|
Java for OS/390 SAF interfaces (formerly known as Security Services) provide an additional set of security APIs. These APIs are available as follows:
- With the IBM Developer Kit for OS/390, Java 2 Technology Edition
- With Java for OS/390 at the JDK 1.1.8 level.
These APIs are implemented through Java classes wrapping OS/390 UNIX Services. The OS/390 UNIX Services are in turn handled by a Security Server for OS/390 that implements SAF interfaces (such as RACF).
The initial set of services first released provided access to a basic set of existing OS/390 UNIX APIs. These APIs are required to implement principal based access control in a Java application, for example, an application that implements a Java SecurityManager class. The security services were enhanced in JDK 1.1.8 to provide user authentication functions.
Applications that use these APIs do not have to be APF authorized. However, all modules within the application's address space must be loaded from a controlled library. This includes all modules in the application and run-time libraries.
The classes provided in this release are:
- PlatformAccessControl
- PlatformThread
- PlatformSecurityServer
- PlatformAccessLevel
- PlatformReturned
- PlatformUser
These methods of these new classes allow a Java application to:
- Check to see if the Security Server or a specific security server class is active
- Extract the userid in effect for the current running thread
- Check the userid in effect for access rights to a resource
- Authenticate a userid and password
- Check if a userid is a member of a group
- Change a user's password
For more information about security services SAFdocs.jar click here
|
