Hi!
We are trying to use SecurityManager with Resin 3.1.9 and run into the
following problem: CodeSource.getLocation() returns null for compiled
JSPs.
This means that we cannot use a specific codebase in grant clause in
our policy file, for example:
grant codeBase "file:/path_to_resin/runtime/work/-" {
OR grant codeBase "file:/path_to_resin/webapp/JSP-source/-" {
...some jsp-specific permissions
};
Instead, we have to use a universal grant clause:
grant {
..some jsp-specific permissions. Unfortunately, these will be applied
to all code!!!
};
Is there a way to make JSPs have a proper CodeSource?
Cheers,
Kai
_______________________________________________
resin-interest mailing list
[email protected]
http://maillist.caucho.com/mailman/listinfo/resin-interest
