Package org.elasticsearch
Class SpecialPermission
- java.lang.Object
-
- java.security.Permission
-
- java.security.BasicPermission
-
- org.elasticsearch.SpecialPermission
-
- All Implemented Interfaces:
java.io.Serializable
,java.security.Guard
public final class SpecialPermission extends java.security.BasicPermission
Elasticsearch-specific permission to check before enteringAccessController.doPrivileged()
blocks.We try to avoid these blocks in our code and keep security simple, but we need them for a few special places to contain hacks for third party code, or dangerous things used by scripting engines.
All normal code has this permission, but checking this before truncating the stack prevents unprivileged code (e.g. scripts), which do not have it, from gaining elevated privileges.
In other words, don't do this:
// throw away all information about caller and run with our own privs AccessController.doPrivileged( ... );
Instead do this;
// check caller first, to see if they should be allowed to do this SecurityManager sm = System.getSecurityManager(); if (sm != null) { sm.checkPermission(new SpecialPermission()); } // throw away all information about caller and run with our own privs AccessController.doPrivileged( ... );
- See Also:
- Serialized Form
-
-
Field Summary
Fields Modifier and Type Field Description static SpecialPermission
INSTANCE
-
Constructor Summary
Constructors Constructor Description SpecialPermission()
Creates a new SpecialPermision object.SpecialPermission(java.lang.String name, java.lang.String actions)
Creates a new SpecialPermission object.
-
Method Summary
Modifier and Type Method Description static void
check()
Check that the current stack hasSpecialPermission
access according to theSecurityManager
.
-
-
-
Field Detail
-
INSTANCE
public static final SpecialPermission INSTANCE
-
-
Constructor Detail
-
SpecialPermission
public SpecialPermission()
Creates a new SpecialPermision object.
-
SpecialPermission
public SpecialPermission(java.lang.String name, java.lang.String actions)
Creates a new SpecialPermission object. This constructor exists for use by thePolicy
object to instantiate new Permission objects.- Parameters:
name
- ignoredactions
- ignored
-
-
Method Detail
-
check
public static void check()
Check that the current stack hasSpecialPermission
access according to theSecurityManager
.
-
-