高级 Java 应用安全框架,OACC v2.0.0-rc.6 发布

jopen 9年前


OACC (读音 Oak)是 Object Access Control serviCe 的缩写。它是一个高级的 Java™ 应用安全框架. OACC 提供高性能 API ,为Java应用程序提供了基于权限的授权服务。简而言之,OACC 可以让你的应用通过发出问题来保证安全:“实体 ‘A’ 是否被允许在实体 ‘B’ 上进行操作 ‘p’。

OACC v2.0.0-rc.6 发布,更新如下:

  • adds serialVersionUIDs to all applicable classes

  • deprecatespreSerialize()methods

  • validates dataSource or connection are not null

  • fixes a bug that could cause NullPointerException forequals()andhashCode()of OACC'sResourceimplementation

  • modifiesgetAuthenticatedResource()andgetSessionResource()to return lazily-cached defensive copies of the session variables

  • validates that database schema names are either null or a single sequence of unicode word characters

  • updates test suite for the aforementioned changes

  • updates copyright notices

API 变更摘要:

  • Improves serialization support

    • adds serialVersionUids to all applicable classes

    • unserializable fields are now markedtransient

    • consistent usage of Serializable marker interface

  • *Deprecation* deprecates obsoletepreSerialize()methods because unserializable fields are now markedtransient

Bug 修复:

  • fixes #23 -equals()andhashCode()of OACC'sResourceimplementation no longer can produce NullPointerException when resource was created without aresourceId

下载页面:2.0.0-rc.6

来自: http://www.oschina.net/news/69819/oacc-2-0-0-rc6