4.3. Access Control

4.3.1. [Trivial] Grant without a subject name silently ignored when parsing Permissions Document

The Permissions Document consists of a series of grants, and each one must have an associated subject name. Parsing the Permissions Document must fail if it has a grant without a subject name. Here is an example of a grant without a subject name:

<grant name="Participant_ecdsa01Peer01">
   <validity>
      <not_before>2020-06-30T13:00:00</not_before>
      <not_after>2030-06-30T13:00:00</not_after>
   </validity>
   <default>ALLOW</default>
</grant>

However, in previous releases, the Security Plugins simply ignored the grant. While the Security Plugins correctly prevented DomainParticipant creation or discovery from succeeding, they allowed the DomainParticipant creation or discovery process to proceed further than expected, which resulted in this error message incorrectly being printed:

XML file doesn't contain a grant for subject name

Now, if a grant is missing a subject name, DomainParticipant creation or discovery will fail with the following error message:

RTI_Security_PermissionsCfgFileParser_parse:!parse XML file.
Grant must contain <subject_name> or <subject_name_expression>

[RTI Issue ID SEC-2455]