NonStop Servlets for JavaServer Pages (5.0) System Administrator's Guide
Configuring NSJSP
NonStop Servlets for JavaServer Pages (NSJSP) System Administrator’s Guide—525644-002
3-24
Starting NSJSP Through a Security Manager
Starting NSJSP Through a Security Manager
Once you have configured the iTP_catalina.policy file for use with a security
manager, NSJSP can be started through a security manager in place by using the
-Djava.security.manager and
-Djava.security.policy==$env(NSJSP_HOME)/conf/iTP_catalina.policy
options in the servlet.config file (see servlet.config on page 3-2).
// These permissions are granted to the NSJSP balancer web
// application.
grant codeBase "file:${catalina.home}/webapps/balancer/WEB-
INF/lib/catalina-balancer.jar" {
permission java.lang.reflect.ReflectPermission
"suppressAccessChecks";
};
// These permissions are granted by default to all web
// applications. In addition, a web application will be given a
// read FilePermission and JndiPermission for all files and
// directories in its document root.
grant {
...
// NSJSP Specific properties to allow read access
permission java.util.PropertyPermission
"com.tandem.servlet.*","read";
permission
java.util.PropertyPermission"org.apache.commons.logging.*",
"read";
...
};
Example 3-15. Policy File Entry for the NSJSP Container