You are viewing a plain text version of this content. The canonical link for it is here.

Posted to notifications@groovy.apache.org by "Pascal Schumacher (JIRA)" <ji...@apache.org> on 2015/10/11 20:55:05 UTC

[jira] [Created] (GROOVY-7626) Allow security managers to prevent system property access for Indy

Pascal Schumacher created GROOVY-7626:
-----------------------------------------

             Summary: Allow security managers to prevent system property access for Indy
                 Key: GROOVY-7626
                 URL: https://issues.apache.org/jira/browse/GROOVY-7626
             Project: Groovy
          Issue Type: Improvement
            Reporter: Pascal Schumacher


When using the "indy" setting, it tries to read a system property to enable logging.

This change enables a JVM Security Manager to block this setting and therefore simply ignore the setting to use the default: do not log.

>From a security manager, you might otherwise catch a SecurityException containing: 

{quote}access denied ("java.util.PropertyPermission" "groovy.indy.logging" "read"){quote}

Not only is this not recoverable, but the IndyInterface class will be inaccessible thereafter due to it being in a static block that fails (the dreaded NoClassDefFoundError).

source: [https://github.com/apache/incubator-groovy/pull/119]



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)