[ https://issues.apache.org/jira/browse/GROOVY-3032?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Jochen Theodorou resolved GROOVY-3032. -------------------------------------- Assignee: Jochen Theodorou Resolution: Won't Fix I am actually sorry to close this. But I think it makes no sense to implement this no that SecurityManager is phased out and no replacement is known. > GroovyScriptEngine needs SecurityPermissions > -------------------------------------------- > > Key: GROOVY-3032 > URL: https://issues.apache.org/jira/browse/GROOVY-3032 > Project: Groovy > Issue Type: Improvement > Components: GroovyScriptEngine > Affects Versions: 1.5.6 > Environment: Any > Reporter: Matthew Corby-Eaglen > Assignee: Jochen Theodorou > Priority: Minor > Attachments: groovysecurity.diff > > > The GroovyScriptEngine requires some means of preventing certain objects from > running certain scripts. This would be useful for multi-user environments who > can log in and execute scripts via the shell. > An external wrapper would not work well because the GSE resolves scripts at > run time, and the URL of the scripts cannot be exposed before hand. > I suppose a change at the Script object level might be more appropriate, but > this would be effective. > Patch included. -- This message was sent by Atlassian Jira (v8.20.10#820010)