[Aglets-developer] Nonsense in PolicyDB Class

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 454-5900

Hello Aglet Developers -

I think I found one problem in the aglets security code. This 
might tie into my aglets.policy problems. The PolicyImpl class 
refers permission requests to the class PolicyDB. The PolicyDB 
class has a getPermissions method. Within this getPermissions 
method, I can see no attempt AT ALL to locate the *appropriate* 
codebase's PolicyGrant instance that corresponds to the actual 
passed CodeSource object. That method seems to make no sense at 
all.

Look at it if you'd like to review this finding or if you want 
to feel astonished. :-) I'll send you a more readable, cleaned 
up source file if you'd like.

Philip Weaver