]> source.dussan.org Git - sonarqube.git/commit
projects / sonarqube.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8e115cd) | patch
SONAR-14253 fix Authenticated JMX remote access not working with Compute Engine
authorZipeng WU <zipeng.wu@sonarsource.com>
Thu, 29 Apr 2021 06:53:54 +0000 (08:53 +0200)
committersonartech <sonartech@sonarsource.com>
Thu, 29 Apr 2021 20:03:32 +0000 (20:03 +0000)
commit1476a48fea64574ca131df89e31ccb62fee8a49d
treeed7b08b68121cef5abef6c516f289a68bef4db3dtree | snapshot
parent8e115cd61790c03dfcd91183fd6424cab0b03631commit | diff
SONAR-14253 fix Authenticated JMX remote access not working with Compute Engine

SecurityManagement is introduced to prevent code injection from community plugins by denying access to our core's classloaders realm, and is not intended to block anything else. AccesscController will return a ProtectionDomain with null classloader when requested for a MBeanPermission.
server/sonar-process/src/main/java/org/sonar/process/SecurityManagement.java diff | blob | history
server/sonar-process/src/test/java/org/sonar/process/SecurityManagementTest.java diff | blob | history
Continuous Inspection: https://github.com/SonarSource/sonarqube