Adel Boutros Adel Boutros - 6 months ago 31
Java Question

Programmatically grant Permissions without using policy file

How to programmatically grant

to an RMI application without using policy file?


After some researching, I have written this custom Policy Class and installed it via
Policy.setPolicy(new MyPolicy())

Now I get the following error:

invalid permission: (
\C:\eclipse\plugins\org.eclipse.osgi_3.7.0.v20110613.jar read

class MyPolicy extends Policy {

public PermissionCollection getPermissions(CodeSource codesource) {
return (new AllPermission()).newPermissionCollection();


Answer Source

Based on @EJP's advice, I have debugged using and found all the needed permissions in a policy file :

grant { permission "*:1024-", "connect, resolve"; };

grant { permission java.util.PropertyPermission "*", "read, write"; };

grant { permission "<>", "read"; };

But because I didn't want to create a policy file, I found a way to replicate this programmatically by extending class and setting the policy at the startup of my application using Policy.setPolicy(new MinimalPolicy());

public class MinimalPolicy extends Policy {

    private static PermissionCollection perms;

    public MinimalPolicy() {
        if (perms == null) {
            perms = new MyPermissionCollection();

    public PermissionCollection getPermissions(CodeSource codesource) {
        return perms;

    private void addPermissions() {
        SocketPermission socketPermission = new SocketPermission("*:1024-", "connect, resolve");
        PropertyPermission propertyPermission = new PropertyPermission("*", "read, write");
        FilePermission filePermission = new FilePermission("<<ALL FILES>>", "read");



class MyPermissionCollection extends PermissionCollection {

    private static final long serialVersionUID = 614300921365729272L;

    ArrayList<Permission> perms = new ArrayList<Permission>();

    public void add(Permission p) {

    public boolean implies(Permission p) {
        for (Iterator<Permission> i = perms.iterator(); i.hasNext();) {
            if (((Permission) {
                return true;
        return false;

    public Enumeration<Permission> elements() {
        return Collections.enumeration(perms);

    public boolean isReadOnly() {
        return false;

Recommended from our users: Dynamic Network Monitoring from WhatsUp Gold from IPSwitch. Free Download