StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

PO
primarykey
Id
7172220
data
AcceptedAnswerId
0
AnswerCount
0
ClosedDate
CommentCount
3
CommunityOwnedDate
CreationDate
2011-08-24T07:58:28.883
FavoriteCount
0
LastActivityDate
2011-08-24T07:58:28.883
LastEditDate
LastEditorUserId
0
OwnerUserId
549635
ParentId
3947558
PostTypeId
2
Score
7
ViewCount
0
LastEditorDisplayName
text
Body
I use the following approach while running some Groovy script within an application. I obviously want to prevent the script from running (intentionally or unintentionally) a System.exit I install a java SecurityManager in the usual way: <pre><code>-Djava.security.manager -Djava.security.policy=<policy file> </code></pre> In the <code><policy file></code> I give my application all permissions (I do fully trust my application), i.e.: <pre><code>grant { permission java.security.AllPermission; }; </code></pre> I limit the capabilities in the part where the Groovy script is run: <pre><code>list = AccessController.doPrivileged(new PrivilegedExceptionAction<List<Stuff>> () { public List<Stuff> run() throws Exception { return groovyToExecute.someFunction(); } }, allowedPermissionsAcc); </code></pre> The <code>allowedPermissionsAcc</code> doesn't change and therefore I create them in a static block <pre><code>private static final AccessControlContext allowedPermissionsAcc; static { // initialization of the allowed permissions PermissionCollection allowedPermissions = new Permissions(); allowedPermissions.add(new RuntimePermission("accessDeclaredMembers")); // ... <many more permissions here> ... allowedPermissionsAcc = new AccessControlContext(new ProtectionDomain[] { new ProtectionDomain(null, allowedPermissions)}); } </code></pre> Now the tricky part is to find the right permissions. If you want to allow access to certain libraries, you will quickly realize that they have not been written with a Security Manager in mind and don't handle one very gracefully, and finding out which permissions they need can be quite tricky. You will run into additional problems if you want to run UnitTests through the Maven Surefire plugin, or run on different platforms, like Linux/Windows, since the behavior can vary :-(. But those issues are another topic
Tags
Title
singulars
PostAcceptedAnswerId
1. This table or related slice is empty.
PostParentId
1. POJava security: Sandboxing plugins loaded via URLClassLoader
 singulars
 PostTypePostTypeId
 PTQuestion
PostTypePostTypeId
1. PTAnswer
UserLastEditorUserId
1. This table or related slice is empty.
UserOwnerUserId
1. USMaze
plurals
PostLinksPostIdRelatedPostId
1. This table or related slice is empty.
PostLinksRelatedPostIdPostId
1. This table or related slice is empty.
PostsAcceptedAnswerId
1. This table or related slice is empty.
PostsParentIdCreationDate
1. This table or related slice is empty.
VotesPostIdCreationDate
1. This table or related slice is empty.
CommentsPostId
1. This table or related slice is empty.

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.