[
https://issues.apache.org/jira/browse/GROOVY-3032?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Jochen Theodorou resolved GROOVY-3032.
--------------------------------------
Assignee: Jochen Theodorou
Resolution: Won't Fix
I am actually sorry to close this. But I think it makes no sense to implement
this no that SecurityManager is phased out and no replacement is known.
> GroovyScriptEngine needs SecurityPermissions
> --------------------------------------------
>
> Key: GROOVY-3032
> URL: https://issues.apache.org/jira/browse/GROOVY-3032
> Project: Groovy
> Issue Type: Improvement
> Components: GroovyScriptEngine
> Affects Versions: 1.5.6
> Environment: Any
> Reporter: Matthew Corby-Eaglen
> Assignee: Jochen Theodorou
> Priority: Minor
> Attachments: groovysecurity.diff
>
>
> The GroovyScriptEngine requires some means of preventing certain objects from
> running certain scripts. This would be useful for multi-user environments who
> can log in and execute scripts via the shell.
> An external wrapper would not work well because the GSE resolves scripts at
> run time, and the URL of the scripts cannot be exposed before hand.
> I suppose a change at the Script object level might be more appropriate, but
> this would be effective.
> Patch included.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
