NonStop Servlets for JavaServer Pages (NSJSP) 7.0 System Administrator's Guide
Configuring NSJSP
NonStop Servlets for JavaServer Pages (NSJSP) 7.0 System Administrator’s Guide—674372-005
3-18
The Installation-Specific servlet.config File
-Djava.security.policy==$env(JVM_POLICY_FILE). The == sign is
intentional and indicates to the JVM that it must only use the mentioned policy file.
Example 3-7 shows the default value of the NSJSP_SECMGR_POLICY variable.
NSJSP_SECMGR
The value of NSJSP_SECMGR variable is the Java command-line argument that is
used to enable the Java Security Manager. The default value of this variable is
-Dnsjsp.security.manager=none and by default the Java Security Manager
is not enabled. If this variable is set to -Djava.security.manager, the security
manager is enabled.
Example 3-8 shows the default value of the NSJSP_SECMGR variable.
JAAS_CONFIG_FILE
The JAAS_CONFIG_FILE variable specifies the location of Java Authentication
and Authorization Service (JAAS) configuration file. The default JAAS configuration
file in NSJSP is <NSJSP_HOME>/conf/iTP_jaas.config. The
JAAS_CONFIG_FILE variable is used by the NSJSP_JAAS_CONFIG variable to
obtain the location of the JAAS configuration file. For more information on JAAS,
see
http://docs.oracle.com/javase/1.4.2/docs/guide/security/jaas/tutorials/LoginConfigFi
le.html
Example 3-7. The Default Value of the NSJSP_SECMGR_POLICY Variable
set NSJSP_SECMGR_POLICY
-Djava.security.policy==$env(JVM_POLICY_FILE)
Note. Based on the Java Security Specification, a security policy file must be used
only if Java is configured to run with the security manager enabled. The
NSJSP_SECMGR_POLICY variable is effective only if the Java Security Manager
has been enabled using the NSJSP_SECMGR variable.
Example 3-8. The Default Value of the NSJSP_SECMGR Variable
#
# If you wish to run with a security Manager, uncomment the next
# statement ("set NSJSP_SECMGR ...").
#
# set NSJSP_SECMGR -Djava.security.manager