SerializablePermission (Java Platform SE 8 )

java.lang.Object
- java.security.Permission
- - java.security.BasicPermission
  - - java.io.SerializablePermission

All Implemented Interfaces:: Serializable， Guard

public final class SerializablePermission
extends BasicPermission

这个类是可序列化的权限。一个serializablepermission包含一个名字（也被称为“目标名称”）但没有行为列表；你可以有命名的许可，或者你不

目标的名字是可序列化的许可名称（见下文）。

下表列出了所有可能的serializablepermission目标名称，并为每个提供了一个描述什么权限允许和给代码权限的风险的讨论。

Permission Target Name	What the Permission Allows	Risks of Allowing this Permission
enableSubclassImplementation	Subclass implementation of ObjectOutputStream or ObjectInputStream to override the default serialization or deserialization, respectively, of objects	Code can use this to serialize or deserialize classes in a purposefully malfeasant manner. For example, during serialization, malicious code can use this to purposefully store confidential private field data in a way easily accessible to attackers. Or, during deserialization it could, for example, deserialize a class with all its private fields zeroed out.
enableSubstitution	Substitution of one object for another during serialization or deserialization	This is dangerous because malicious code can replace the actual object with one which has incorrect or malignant data.

从以下版本开始：: 一点二
另请参见：: BasicPermission， Permission， Permissions， PermissionCollection， SecurityManager， Serialized Form

构造方法摘要

构造方法
Constructor and Description
`SerializablePermission(String name)` 创建具有指定名称的新serializablepermission。
`SerializablePermission(String name, String actions)` 创建一个新的具有指定名称的serializablepermission对象。

方法摘要
- Methods inherited from class java.security.BasicPermission
  equals, getActions, hashCode, implies, newPermissionCollection
- Methods inherited from class java.security.Permission
  checkGuard, getName, toString
- Methods inherited from class java.lang.Object
  clone, finalize, getClass, notify, notifyAll, wait, wait, wait

- Constructor Detail
  - SerializablePermission
```
public SerializablePermission(String name)
```
    创建具有指定名称的新serializablepermission。这个名字的serializablepermission象征性的名称，如“enablesubstitution”，等等。
    
    参数
    
    name的serializablepermission名称。
    
    异常
    
    如果是 null name NullPointerException。
    
    IllegalArgumentException -如果 name是空的。
  - SerializablePermission
```
public SerializablePermission(String name,
                              String actions)
```
    创建一个新的具有指定名称的serializablepermission对象。这个名字的serializablepermission符号的名字，和动作字符串是当前未使用的，应为。
    
    参数
    
    name的serializablepermission名称。
    
    actions目前闲置，必须设置为null
    
    异常
    
    如果是 null name NullPointerException。
    
    IllegalArgumentException -如果 name是空的。

Submit a bug or feature
For further API reference and developer documentation, see Java SE Documentation. That documentation contains more detailed, developer-targeted descriptions, with conceptual overviews, definitions of terms, workarounds, and working code examples.
Copyright © 1993, 2014, Oracle and/or its affiliates. All rights reserved.

Class SerializablePermission

构造方法摘要

方法摘要

Methods inherited from class java.security.BasicPermission

Methods inherited from class java.security.Permission

Methods inherited from class java.lang.Object

Constructor Detail

SerializablePermission

SerializablePermission