openjpa-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Craig Russell (JIRA)" <j...@apache.org>
Subject [jira] Commented: (OPENJPA-244) Java 2 Security enablement
Date Tue, 03 Jul 2007 23:38:04 GMT

    [ https://issues.apache.org/jira/browse/OPENJPA-244?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#action_12510020
] 

Craig Russell commented on OPENJPA-244:
---------------------------------------

I almost commented on this earlier. I'm not sure that the grant of CodeBase "file:///${user.home}/.m2/repository/-"
{ and grant CodeBase "file:///${test.basedir}/-" { are correct.

The grants might mask the required grants in OpenJPA by "catching" the illegal access by the
test case or the framework. 

Do we know why the test.basedir needs e.g. suppressAccessChecks? Do the test cases themselves
use reflection?

> Java 2 Security enablement
> --------------------------
>
>                 Key: OPENJPA-244
>                 URL: https://issues.apache.org/jira/browse/OPENJPA-244
>             Project: OpenJPA
>          Issue Type: Bug
>    Affects Versions: 0.9.8
>            Reporter: Kevin Sutter
>         Attachments: OPENJPA-244.patch
>
>
> Via some testing with the WebSphere Application Server, it's been discovered that we're
missing some doPriv blocks through out the OpenJPA code base.  This JIRA report will be used
to resolve these issues.  More specific examples will be posted later.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.


Mime
View raw message