Blocker Compiled JSPs loaded via JasperLoader appear to be using a different ProtectionDomain than the rest of the WAR deployment. I think it should probably be using a PD which contains the permissions from the deployment's ClassLoader, and probably the CodeSource from the deployment unit from which the JSP file originated. This will ensure that permissions set via deployment descriptor and/or the management model will take proper effect.
Jasper using wrong ProtectionDomain for compiled JSP
-
Stuart Douglas (Inactive)
-
David Lloyd
- Votes:
-
0 Vote for this issue
- Watchers:
-
9 Start watching this issue
- Created:
- Updated:
- Resolved: