This Bugzilla instance is a read-only archive of historic NetBeans bug reports. To report a bug in NetBeans please follow the project's instructions for reporting issues.
I found that my module needs extra permissions to run properly. Generally, I think that each module should describe what permissions it demands. What permisions it exposes to callers code using PrivilegedAction.
I have to admit I do not know much about security and that is why I'd like you to take this suggestions further and help me with actual diffs. I am not sure whether you request changes to the set of arch questions only: http://www.netbeans.org/source/browse/nbbuild/antsrc/org/netbeans/nbbuild/Arch-api-questions.xml Or whether you want to define new API category about security. That would require change in DTD: http://www.netbeans.org/source/browse/nbbuild/antsrc/org/netbeans/nbbuild/Arch.dtd Please modify these files to suit your needs, attach diff and reassign back to me. Ok?
I'd not call myself a security expert. However inital propo should not be big problem. Are you interested in covering it in arch quetionaire? Any links to original ARCH resources (I could copy ideas from there)?
ARCH resources? The questions and their DTD that I provided in my previous reply should likely be the right documents to made change in. Based on my understanding of your report I can imagine one or two questions about security: Does your module creates some new type of permision? Does your module needs some special permisions to run. But I as I said I am not completely sure I understand your case. The DTD could be enhanced to allow <api group="security" ... /> APIs to be described. Then the resulting documentation contained separate section for security stuff. I however do not know how appropriate this is.
I mean original Sun internal process. I do not want to reinvent wheel.
Created attachment 14037 [details] Initial patch
Applied thanks. Arch-api-questions.xml new revision: 1.27; previous revision: 1.26