Hey there, I am currently working on a general management agent for security. I have a somewhat working prototype, but it lacks several key features I was hoping to integrate. Most importantly, I wonna get rid of all proprietary code and that's the reason why am asking. The management agent (MA) gets installed first. At that time, no other bundle is installed yet. I have a synchronous bundle listener to get notified about attempts to install any further bundles and to asses if they should be installed or not. Now I am asking myself...
- How could one get access to the ProtectionDomain information of a bundle from within the MA? Things like the signer, the certificates, etc. I don't have a Class or ClassLoader at hand to get this kind of information. I also don't have access to the jar to extract these kind of information manually. - Same is true for a custom Condition. How can I gain access to the ProtectionDomain information within that one? - As an alternative, I thought about using the BundleSignerCondition, but here I am very limited in my syntax of expressing a dependency on the certificate chain (simply f.i.: A -> B -> C vs. A -> X -> B` -> C`, here a test for trust root A - like VerySign - and properties of C will also be valid for both cases, because the C` appears identical to C, but differs in the chain). Maybe I am wrong, but I don't know exactly how to express such constraints. (see 4.1 spec 2.3.6) Thanks, Mirko _______________________________________________ OSGi Developer Mail List [email protected] https://mail.osgi.org/mailman/listinfo/osgi-dev
