DO NOT REPLY [Bug 11459] New: - If not grant perm to "ant.jar", throws Sec. Excep., If do grant perm to "ant.jar", but not to my Java app classes, will run without sec. excep. - this is wrong

[bu...@apache.org]

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG 
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://nagoya.apache.org/bugzilla/show_bug.cgi?id=11459>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND 
INSERTED IN THE BUG DATABASE.

http://nagoya.apache.org/bugzilla/show_bug.cgi?id=11459

If not grant perm to "ant.jar", throws Sec. Excep., If do grant perm to "ant.jar", but not to my Java app classes, will run without sec. excep. - this is wrong

           Summary: If not grant perm to "ant.jar", throws Sec. Excep., If
                    do grant perm to "ant.jar", but not to my Java app
                    classes, will run without sec. excep. - this is wrong
           Product: Ant
           Version: 1.4.1
          Platform: Other
        OS/Version: All
            Status: NEW
          Severity: Blocker
          Priority: Other
         Component: Core
        AssignedTo: ant-dev@jakarta.apache.org
        ReportedBy: rpjava@hotmail.com


I'm using Ant 1.4.1 and I've run into a problem. If I don't give a permission
(that I'm checking for) to the "ant.jar" code base, then the app won't run
no matter what.

However, here's the problem: IF I DO give permissions to the "ant.jar" then
even if NONE of my application classes have any permissions, EVERYTHING passes 
through!! 

This blocks me from running/testing my app. in a secure environment with Ant. 

Just to be sure it was only in Ant, I did run the same code straight from a 
command line and the correct security exception is thrown without the 
permission, and not thrown with the permission.

--
To unsubscribe, e-mail:   <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>