[jboss-jira] [JBoss JIRA] (WFLY-8328) RAR endpoint creation requires too much permission from deployment when security manager is used
Ondra Chaloupka (JIRA)
issues at jboss.org
Thu Mar 9 10:30:00 EST 2017
[ https://issues.jboss.org/browse/WFLY-8328?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Ondra Chaloupka updated WFLY-8328:
----------------------------------
Git Pull Request: https://github.com/wildfly-security-incubator/wildfly/pull/150
> RAR endpoint creation requires too much permission from deployment when security manager is used
> ------------------------------------------------------------------------------------------------
>
> Key: WFLY-8328
> URL: https://issues.jboss.org/browse/WFLY-8328
> Project: WildFly
> Issue Type: Bug
> Components: EJB, Security Manager
> Affects Versions: 10.1.0.Final
> Reporter: Ondra Chaloupka
> Assignee: Ondra Chaloupka
> Priority: Minor
> Attachments: getClassLoader-permission-stacktrace.txt
>
>
> When RAR is deployed the EJB endpoint creation requires too much {{RuntimePermission}} to be defined in deployment itself. It's needed to define
> {code}
> new RuntimePermission("accessDeclaredMembers")
> new RuntimePermission("defineClassInPackage.*")
> new RuntimePermission("getClassLoader")
> {code}
> These permissions should not be required as are needed by internal endpoind creation operations launched from {{org.jboss.as.ejb3.inflow.JBossMessageEndpointFactory}}
> Stacktraces of security manager exceptions are added in attachment.
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
More information about the jboss-jira
mailing list