[
https://issues.apache.org/jira/browse/DERBY-6717?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14157287#comment-14157287
]
Knut Anders Hatlen commented on DERBY-6717:
-------------------------------------------
I think this bug also affects older versions and could be backported if someone
is interested.
The bug description might give the impression that it doesn't affect older
versions, because it mentions the "usederbyinternals" privilege that was added
in 10.12. But it could also affect policies that don't have that privilege. For
example, if the policy file grants both SystemPermission("server", "monitor")
and SystemPermission("server", "shutdown"), it won't have the desired effect
without the fix, and one has to grant SystemPermission("server",
"monitor,shutdown") in a single statement instead.
> Policies with multiple SystemPermissions are not handled well
> -------------------------------------------------------------
>
> Key: DERBY-6717
> URL: https://issues.apache.org/jira/browse/DERBY-6717
> Project: Derby
> Issue Type: Bug
> Components: Services
> Affects Versions: 10.11.1.1
> Reporter: Knut Anders Hatlen
> Assignee: Knut Anders Hatlen
> Fix For: 10.12.0.0
>
> Attachments: d6717-1a.diff, d6717-2a-more-tests.diff
>
>
> Rick noted in DERBY-6648 that if you wanted to grant both
> SystemPermission("engine", "monitor") and SystemPermission("engine",
> "usederbyinternals") to a code base, the following would work:
> permission org.apache.derby.security.SystemPermission "engine",
> "monitor,usederbyinternals";
> However, the following does not work:
> permission org.apache.derby.security.SystemPermission "engine",
> "usederbyinternals";
> permission org.apache.derby.security.SystemPermission "engine", "monitor";
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
