Anton Vinogradov created IGNITE-9560:
----------------------------------------
Summary: Security permissions to restrict arbitrary code exectution
Key: IGNITE-9560
URL:
https://issues.apache.org/jira/browse/IGNITE-9560 Project: Ignite
Issue Type: Task
Components: security
Affects Versions: 2.6
Reporter: Anton Vinogradov
{{SecurityPermission}} class should be extended to cover all cases able to cause arbitrary code execution.
1) Restriction on listener registration
- EventStorageSpi listener
- CQ listener
2) Restriction on closure (able to be executed on the remote node) execution
- Compute API (seems to be covered, should be rechecked)
- Services
- Entry processor
3) We have to make sure that cases listed at #1 and #2 are the all possible cases.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
Locked
