From: jgindin@walldata.com
Message-Id: <199801141917.LAA27383@java1.javasoft.com>
To: java-security@web1.javasoft.com
Subject: Request for 1.2 Feature
Date: Wed, 14 Jan 1998 11:13:13 -0800
I need to be able to dynamically determine the caller of a particular
method. I only want to allow objects that implement a particular
interface to call the method--if anyone else calls the method, I want to
be able to throw an exception. The code would look something like this:
public void foo() throws UnauthorizedCallerException
{
Object caller = someSecurityApiToGetTheCaller();
if ( caller instanceof ISecureObject ) {
// Do work
}
else {
throw new UnauthorizedCallerException();
}
}
I understand that the code that wants to call the
someSecurityApiToGetTheCaller() method may need to have privileges (as
defined in the 1.2 security documents), and that is perfectly acceptable
(probably even desirable!).
There is an allusion to this sort of ability on 32 of the "Java Security
Architecture (JDK 1.2)" document, revision 0.7, dated October 1, 1997.
I appreciate any help you are able to offer.
Jay R. Gindin
-----------------------------
Jay R. Gindin | This
Senior Product Developer | space
Wall Data Incorporated | for
jgindin@walldata.com | rent!