AI-generated Key Takeaways
-
This package offers a pluggable framework for authentication, allowing different modules to be used without altering the application's code.
-
Authorization is managed through access controls determined by code location, signers, and executors, represented as 'Subjects'.
-
The
Subjectclass embodies a collection of information associated with a single entity, like a user or service. -
While containing legacy elements, the package's core functionality centers on flexible authentication and granular authorization.
This package provides a framework for authentication and
authorization. The framework allows
authentication to be performed in pluggable fashion. Different
authentication modules can be plugged under an application without
requiring modifications to the application itself. The
authorization component allows specification of access controls
based on code location, code signers and code executors
(Subjects).
Interfaces
| Destroyable | Objects such as credentials may optionally implement this interface to provide the capability to destroy its contents. |
Classes
| PrivateCredentialPermission | Legacy security code; do not use. |
| Subject | A |
| SubjectDomainCombiner | Legacy security code; do not use. |
Exceptions
| DestroyFailedException | Signals that a destroy operation failed. |