tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 32180] - EL functions are executed in privileged context
Date Mon, 22 Nov 2004 07:11:39 GMT
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG·
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=32180>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND·
INSERTED IN THE BUG DATABASE.

http://issues.apache.org/bugzilla/show_bug.cgi?id=32180





------- Additional Comments From sami.pajunen@almare.com  2004-11-22 08:11 -------
Of course. That was the whole point. Running without SecurityManager would
remove all java permission checks (with authenticated principals) and I need
them in my EL functions.

Is there any specific reason to run EL evaluation as privileged? Is this somehow
related to the fact that EL implementation is separate project?

In any case, running the EL evaluation as privileged will cause Subject to be
lost from AccessControlContext and this seems to be incorrect.

-- 
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-dev-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-dev-help@jakarta.apache.org


Mime
View raw message