I'd like to specify certain applets to run with java.security.AllPermissionon my computer (for debugging and security testing). However, I don't want to enable allapplets that I run to have this permission. So, editing my user Java policy file (which I have ensured is the correct policy file through testing), I try to put this value:

我想指定java.security.AllPermission在我的计算机上运行的某些小程序（用于调试和安全测试）。但是，我不想让我运行的所有小程序都拥有此权限。因此，编辑我的用户 Java 策略文件（我已通过测试确保它是正确的策略文件），我尝试设置此值：

grant codeBase "http://host_where_applet_lives/-" {
 permission java.security.AllPermission;
};

This value fails when the applet tries to do something powerful (create a new Thread, in my case). However, when I put the following value:

当小程序尝试做一些强大的事情（在我的情况下创建一个新线程）时，此值失败。但是，当我输入以下值时：

grant {
 permission java.security.AllPermission;
};

The applet is able to perform the powerful operation. The only difference is the lack of a codeBaseattribute.

小程序能够执行强大的操作。唯一的区别是缺少codeBase属性。

An answer to a similar question asked here [1] seemed to suggest (but never show or prove) that AccessController.doPrivileged()calls may be required. To me, this sounds wrong as I don't need that call when I grant the permissions to all applets (the second example I showed). Even if this is a solution, littering the applets I run with AccessController.doPrivileged()calls is not easy or necessarily possible. To top it off, my tests show that this just doesn't work anyway. But I'm happy to hear more ideas around it.

此处 [1] 中提出的类似问题的答案似乎暗示（但从未显示或证明）AccessController.doPrivileged()可能需要调用。对我来说，这听起来不对，因为当我向所有小程序授予权限时我不需要那个调用（我展示的第二个例子）。即使这是一个解决方案，用AccessController.doPrivileged()调用来乱扔我运行的小程序也不是容易的，也不一定是可能的。最重要的是，我的测试表明这无论如何都行不通。但我很高兴听到更多关于它的想法。

[1] Can't get AllPermission configured for intranet applet. Can anyone help?

[1]无法为内网小程序配置 AllPermission。任何人都可以帮忙吗？