Examples with PermissionSet org.terasology.gestalt.module.sandbox.PermissionSet used on opensource projects

Search in sources :

Example 1 with PermissionSet

use of org.terasology.gestalt.module.sandbox.PermissionSet in project Terasology by MovingBlocks.

the class ModuleManager method setupSandbox.

private void setupSandbox() {
    PermissionSet permissionSet = permissionProviderFactory.getBasePermissionSet();
    ExternalApiWhitelist.CLASSES.forEach(permissionSet::addAPIClass);
    ExternalApiWhitelist.PACKAGES.forEach(permissionSet::addAPIPackage);
    APIScanner apiScanner = new APIScanner(permissionProviderFactory);
    registry.stream().map(Module::getModuleManifest).forEach(apiScanner::scan);
    permissionSet.grantPermission("com.google.gson", ReflectPermission.class);
    permissionSet.grantPermission("com.google.gson.internal", ReflectPermission.class);
    // noinspection ConstantConditions - this reference is to help find this if this method gets separated from the reactor dependency
    if (reactor.core.scheduler.Scheduler.class != null) {
        // lgtm [java/useless-null-check]
        // In theory, PropertyPermission has wildcard matching and "reactor.*" should be sufficient to grant read access to all
        // reactor configuration properties.
        permissionSet.grantPermission(new PropertyPermission("reactor.*", "read"));
        // In practice, the permission checks fail unless these are each named explicitly.
        permissionSet.grantPermission(new PropertyPermission("reactor.bufferSize.x", "read"));
        permissionSet.grantPermission(new PropertyPermission("reactor.bufferSize.small", "read"));
        permissionSet.grantPermission(new PropertyPermission("reactor.trace.operatorStacktrace", "read"));
        permissionSet.grantPermission(new PropertyPermission("reactor.schedulers.defaultPoolSize", "read"));
        permissionSet.grantPermission(new PropertyPermission("reactor.schedulers.defaultBoundedElasticSize", "read"));
        permissionSet.grantPermission(new PropertyPermission("reactor.schedulers.defaultBoundedElasticQueueSize", "read"));
    }
    Policy.setPolicy(new ModuleSecurityPolicy());
    System.setSecurityManager(new ModuleSecurityManager());
}
Also used : ModuleSecurityPolicy(org.terasology.gestalt.module.sandbox.ModuleSecurityPolicy) PermissionSet(org.terasology.gestalt.module.sandbox.PermissionSet) PropertyPermission(java.util.PropertyPermission) ModuleSecurityManager(org.terasology.gestalt.module.sandbox.ModuleSecurityManager) APIScanner(org.terasology.gestalt.module.sandbox.APIScanner)

Aggregations

PropertyPermission (java.util.PropertyPermission)1 APIScanner (org.terasology.gestalt.module.sandbox.APIScanner)1 ModuleSecurityManager (org.terasology.gestalt.module.sandbox.ModuleSecurityManager)1 ModuleSecurityPolicy (org.terasology.gestalt.module.sandbox.ModuleSecurityPolicy)1 PermissionSet (org.terasology.gestalt.module.sandbox.PermissionSet)1
About Me
UseOf

Java Tutorials :

Simple Java RabbitMQ Example with Spring
Simple Springboot JPA Eclipeslink Example
Simple SpringBoot JPA Hibernate Example
Jackson JSON @JsonIgnore and @JsonIgnoreProperties Examples
Java Infinite recursion (StackOverflowError) Jackson solutions
Simple Java Jackson Serialize Objects to JSON and convert them back To Object
ElasticSearch 5 - Upload files using Java API in binary field Example
Java JAXB marshall unmarshall Examples from String and Stream
Java 8 forEach List and Map examples
ElasticSearch 5 Java API SearchRequestBuilder examples
Java ElasticSearch 5 examples with node index and mapping - running local
Convert String to int or Integer Java 8
Java 9 in action - JShell - Ubuntu
Java - removing invalid characters from a file name
Hello world!? or Hello Tutorial