对于强制性安全,应使用相应的权限类。
For imperative security, use the corresponding permission class.
但在某些情况下,定义自己的代码访问权限类可能会有用。
However, in some situations, it might make sense to define your own code access permission class.
ObjectGrid具有代表不同权限类的不同权限类别。
ObjectGrid has different permission categories represented by different permission classes.
一般情况下,权限类的方法由安全性基础结构使用,而不在应用程序中使用。
In general, the methods of permission classes are used by the security infrastructure and are not intended for use in applications.
运行时在若干命名空间中提供了内置权限类,还提供了对设计和实现自定义权限类的支持。
The runtime provides built-in permission classes in several namespaces and also supplies support for designing and implementing custom permission classes.
在权限主题中对这些权限类作了概括描述,在每个权限类的参考文档中提供对该权限类的详细描述。
These permission classes are described briefly in the Permissions topic and in detail in the reference documentation for each permission class.
一般情况下,在设计权限类时,应当按需要确定权限状态的复杂程度,从而不会对性能造成很大影响。
In general, you should design your permission class so that the state of the permission is as complex as necessary, without greatly impacting performance.
如果内置代码访问权限类保护一种资源但不能充分控制对该资源的访问,则您可能需要使用自定义代码访问权限。
When a built-in code access permission class protects a resource but does not sufficiently control access to that resource, you might need a custom code access permission.
这个包中包含所有构成命名权限组件的类和接口。
This package contains all the classes and interfaces that comprise the naming authority component.
调用类和它的上级(即所有在它上面的堆栈帧)的权限集都不包括在交集计算中。
The permissions sets of the caller class and its ancestors (that is, all stack frames above this one) are not included in computing the intersection set.
使用这个类的进程需要什么ACL权限?
类所有者具有比较两个版本并将它们合并为一个版本,以便所有者将其发布到包含包的权限。
The class owner has the authority to compare the two editions and merge them into a single version that the owner can release into the containing package.
mqadmin类中的其他概要文件控制命令资源的安全性,即定义具有特定名称的队列的权限,例如任何以app 1开头的队列。
Then additional profiles in the MQADMIN class control command resource security, that is, the authority to define queues that have a specific name, for example any queues that begin with APP1.
因此,每一个类或者对象“属于”一个ProtectionDomain,安全策略对这个保护域授予了某种访问权限。
Therefore, each class or object "belongs to" a ProtectionDomain, to which certain access permissions have been granted by the security policy.
EAz实现permissions类的方式使其成为EAz应用程序声明其权限和操作的单一标准位置。
EAz implements a permissions class as a single standard location for an EAz application to declare its permissions and actions.
对ProtectionDomain调用implies()方法时(实质上是对权限进行检查时),它调用安装的Policy类的 getPolicyNoCheck() 方法。
The ProtectionDomain calls the getPolicyNoCheck() method on the installed Policy class whenever the implies() method is called on it (essentially, when a permission is to be checked).
带有静态初始化器的permissions类为声明和配置可用的应用程序权限提供单一位置。
A permissions class with a static initializer provides a single location for declaring and configuring available application permissions.
Policy类提供了一个名为getPermissions()的方法,可以调用它以获得授予特定CodeSource 的一组权限。
The Policy class provides a method called getPermissions() that can be called to obtain the set of permissions granted to a specific CodeSource.
不过,一些较新的类unix系统已经增加了支持最少权限的机制,值得去了解。
But some newer UNIX-like systems have added mechanisms to support least privilege that are worth knowing about.
因此,这个命令为所有的三类用户设置了读和执行权限。
Thus, this command enables read and execute for all three constituencies.
首先,用户必须拥有通过MQ cmds类访问命令的权限。
First, the user must have access to the command through the MQCMDS class.
一个区别是mxtopic类中的配置文件包含一个PUBLISH或SUBSCRIBE限定符,以便分别授予发布到主题权限和订阅主题权限。
One difference is that profiles in the MXTOPIC class contain a qualifier for publish or subscribe, so the authorization to publish or subscribe to a topic can be granted independently.
要成功地反序列化消息,需要确保中介处理程序具有访问适当类的权限。
To successfully de-serialize the message, you will need to make sure that the mediation handler has access to the appropriate classes.
它拥有对。NET类库以及底层操作系统完全的访问权限,没有任何其他HTML或者基于。NET的用户界面技术能够与之相提并论。
With full access to the.net libraries and the underlying operating system, no other HTML or.net-based UI technology can match it.
如果您希望让该计算机上其他的用户可以读取您的文件,可以为所有的三类用户设置读权限。
If you want to let everyone else on your computer read one of your files, enable the read permission for all three constituencies.
因而Policy类提供了刷新所授予的一组权限并向调用ProtectionDomain返回这个刷新的权限的可能。
The Policy class thereby is given the option of refreshing the set of granted permissions and returning this refreshed set to the caller ProtectionDomain.
第1行:浏览器:页面指令允许我们可以马上为使用相同视图类和权限的接口注册相应的页面。
Line 1: the browser: pages directive allows us to register several pages for an interface using the same view class and permission at once.
不过,SELinux检查可以做很多对传统的类unix权限来说难以完成的事情。
But the SELinux checks can do many things that are hard to do with traditional UNIX-like permissions.
用户需要具有管理员访问权限并且具有如何通过DeviceManagerGUI 来配置MDS类交换机的应用知识。
Users require administrator access and a working knowledge of how to configure MDS class switches through the Device Manager GUI.
在facility类中定义irr .RUSERMAP配置文件,并向其授予通用READ访问权限。
Define the IRR.RUSERMAP profile in the FACILITY class and grant it universal READ access.
应用推荐