Roland Weiglhofer created LOG4J2-348:
----------------------------------------
Summary: Java2 Security for OSGi Bundles
Key: LOG4J2-348
URL: https://issues.apache.org/jira/browse/LOG4J2-348
Project: Log4j 2
Issue Type: Improvement
Components: API, Appenders, Core, JCL Bridge, log4j 1.2 emulation
Affects Versions: 2.0
Environment: OSGi / Apache Felix 4.x
Reporter: Roland Weiglhofer
Priority: Minor
Fix For: 2.0
OSGi defines permissions for bundles. Bundles should have only those
permissions that they need to function. This is very easy to implement. Just
add a directory OSGI-INF in the jar and include the file permissions.perm.
Here are some examples
(org.osgi.framework.PackagePermission "package name" "import")
(org.osgi.framework.PackagePermission "package name" "export")
(org.osgi.framework.BundlePermission "groupID.artifactID of Host" "host");
(org.osgi.framework.ServicePermission "class name" "get")
(org.osgi.framework.ServicePermission "class name" "register")
(org.osgi.framework.ConfigurationPermission * "configure")
(org.osgi.framework.AdminPermission * "metadata")
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
