ibm-information-center/dist/eclipse/plugins/i5OS.ic.rzatz_5.4.0.1/51/sec/seccj2li.htm

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<META http-equiv="Content-Type" content="text/html; charset=utf-8">
<LINK rel="stylesheet" type="text/css" href="../../../rzahg/ic.css">

<title>Configure the library.policy file</title>
</head>

<BODY>
<!-- Java sync-link -->
<SCRIPT LANGUAGE="Javascript" SRC="../../../rzahg/synch.js" TYPE="text/javascript"></SCRIPT>

<h5><a name="seccj2li"></a>Configure the library.policy file</h5>

<p>The library.policy file is the template for Java library classes. Shared libraries can be defined and be used by multiple enterprise applications. For information about defining and managing shared libraries, see <a href="../admin/appsvrshlib.htm">Administer shared libraries</a> in the <em>Administration</em> topic.</p>

<p>If the default permissions for shared library (which is the union of the permissions that are defined in the java.policy file, the app.policy file, and the library.policy file) are adequate, no action is required. If a specific change is required to access a shared library in the cell, update the library.policy file.</p>

<p><strong>Note:</strong> Do not place the <tt>codebase</tt> keyword or any other keyword after the <tt>grant</tt> keyword. The <tt>Signed By</tt> and the Java Authentication and Authorization Service (JAAS) <tt>principal</tt> keywords are not supported in the library.policy file. However, the <tt>Signed By</tt> keyword is supported in the following policy files: java.policy and server.policy. The JAAS <tt>principal</tt> keyword is supported in a JAAS policy file when it is specified by the Java Virtual Machine (JVM) system property, <tt>java.security.auth.policy</tt>. You can statically set the authorization policy files in <tt>java.security.auth.policy</tt> with <tt>auth.policy.url.<em>n</em>=<em>URL</em></tt> where <em>n</em> is an integer and <em>URL</em> is the location of the authorization policy.</p>

<p>The union of the permissions that are contained in the java.policy file, the app.policy file and the library.policy file are applied to the shared libraries.</p>

<p>The WebSphere Application Server - Express library.policy file in located in the /QIBM/UserData/WebASE51/ASE/<em>instance</em>/config/cells/<em>cell</em>/nodes/<em>node</em> directory, where <em>instance</em> is the name of your instance, <em>cell</em> is the name of your cell, and <em>node</em> is the name of your node.</p>

<p>By default, the file contains empty permission entry:</p> 

<pre>  grant {
  };</pre>

<p>Use the policy tool to update the library.policy file for your instance. For more information, see <a href="seccupol.htm">Create and edit policy files with the policy tool</a>.</p>

</body>
</html>
Add readme and dist folders 2024-04-02 14:02:31 +00:00			`<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">`
			`<html>`
			`<head>`
			`<META http-equiv="Content-Type" content="text/html; charset=utf-8">`
			`<LINK rel="stylesheet" type="text/css" href="../../../rzahg/ic.css">`

			`<title>Configure the library.policy file</title>`
			`</head>`

			`<BODY>`
			`<!-- Java sync-link -->`
			`<SCRIPT LANGUAGE="Javascript" SRC="../../../rzahg/synch.js" TYPE="text/javascript"></SCRIPT>`

			`<h5><a name="seccj2li"></a>Configure the library.policy file</h5>`

			`<p>The library.policy file is the template for Java library classes. Shared libraries can be defined and be used by multiple enterprise applications. For information about defining and managing shared libraries, see <a href="../admin/appsvrshlib.htm">Administer shared libraries</a> in the <em>Administration</em> topic.</p>`

			`<p>If the default permissions for shared library (which is the union of the permissions that are defined in the java.policy file, the app.policy file, and the library.policy file) are adequate, no action is required. If a specific change is required to access a shared library in the cell, update the library.policy file.</p>`

			<p><strong>Note:</strong> Do not place the <tt>codebase</tt> keyword or any other keyword after the <tt>grant</tt> keyword. The <tt>Signed By</tt> and the Java Authentication and Authorization Service (JAAS) <tt>principal</tt> keywords are not supported in the library.policy file. However, the <tt>Signed By</tt> keyword is supported in the following policy files: java.policy and server.policy. The JAAS <tt>principal</tt> keyword is supported in a JAAS policy file when it is specified by the Java Virtual Machine (JVM) system property, <tt>java.security.auth.policy</tt>. You can statically set the authorization policy files in <tt>java.security.auth.policy</tt> with <tt>auth.policy.url.<em>n</em>=<em>URL</em></tt> where <em>n</em> is an integer and <em>URL</em> is the location of the authorization policy.</p>

			`<p>The union of the permissions that are contained in the java.policy file, the app.policy file and the library.policy file are applied to the shared libraries.</p>`

			`<p>The WebSphere Application Server - Express library.policy file in located in the /QIBM/UserData/WebASE51/ASE/<em>instance</em>/config/cells/<em>cell</em>/nodes/<em>node</em> directory, where <em>instance</em> is the name of your instance, <em>cell</em> is the name of your cell, and <em>node</em> is the name of your node.</p>`

			`<p>By default, the file contains empty permission entry:</p>`

			`<pre> grant {`
			`};</pre>`

			`<p>Use the policy tool to update the library.policy file for your instance. For more information, see <a href="seccupol.htm">Create and edit policy files with the policy tool</a>.</p>`

			`</body>`
			`</html>`