Interesting, I wonder to which degree this was ever tested (aka within a container + security manager enabled). Were you able to configure another profile to run the tests with the security manager? If possible we could have a 'with-security' profile which adds an additional surefire execution of the tck harness using the security manager. This profile could be activated for the CI builds.
There might still be room integration tests though, showing exceptional cases with wrong or no security manager setup.
|