Attached patch INCLUDES all the changes in
Enclosed patch completes move from triplesec Permissions class to java.security.Permissions class. It also adds denials Permissions to Role. I added a couple of simple tests of the new behavior of denied permissions, but more would be good.
Remaining steps for use as a jacc provider:
- figure out how application name and policyContextId and security domain and Subject's Principal relate
- figure out how to store other kinds of permissions in ldap