Ashish Sahni wrote:
>> Is it possible to limit the codebase that needs these permissions to
>> some jruby code that gets used by the application, or must the whole
>> application have these permissions?
> It is possible to limit the permissions to a set of jruby libs. However,
> as of now there is a mode wherein the jruby libs would be a part of
> the WAR (as opposed to being present at a static location)
"A mode", meaning there are other modes as well? What are they?
Seems like we ought to have a way that these security permissions
could be included in the JRuby package (e.g., in the war file) and
GlassFish would automatically configure these permissions for the
war file at deployment time.
Similarly, if I can deploy the JRuby engine separately, and then
later deploy applications that make use of it, it would be nice if
there were a way to specify the security permission requirements in
that mode as well.
And I'm sure things besides JRuby could take advantage of this.
Just trying to make it all more "plug and play"...