Richard N. Hillegas created DERBY-7138: ------------------------------------------
Summary: Remove references to the Java Security Manager Key: DERBY-7138 URL: https://issues.apache.org/jira/browse/DERBY-7138 Project: Derby Issue Type: Task Components: Build tools, Documentation Affects Versions: 10.16.0.0 Reporter: Richard N. Hillegas Assignee: Richard N. Hillegas The Open JDK team has deprecated the Java Security Manager and indicated that it will be removed in a future release of Java. See https://openjdk.java.net/jeps/411. In an email thread titled "protecting security-sensitive operations on multi-tenant servers" on the security-...@openjdk.java.net mailing list, Alan Bateman indicated that developers should containerize their applications instead. This issue tracks work needed to remove Derby's references to the Java Security Manager. At a minimum, the following work needs to be done: o The tests should be adjusted so that they don't install a SecurityManager. o References to the SecurityManager should be removed from product code. o We should remove the SecurityManager section of the Derby Security Guide. In its place, we should recommend that developers containerize their Derby applications. -- This message was sent by Atlassian Jira (v8.20.1#820001)