[GROOVY-6441] Subpackages in SecureASTCustomizer whitelist/blacklists - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Open
Priority: Minor
Resolution: Unresolved
Affects Version/s: 2.2.0
Fix Version/s: None
Component/s: GroovyScriptEngine
Labels:
None

Description

When using the SecureASTCustomizer to specify a package whitelist or blacklist it'd be nice to be able to say "whitelist this package and all subpackages and classes", maybe using "java.io.**" as syntax.

If that is not feasible, it'd be nice if normalizeStarImportsList(), assertStarImportIsAllowed(), assertImportIsAllowed() and assertStaticImportIsAllowed() were made protected instead of private so that they can be overriden.

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Marc Bridner

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 19/Nov/13 10:41

Updated:: 20/Nov/13 09:35