[jboss-jira] [JBoss JIRA] Created: (JBAS-7484) Require a SecurityManager Permission to access a CacheManager-managed Cache
Brian Stansberry (JIRA)
jira-events at lists.jboss.org
Wed Nov 25 15:59:29 EST 2009
Require a SecurityManager Permission to access a CacheManager-managed Cache
---------------------------------------------------------------------------
Key: JBAS-7484
URL: https://jira.jboss.org/jira/browse/JBAS-7484
Project: JBoss Application Server
Issue Type: Task
Security Level: Public (Everyone can see)
Components: Clustering
Reporter: Brian Stansberry
Assignee: Brian Stansberry
Fix For: JBossAS-6.0.0.M2
Right now JBC instances created via the CacheManager are accessible by any code that injects the CacheManager. If the CacheJmxWrapper is registered in JMX, the cache is also available to any code running in the VM (via the getCache() attribute).
This needs to be locked down, otherwise code that has no business looking at cache content can access a cache.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list