我有一个必须移植到android的java代码.Java代码使用JAAS来提高安全性,但android缺少javax.security库.因此,我分别编译了javax.security库,并将其添加到android库中.现在,我看到loginContext.login()给出了空指针异常.这是代码问题还是在android上存在其他依赖项才能使其正常工作?重新打包jars(我所做过的)是否可以在android中缺少的所有库中使用?
I have a java code which has to be ported to android. Java code uses JAAS for security but javax.security libraries are missing for android. So, I compiled javax.security libraries separately and added to android libs. Now, I see that loginContext.login() gives null pointer exception. Is it a code issue or are there any other dependencies on android to make it work?. Will repackaging jars (which I did) work for all libraries which are missing in android?
推荐答案自
JAAS的主要目标是分离用户的关注点身份验证,以便可以对其进行独立管理.而前一种身份验证机制包含有关以下内容的信息:源于该代码并由其签名的代码,JAAS添加了一个标记关于谁运行代码.通过扩展验证向量JAAS扩展了需要的Java应用程序的安全体系结构身份验证和授权模块.
The main goal of JAAS is to separate the concerns of user authentication so that they may be managed independently. While the former authentication mechanism contained information about where the code originated from and who signed that code, JAAS adds a marker about who runs the code. By extending the verification vectors JAAS extends the security architecture for Java applications that require authentication and authorization modules.
但使用Android作为参考 jeffsix 或此 AhmedDrira分辨率
But With Android as Referenced jeffsix or this AhmedDrira resolution
JAAS并不真正适用于Android.JAAS提供以用户为中心的对基于Java的应用程序的安全性(身份是谁-通常是用户"(例如LDAP用户ID)-正在运行"应用程序,并且是否允许他们做自己想做的事情).在Android中,用户ID的使用方式不同,因为每个应用程序都以不同的方式运行用户ID,以便将应用程序彼此分开.作为启用JAAS的身份之间存在完全不同的身份概念Java应用程序和Android应用程序,JAAS模型没有与Android模型很好地协调一致,因此文档中出现了警告.
JAAS doesn't really apply to Android. JAAS provides user-centric security to Java-based applications (who is the identity - usually a "user" such as an LDAP user id - that is "running" the application and are they allowed to do what they are trying to). In Android, user IDs are used differently in that each application runs with a different user ID in order to separate the applications from each other. As there are very different concepts of identity between a JAAS-enabled Java application and an Android application, the JAAS model doesn't reconcile well with the Android model, hence the warnings in the docs.
有关详细信息,请参阅 jeffsixPost 答案
for details please refer jeffsixPost answer
更多推荐
适用于Android的JAAS
发布评论