Note that the new authorization layer avoids "viral permissions" by
requiring a privileged call before privileges will be enabled. Apart
from privileged calls, only if a thread call stack contains all
privileged domains, will it proceed with a Guard check.
The authorization layer doesn't
I've added the following method to the Authorization class:
/**
* This method allows a developer to register the domain of a
* dependency which doesn't utilize this Authorization layer, to be
* considered as a trusted platform layer, in doing so however,
* the dependency
I'm currently experimenting with a new authorization layer for java,
post JEP 411.
I would like your thoughts around threads.
This is intended to be simpler than Java's existing authorization layer,
support user Subjects and code based authorization.
Concepts:
1. Application code has no