week, I may have removed too many things if permissions.xml can be used for Jakarta Authorization permissions as well as Java security permissions. Examples that I see for permissions.xml are all Java security permissions though and permissions.xml is not discussed in the Authorization specification at all.

- If permissions.xml is also used for Jakarta Authorization permissions, then permissions xsd should remain for Jakarta EE 11 and I should revert some of the Platform specification updates that I made last week.

- If permissions.xml is NOT applicable to Jakarta Authorization permissions, then I agree that permissions XSD file for EE 11 can be removed and the one remaining reference to permissions.xml can be removed from the Platform specification.

Hopefully someone more knowledgeable about Jakarta Authorization like Arjan can provide additional information.

Jared Anderson

WebSphere Jakarta Delivery lead

jhanders@xxxxxxxxxx

-----Original Message-----

From: Ed Burns via jakartaee-platform-dev <jakartaee-platform-dev@xxxxxxxxxxx>

Reply-To: jakartaee-platform developer discussions <jakartaee-platform-dev@xxxxxxxxxxx>

To: Jakarta EE Platform Dev List <jakartaee-platform-dev@xxxxxxxxxxx>

Cc: Ed Burns <Edward.Burns@xxxxxxxxxxxxx>

Subject: [EXTERNAL] [jakartaee-platform-dev] Safe to remove permissions.xsd?

Date: 07/09/2024 04:31:10 PM

Greetings Programs,

With the removal of the Security Manager content from the Platform spec in commit fa33ec3, I believe the corresponding descriptor `permissions.xsd` can also be removed.

This issue seeks to confirm with the community if this schema can be removed.

Note that Ivar's XSD spreadsheet has a red box for this one.

To jog your memory, here is a compliant XML file.

<permissions xmlns=https://jakarta.ee/xml/ns/jakartaee

             xmlns:xsi=http://www.w3.org/2001/XMLSchema-instance

             xsi:schemaLocation=https://jakarta.ee/xml/ns/jakartaee https://jakarta.ee/xml/ns/jakartaee/permissions_10.xsd

             version="10">

    <permission>

        <class-name>told.you</class-name>

        <name>Twice</name>

        <actions>read,write</actions>

    </permission>

</permissions>

Thanks,

https://dev.azure.com/jakarta-ee-azdo/jakarta-ee-azdo/_workitems/edit/397

_______________________________________________

jakartaee-platform-dev mailing list

jakartaee-platform-dev@xxxxxxxxxxx

To unsubscribe from this list, visit https://www.eclipse.org/mailman/listinfo/jakartaee-platform-dev

Follow-Ups:
- Re: [jakartaee-platform-dev] Safe to remove permissions.xsd?
  - From: Arjan Tijms
- Re: [jakartaee-platform-dev] [EXTERNAL] Re: Safe to remove permissions.xsd?
  - From: Ed Burns

References:
- [jakartaee-platform-dev] Safe to remove permissions.xsd?
  - From: Ed Burns

Prev by Date: [jakartaee-platform-dev] Safe to remove permissions.xsd?
Next by Date: Re: [jakartaee-platform-dev] [EXTERNAL] Re: Safe to remove permissions.xsd?
Previous by thread: [jakartaee-platform-dev] Safe to remove permissions.xsd?
Next by thread: Re: [jakartaee-platform-dev] [EXTERNAL] Re: Safe to remove permissions.xsd?
Index(es):
- Date
- Thread

Breadcrumbs