Uploaded image for project: 'JBoss Enterprise Spec APIs'
  1. JBoss Enterprise Spec APIs
  2. JBEE-253

Update the privileged actions for loading services in Jakarta REST

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • Major
    • None
    • None
    • None
    • None

    Description

      The Jakarta REST API uses privileged actions for retrieving the class loader. However it does not use a privileged action while iterating the ServiceLoader which could result in security exceptions.

      Attachments

        Issue Links

          is related to

          Task - Represents a small unit of work that is not end-user facing. WFLY-15071 Remove permissions from ReactiveMessagingChannelsTestCase

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Activity

            People

              jperkins-rhn James Perkins
              jperkins-rhn James Perkins
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: