[jboss-jira] [JBoss JIRA] (WFLY-8328) RAR endpoint creation requires too much permission from deployment when security manager is used
Ondra Chaloupka (JIRA)
issues at jboss.org
Thu Mar 9 09:36:00 EST 2017
Ondra Chaloupka created WFLY-8328:
-------------------------------------
Summary: RAR endpoint creation requires too much permission from deployment when security manager is used
Key: WFLY-8328
URL: https://issues.jboss.org/browse/WFLY-8328
Project: WildFly
Issue Type: Bug
Components: Security Manager
Affects Versions: 10.1.0.Final
Reporter: Ondra Chaloupka
Assignee: Ondra Chaloupka
Priority: Minor
Attachments: getClassLoader-permission-stacktrace.txt
When RAR is deployed the EJB endpoint creation requires too much {{RuntimePermission}} to be defined in deployment itself. It's needed to define
{code}
new RuntimePermission("accessDeclaredMembers")
new RuntimePermission("defineClassInPackage.*")
new RuntimePermission("getClassLoader")
{code}
These permissions should not be required as are needed by internal endpoind creation operations launched from {{org.jboss.as.ejb3.inflow.JBossMessageEndpointFactory}}
Stacktraces of security manager exceptions are added in attachment.
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
More information about the jboss-jira
mailing list